117.68.192.98 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
117.68.192.207	spamattack	[2020/02/26 08:01:49] [117.68.192.207:2100-0] User joseph@luxnetcorp.com.tw AUTH fails. [2020/02/26 08:01:50] [117.68.192.207:2102-0] User joseph@luxnetcorp.com.tw AUTH fails. [2020/02/26 08:01:51] [117.68.192.207:2105-0] User joseph@luxnetcorp.com.tw AUTH fails. [2020/02/26 08:01:51] [117.68.192.207:2097-1] User joseph@luxnetcorp.com.tw AUTH fails. [2020/02/26 08:01:52] [117.68.192.207:2100-0] User joseph@luxnetcorp.com.tw AUTH fails.	2020-02-26 09:18:48
117.68.192.145	attackbots	lfd: (smtpauth) Failed SMTP AUTH login from 117.68.192.145 (CN/China/-): 5 in the last 3600 secs - Wed Jul 11 20:33:34 2018	2020-02-07 05:57:19
117.68.192.165	attackspam	2020-01-23 10:10:04 H=(vsOLVCx7L) [117.68.192.165]:63700 I=[192.147.25.65]:25 F= rejected RCPT <842777737@qq.com>: Sender verify failed 2020-01-23 10:10:10 dovecot_login authenticator failed for (FwKTxfMXz) [117.68.192.165]:57089 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=w.a.goch@lerctr.org) 2020-01-23 10:10:17 dovecot_login authenticator failed for (cofa1mCc) [117.68.192.165]:55647 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=w.a.goch@lerctr.org) ...	2020-01-24 00:44:45

类型

评论内容

时间

117.68.192.207

spamattack

[2020/02/26 08:01:49] [117.68.192.207:2100-0] User joseph@luxnetcorp.com.tw AUTH fails.
[2020/02/26 08:01:50] [117.68.192.207:2102-0] User joseph@luxnetcorp.com.tw AUTH fails.
[2020/02/26 08:01:51] [117.68.192.207:2105-0] User joseph@luxnetcorp.com.tw AUTH fails.
[2020/02/26 08:01:51] [117.68.192.207:2097-1] User joseph@luxnetcorp.com.tw AUTH fails.
[2020/02/26 08:01:52] [117.68.192.207:2100-0] User joseph@luxnetcorp.com.tw AUTH fails.

2020-02-26 09:18:48

117.68.192.145

attackbots

lfd: (smtpauth) Failed SMTP AUTH login from 117.68.192.145 (CN/China/-): 5 in the last 3600 secs - Wed Jul 11 20:33:34 2018

2020-02-07 05:57:19

117.68.192.165

attackspam

2020-01-23 10:10:04 H=(vsOLVCx7L) [117.68.192.165]:63700 I=[192.147.25.65]:25 F= rejected RCPT <842777737@qq.com>: Sender verify failed
2020-01-23 10:10:10 dovecot_login authenticator failed for (FwKTxfMXz) [117.68.192.165]:57089 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=w.a.goch@lerctr.org)
2020-01-23 10:10:17 dovecot_login authenticator failed for (cofa1mCc) [117.68.192.165]:55647 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=w.a.goch@lerctr.org)
...

2020-01-24 00:44:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.68.192.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1373
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.68.192.98.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 01:46:30 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 98.192.68.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 98.192.68.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
64.190.202.227	attack	Sep 23 17:40:08 plusreed sshd[21604]: Invalid user password from 64.190.202.227 ...	2019-09-24 08:57:04
89.234.156.185	attackspambots	2019-09-24T00:24:49.401824abusebot-4.cloudsearch.cf sshd\[29929\]: Invalid user caratvodka from 89.234.156.185 port 60528	2019-09-24 08:30:41
59.63.206.45	attackspam	Sep 23 14:47:15 php1 sshd\[17060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.63.206.45 user=root Sep 23 14:47:16 php1 sshd\[17060\]: Failed password for root from 59.63.206.45 port 49042 ssh2 Sep 23 14:52:35 php1 sshd\[17549\]: Invalid user ovidiu from 59.63.206.45 Sep 23 14:52:35 php1 sshd\[17549\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.63.206.45 Sep 23 14:52:37 php1 sshd\[17549\]: Failed password for invalid user ovidiu from 59.63.206.45 port 18476 ssh2	2019-09-24 09:03:48
203.153.108.211	attackbotsspam	port scan and connect, tcp 8080 (http-proxy)	2019-09-24 08:37:14
27.125.137.123	attackspambots	23/tcp [2019-09-23]1pkt	2019-09-24 08:40:16
43.249.193.116	attackspambots	09/23/2019-20:25:46.342421 43.249.193.116 Protocol: 6 ET SCAN Suspicious inbound to mySQL port 3306	2019-09-24 08:56:08
51.91.212.80	attackspam	Sep 24 00:10:11 h2177944 kernel: \[2152928.387293\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=51.91.212.80 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=37457 DPT=1025 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 24 00:22:35 h2177944 kernel: \[2153672.784807\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=51.91.212.80 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=TCP SPT=50326 DPT=1025 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 24 00:35:05 h2177944 kernel: \[2154422.356196\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=51.91.212.80 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=37989 DPT=1025 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 24 00:47:42 h2177944 kernel: \[2155178.846417\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=51.91.212.80 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=45521 DPT=1025 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 24 01:00:15 h2177944 kernel: \[2155932.015884\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=51.91.212.80 DST=85.214.117.9	2019-09-24 08:47:48
51.91.249.144	attack	Sep 24 02:19:02 SilenceServices sshd[26896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.249.144 Sep 24 02:19:04 SilenceServices sshd[26896]: Failed password for invalid user erp from 51.91.249.144 port 54310 ssh2 Sep 24 02:22:43 SilenceServices sshd[27853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.249.144	2019-09-24 08:41:34
119.28.105.127	attack	Sep 23 20:37:45 ny01 sshd[10507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.105.127 Sep 23 20:37:48 ny01 sshd[10507]: Failed password for invalid user a from 119.28.105.127 port 60616 ssh2 Sep 23 20:44:52 ny01 sshd[11842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.105.127	2019-09-24 08:45:13
104.236.124.45	attackspam	Sep 24 00:21:48 anodpoucpklekan sshd[1967]: Invalid user watson from 104.236.124.45 port 53930 Sep 24 00:21:50 anodpoucpklekan sshd[1967]: Failed password for invalid user watson from 104.236.124.45 port 53930 ssh2 ...	2019-09-24 09:00:46
114.44.129.210	attackspambots	Honeypot attack, port: 23, PTR: 114-44-129-210.dynamic-ip.hinet.net.	2019-09-24 08:43:17
128.199.154.60	attackspam	$f2bV_matches	2019-09-24 09:10:05
192.99.244.145	attackbotsspam	2019-09-24T02:51:13.613223tmaserv sshd\[4249\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.ip-192-99-244.net 2019-09-24T02:51:15.396299tmaserv sshd\[4249\]: Failed password for invalid user admin from 192.99.244.145 port 60698 ssh2 2019-09-24T03:03:09.044554tmaserv sshd\[4785\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.ip-192-99-244.net user=root 2019-09-24T03:03:10.790631tmaserv sshd\[4785\]: Failed password for root from 192.99.244.145 port 44008 ssh2 2019-09-24T03:07:11.343131tmaserv sshd\[5402\]: Invalid user ah from 192.99.244.145 port 57264 2019-09-24T03:07:11.347334tmaserv sshd\[5402\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.ip-192-99-244.net ...	2019-09-24 08:26:05
37.29.7.27	attackbotsspam	Sep 23 19:31:12 pl3server sshd[4016466]: Invalid user admin from 37.29.7.27 Sep 23 19:31:12 pl3server sshd[4016466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.29.7.27 Sep 23 19:31:14 pl3server sshd[4016466]: Failed password for invalid user admin from 37.29.7.27 port 16495 ssh2 Sep 23 19:31:15 pl3server sshd[4016466]: Connection closed by 37.29.7.27 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.29.7.27	2019-09-24 08:32:44
78.131.56.62	attack	2019-09-23T20:26:28.3532581495-001 sshd\[31887\]: Invalid user zhuan from 78.131.56.62 port 55917 2019-09-23T20:26:28.3565431495-001 sshd\[31887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78-131-56-62.static.hdsnet.hu 2019-09-23T20:26:30.1691901495-001 sshd\[31887\]: Failed password for invalid user zhuan from 78.131.56.62 port 55917 ssh2 2019-09-23T20:42:21.4531371495-001 sshd\[33070\]: Invalid user dian from 78.131.56.62 port 48842 2019-09-23T20:42:21.4608181495-001 sshd\[33070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78-131-56-62.static.hdsnet.hu 2019-09-23T20:42:22.9676661495-001 sshd\[33070\]: Failed password for invalid user dian from 78.131.56.62 port 48842 ssh2 ...	2019-09-24 08:55:16

最近上报的IP列表

117.68.192.96	117.68.193.1	117.68.193.101	117.68.193.102
117.68.193.105	117.68.193.107	117.68.193.11	117.68.193.111
117.68.193.114	117.68.193.116	117.68.193.120	117.68.193.124
117.68.193.127	117.68.193.128	117.68.193.137	117.68.193.15
117.68.193.150	117.68.193.155	117.68.193.156	117.68.193.159