117.68.193.103

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Anhui Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Dec 10 07:19:24 mxgate1 postfix/postscreen[21000]: CONNECT from [117.68.193.103]:60425 to [176.31.12.44]:25 Dec 10 07:19:24 mxgate1 postfix/dnsblog[21028]: addr 117.68.193.103 listed by domain zen.spamhaus.org as 127.0.0.11 Dec 10 07:19:24 mxgate1 postfix/dnsblog[21028]: addr 117.68.193.103 listed by domain zen.spamhaus.org as 127.0.0.4 Dec 10 07:19:24 mxgate1 postfix/dnsblog[21028]: addr 117.68.193.103 listed by domain zen.spamhaus.org as 127.0.0.2 Dec 10 07:19:24 mxgate1 postfix/dnsblog[21004]: addr 117.68.193.103 listed by domain cbl.abuseat.org as 127.0.0.2 Dec 10 07:19:24 mxgate1 postfix/dnsblog[21002]: addr 117.68.193.103 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 10 07:19:26 mxgate1 postfix/postscreen[21000]: PREGREET 15 after 1.8 from [117.68.193.103]:60425: EHLO iMuceSbl Dec 10 07:19:26 mxgate1 postfix/postscreen[21000]: DNSBL rank 4 for [117.68.193.103]:60425 Dec 10 07:19:26 mxgate1 postfix/postscreen[21000]: NOQUEUE: reject: RCPT from [117.68.1........ -------------------------------	2019-12-10 22:25:38

类型

评论内容

时间

attackspam

Dec 10 07:19:24 mxgate1 postfix/postscreen[21000]: CONNECT from [117.68.193.103]:60425 to [176.31.12.44]:25
Dec 10 07:19:24 mxgate1 postfix/dnsblog[21028]: addr 117.68.193.103 listed by domain zen.spamhaus.org as 127.0.0.11
Dec 10 07:19:24 mxgate1 postfix/dnsblog[21028]: addr 117.68.193.103 listed by domain zen.spamhaus.org as 127.0.0.4
Dec 10 07:19:24 mxgate1 postfix/dnsblog[21028]: addr 117.68.193.103 listed by domain zen.spamhaus.org as 127.0.0.2
Dec 10 07:19:24 mxgate1 postfix/dnsblog[21004]: addr 117.68.193.103 listed by domain cbl.abuseat.org as 127.0.0.2
Dec 10 07:19:24 mxgate1 postfix/dnsblog[21002]: addr 117.68.193.103 listed by domain b.barracudacentral.org as 127.0.0.2
Dec 10 07:19:26 mxgate1 postfix/postscreen[21000]: PREGREET 15 after 1.8 from [117.68.193.103]:60425: EHLO iMuceSbl

Dec 10 07:19:26 mxgate1 postfix/postscreen[21000]: DNSBL rank 4 for [117.68.193.103]:60425
Dec 10 07:19:26 mxgate1 postfix/postscreen[21000]: NOQUEUE: reject: RCPT from [117.68.1........
-------------------------------

2019-12-10 22:25:38

相同子网IP讨论:

IP	类型	评论内容	时间
117.68.193.196	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 117.68.193.196 (CN/China/-): 5 in the last 3600 secs - Thu Jul 12 16:57:20 2018	2020-02-07 05:54:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.68.193.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10310
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.68.193.103.			IN	A

;; AUTHORITY SECTION:
.			369	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121000 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 10 22:25:31 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 103.193.68.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 103.193.68.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
136.232.66.174	attack	$f2bV_matches	2020-04-07 06:47:18
87.246.7.7	attackbotsspam	Repeated brute force against postfix-sasl	2020-04-07 06:42:37
162.243.131.120	attackbotsspam	firewall-block, port(s): 2376/tcp	2020-04-07 06:50:52
97.89.57.30	attack	Draytek Vigor Remote Command Execution Vulnerability	2020-04-07 06:59:11
172.105.207.40	attack	" "	2020-04-07 06:55:50
190.78.179.101	attackspambots	firewall-block, port(s): 445/tcp	2020-04-07 06:44:57
112.85.42.178	attack	Apr 7 00:43:13 silence02 sshd[23846]: Failed password for root from 112.85.42.178 port 31438 ssh2 Apr 7 00:43:26 silence02 sshd[23846]: error: maximum authentication attempts exceeded for root from 112.85.42.178 port 31438 ssh2 [preauth] Apr 7 00:43:32 silence02 sshd[23875]: Failed password for root from 112.85.42.178 port 61744 ssh2	2020-04-07 06:48:25
36.90.156.123	attackspam	Unauthorized connection attempt from IP address 36.90.156.123 on Port 445(SMB)	2020-04-07 06:49:50
185.223.167.14	attackbotsspam	Port 5281 scan denied	2020-04-07 06:48:41
83.46.160.82	attackspam	Port 22 Scan, PTR: None	2020-04-07 07:18:00
196.188.73.96	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 06-04-2020 16:30:15.	2020-04-07 06:57:49
92.6.155.99	attackbotsspam	Attempted to connect 4 times to port 23 TCP	2020-04-07 06:59:43
193.56.28.177	attackspam	scan z	2020-04-07 06:40:55
104.206.128.30	attackbotsspam	Unauthorized connection attempt detected from IP address 104.206.128.30 to port 5060	2020-04-07 06:58:37
208.93.152.4	attackbots	IP: 208.93.152.4 Ports affected HTTP protocol over TLS/SSL (443) Abuse Confidence rating 100% Found in DNSBL('s) ASN Details AS40913 QTS-SJC United States (US) CIDR 208.93.152.0/22 Log Date: 6/04/2020 3:18:21 PM UTC	2020-04-07 07:09:06

最近上报的IP列表

218.72.253.211	112.133.251.67	103.126.6.245	183.89.242.22
197.64.97.92	92.124.146.78	183.88.111.100	1.160.118.167
189.176.24.235	121.122.126.187	154.223.171.109	183.7.174.182
113.204.210.41	106.12.22.80	1.55.81.146	183.27.179.186
125.71.129.7	113.172.132.229	125.83.104.250	129.204.11.222