208.68.216.38 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 208.68.216.38
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21054
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;208.68.216.38.			IN	A

;; AUTHORITY SECTION:
.			465	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 01:07:16 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

38.216.68.208.in-addr.arpa domain name pointer myehc.com.
38.216.68.208.in-addr.arpa domain name pointer encompasshealth.com.
38.216.68.208.in-addr.arpa domain name pointer www.encompasshealth.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
38.216.68.208.in-addr.arpa	name = myehc.com.
38.216.68.208.in-addr.arpa	name = encompasshealth.com.
38.216.68.208.in-addr.arpa	name = www.encompasshealth.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.13.181.89	attack	detected by Fail2Ban	2020-04-02 04:15:02
212.104.184.244	attackbots	Port probing on unauthorized port 26	2020-04-02 03:56:41
1.234.23.23	attackbotsspam	Apr 1 21:09:02 minden010 sshd[8796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.234.23.23 Apr 1 21:09:04 minden010 sshd[8796]: Failed password for invalid user ics from 1.234.23.23 port 32898 ssh2 Apr 1 21:14:22 minden010 sshd[11357]: Failed password for root from 1.234.23.23 port 50188 ssh2 ...	2020-04-02 04:37:04
36.99.39.95	attackspambots	Apr 1 19:43:32 raspberrypi sshd[31086]: Failed password for root from 36.99.39.95 port 59536 ssh2	2020-04-02 04:34:25
31.0.203.156	attackbots	Automatic report - Port Scan Attack	2020-04-02 04:01:16
173.252.87.21	attackspambots	[Wed Apr 01 19:27:28.443531 2020] [:error] [pid 9221:tid 139641589266176] [client 173.252.87.21:44878] [client 173.252.87.21] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/image-loader-worker-v1.js"] [unique_id "XoSIsJH0-yP5G065PankqQAAAAE"] ...	2020-04-02 04:41:12
64.225.111.233	attackbotsspam	2020-04-01T10:34:56.932231suse-nuc sshd[9203]: User root from 64.225.111.233 not allowed because listed in DenyUsers ...	2020-04-02 04:19:25
61.91.14.151	attackspambots	(sshd) Failed SSH login from 61.91.14.151 (TH/Thailand/61-91-14-151.static.asianet.co.th): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 1 22:01:18 ubnt-55d23 sshd[5455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.91.14.151 user=root Apr 1 22:01:20 ubnt-55d23 sshd[5455]: Failed password for root from 61.91.14.151 port 47141 ssh2	2020-04-02 04:17:52
139.59.58.115	attackbotsspam	Apr 1 16:08:55 ws22vmsma01 sshd[169831]: Failed password for root from 139.59.58.115 port 43782 ssh2 ...	2020-04-02 04:17:24
45.14.150.133	attackspam	Apr 1 22:00:51 silence02 sshd[1156]: Failed password for root from 45.14.150.133 port 40944 ssh2 Apr 1 22:09:13 silence02 sshd[1741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.133 Apr 1 22:09:15 silence02 sshd[1741]: Failed password for invalid user zn from 45.14.150.133 port 54868 ssh2	2020-04-02 04:11:10
81.4.122.247	attackbotsspam	Apr 1 06:04:02 euve59663 sshd[16677]: reveeclipse mapping checking getaddr= info for 81-4-122-247.cloud.ramnode.com [81.4.122.247] failed - POSSIBL= E BREAK-IN ATTEMPT! Apr 1 06:04:02 euve59663 sshd[16677]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D81.= 4.122.247 user=3Dr.r Apr 1 06:04:04 euve59663 sshd[16677]: Failed password for r.r from 81= .4.122.247 port 36492 ssh2 Apr 1 06:04:04 euve59663 sshd[16677]: Received disconnect from 81.4.12= 2.247: 11: Bye Bye [preauth] Apr 1 06:17:54 euve59663 sshd[17488]: reveeclipse mapping checking getaddr= info for 81-4-122-247.cloud.ramnode.com [81.4.122.247] failed - POSSIBL= E BREAK-IN ATTEMPT! Apr 1 06:17:54 euve59663 sshd[17488]: Invalid user ax from 81.4.122.24= 7 Apr 1 06:17:54 euve59663 sshd[17488]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D81.= 4.122.247=20 Apr 1 06:17:56 euve59663 sshd[17488]: Fa........ -------------------------------	2020-04-02 04:33:28
45.143.220.249	attack	Port 5781 scan denied	2020-04-02 04:43:08
103.243.252.244	attackbotsspam	$f2bV_matches	2020-04-02 04:26:57
193.56.28.206	attack	Mail system brute-force attack	2020-04-02 04:01:39
13.250.234.242	attack	xmlrpc attack	2020-04-02 04:08:27

最近上报的IP列表

208.68.163.76	208.68.36.148	208.68.36.212	208.68.247.36
208.68.38.143	208.69.117.234	208.68.202.248	208.68.236.234
208.68.76.50	208.69.150.27	208.69.117.110	208.68.72.139
208.69.180.13	208.69.121.2	208.69.180.14	208.69.150.99
208.69.180.11	208.69.117.4	208.69.220.211	208.69.180.12