68.158.89.111 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.158.89.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22488
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;68.158.89.111.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022000 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 16:08:23 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 111.89.158.68.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 111.89.158.68.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
188.40.63.40	attack	VoIP Brute Force - 188.40.63.40 - Auto Report ...	2019-07-18 02:20:19
119.40.84.138	attack	Jul 17 14:38:05 mxgate1 postfix/postscreen[27932]: CONNECT from [119.40.84.138]:51144 to [176.31.12.44]:25 Jul 17 14:38:05 mxgate1 postfix/dnsblog[27933]: addr 119.40.84.138 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 17 14:38:05 mxgate1 postfix/dnsblog[27933]: addr 119.40.84.138 listed by domain zen.spamhaus.org as 127.0.0.3 Jul 17 14:38:05 mxgate1 postfix/dnsblog[27936]: addr 119.40.84.138 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 17 14:38:05 mxgate1 postfix/dnsblog[27934]: addr 119.40.84.138 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jul 17 14:38:05 mxgate1 postfix/dnsblog[28253]: addr 119.40.84.138 listed by domain b.barracudacentral.org as 127.0.0.2 Jul 17 14:38:05 mxgate1 postfix/postscreen[27932]: PREGREET 18 after 0.57 from [119.40.84.138]:51144: EHLO 1supply.com Jul 17 14:38:05 mxgate1 postfix/postscreen[27932]: DNSBL rank 5 for [119.40.84.138]:51144 Jul x@x Jul 17 14:38:07 mxgate1 postfix/postscreen[27932]: HANGUP after 1.5 from [119.40......... -------------------------------	2019-07-18 02:03:50
200.116.173.38	attackbots	Jul 17 12:48:38 aat-srv002 sshd[17281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.116.173.38 Jul 17 12:48:40 aat-srv002 sshd[17281]: Failed password for invalid user soporte from 200.116.173.38 port 64042 ssh2 Jul 17 12:54:04 aat-srv002 sshd[17434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.116.173.38 Jul 17 12:54:07 aat-srv002 sshd[17434]: Failed password for invalid user odoo from 200.116.173.38 port 62430 ssh2 ...	2019-07-18 02:06:03
54.39.145.59	attackspam	Jul 17 18:26:34 mail sshd\[20053\]: Invalid user tester from 54.39.145.59 port 55070 Jul 17 18:26:34 mail sshd\[20053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.145.59 Jul 17 18:26:36 mail sshd\[20053\]: Failed password for invalid user tester from 54.39.145.59 port 55070 ssh2 Jul 17 18:30:43 mail sshd\[20083\]: Invalid user amp from 54.39.145.59 port 48128 Jul 17 18:30:43 mail sshd\[20083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.145.59 ...	2019-07-18 02:34:47
2.136.95.127	attackspam	Jul 17 19:45:28 nextcloud sshd\[18647\]: Invalid user min from 2.136.95.127 Jul 17 19:45:28 nextcloud sshd\[18647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.136.95.127 Jul 17 19:45:31 nextcloud sshd\[18647\]: Failed password for invalid user min from 2.136.95.127 port 40956 ssh2 ...	2019-07-18 02:28:13
217.219.132.254	attackspambots	Jul 17 17:47:22 mail sshd\[19583\]: Invalid user quange from 217.219.132.254 port 43514 Jul 17 17:47:22 mail sshd\[19583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.219.132.254 Jul 17 17:47:24 mail sshd\[19583\]: Failed password for invalid user quange from 217.219.132.254 port 43514 ssh2 Jul 17 17:52:05 mail sshd\[19638\]: Invalid user nextcloud from 217.219.132.254 port 33768 Jul 17 17:52:05 mail sshd\[19638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.219.132.254 ...	2019-07-18 01:57:58
37.208.42.57	attackbotsspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(07172048)	2019-07-18 01:53:48
176.111.249.182	attack	[portscan] Port scan	2019-07-18 02:14:06
112.85.42.194	attack	Jul 17 20:26:46 dcd-gentoo sshd[24754]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Jul 17 20:26:49 dcd-gentoo sshd[24754]: error: PAM: Authentication failure for illegal user root from 112.85.42.194 Jul 17 20:26:46 dcd-gentoo sshd[24754]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Jul 17 20:26:49 dcd-gentoo sshd[24754]: error: PAM: Authentication failure for illegal user root from 112.85.42.194 Jul 17 20:26:46 dcd-gentoo sshd[24754]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Jul 17 20:26:49 dcd-gentoo sshd[24754]: error: PAM: Authentication failure for illegal user root from 112.85.42.194 Jul 17 20:26:49 dcd-gentoo sshd[24754]: Failed keyboard-interactive/pam for invalid user root from 112.85.42.194 port 48252 ssh2 ...	2019-07-18 02:34:24
162.238.213.216	attackspam	Jul 17 19:15:19 lnxweb62 sshd[23115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.238.213.216 Jul 17 19:15:19 lnxweb62 sshd[23115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.238.213.216	2019-07-18 01:55:21
180.124.4.4	attackbots	Brute force SMTP login attempts.	2019-07-18 02:06:29
77.199.87.64	attackspam	Jul 17 19:10:34 localhost sshd\[45801\]: Invalid user ftpuser from 77.199.87.64 port 51857 Jul 17 19:10:34 localhost sshd\[45801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.199.87.64 ...	2019-07-18 02:27:54
181.171.3.117	attackbotsspam	utm - spam	2019-07-18 02:29:37
187.151.110.79	attackbotsspam	Honeypot attack, port: 23, PTR: dsl-187-151-110-79-dyn.prod-infinitum.com.mx.	2019-07-18 02:08:12
59.175.144.11	attackspambots	17.07.2019 17:28:04 Connection to port 8545 blocked by firewall	2019-07-18 01:42:40

最近上报的IP列表

46.22.55.43	97.128.97.134	27.244.10.161	157.176.237.47
91.189.87.167	54.164.106.117	217.184.73.133	209.109.152.9
196.176.170.155	14.150.98.205	12.207.137.116	143.199.229.207
126.28.186.254	243.172.29.183	172.66.136.49	190.153.181.57
231.92.151.97	236.135.146.211	50.236.215.112	165.172.74.75