117.44.11.68 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.44.11.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3598
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.44.11.68.			IN	A

;; AUTHORITY SECTION:
.			359	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 21:22:01 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 68.11.44.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.11.44.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.28.51.99	attackbots	<6 unauthorized SSH connections	2020-08-04 15:29:14
178.154.200.11	attackbotsspam	[Tue Aug 04 10:55:00.481534 2020] [:error] [pid 26494:tid 140012531209984] [client 178.154.200.11:34398] [client 178.154.200.11] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XyjcFK8PEQtT1ZMVdhNhygAAAcI"] ...	2020-08-04 15:11:56
159.89.199.195	attackspam	2020-08-03 05:57:46 server sshd[9557]: Failed password for invalid user root from 159.89.199.195 port 38262 ssh2	2020-08-04 15:05:22
139.186.73.140	attackspambots	Aug 4 07:49:41 hosting sshd[21604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.73.140 user=root Aug 4 07:49:43 hosting sshd[21604]: Failed password for root from 139.186.73.140 port 34572 ssh2 ...	2020-08-04 15:42:39
104.131.231.109	attackspam	Bruteforce detected by fail2ban	2020-08-04 15:39:36
49.236.195.150	attackbotsspam	Aug 4 04:54:31 ajax sshd[2435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.236.195.150 Aug 4 04:54:33 ajax sshd[2435]: Failed password for invalid user QWE123! from 49.236.195.150 port 38780 ssh2	2020-08-04 15:29:37
177.72.175.236	attackspambots	Attempted Brute Force (dovecot)	2020-08-04 15:31:37
178.128.157.71	attackbotsspam	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-08-04 15:35:27
222.186.30.76	attack	Unauthorized connection attempt detected from IP address 222.186.30.76 to port 22	2020-08-04 15:41:12
222.118.135.43	attackspam	Icarus honeypot on github	2020-08-04 15:40:02
78.128.113.115	attackspam	2020-08-04 07:47:35 dovecot_login authenticator failed for $ip-113-115.4vendeta.com.$ \[78.128.113.115\]: 535 Incorrect authentication data $set_id=sales@opso.it$ 2020-08-04 07:47:42 dovecot_login authenticator failed for $ip-113-115.4vendeta.com.$ \[78.128.113.115\]: 535 Incorrect authentication data 2020-08-04 07:47:51 dovecot_login authenticator failed for $ip-113-115.4vendeta.com.$ \[78.128.113.115\]: 535 Incorrect authentication data 2020-08-04 07:47:56 dovecot_login authenticator failed for $ip-113-115.4vendeta.com.$ \[78.128.113.115\]: 535 Incorrect authentication data 2020-08-04 07:48:07 dovecot_login authenticator failed for $ip-113-115.4vendeta.com.$ \[78.128.113.115\]: 535 Incorrect authentication data	2020-08-04 15:02:04
212.70.149.19	attackspambots	Aug 4 09:41:14 srv01 postfix/smtpd\[23337\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 4 09:41:21 srv01 postfix/smtpd\[19560\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 4 09:41:23 srv01 postfix/smtpd\[20356\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 4 09:41:27 srv01 postfix/smtpd\[23337\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 4 09:41:44 srv01 postfix/smtpd\[19560\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-04 15:43:08
92.118.160.25	attackbots	Unauthorized connection attempt detected from IP address 92.118.160.25 to port 1000	2020-08-04 15:23:18
180.101.221.152	attack	$f2bV_matches	2020-08-04 15:20:13
39.78.98.153	attackbots	(ftpd) Failed FTP login from 39.78.98.153 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 4 10:31:56 ir1 pure-ftpd: (?@39.78.98.153) [WARNING] Authentication failed for user [anonymous]	2020-08-04 15:18:59

Recently Reported IPs

117.44.11.66	114.225.246.221	117.44.11.74	117.44.11.59
117.44.11.77	117.44.11.57	117.44.11.78	117.44.11.80
117.44.11.8	117.44.11.87	117.44.11.92	117.44.11.88
117.44.11.90	114.225.246.224	117.44.11.64	117.44.11.84
117.44.11.82	117.44.11.94	117.44.11.96	117.44.11.98