68.194.116.11 - IPInfo

基本信息:

城市(city): Edison

省份(region): New Jersey

国家(country): United States

运营商(isp): Optimum Online

主机名(hostname): unknown

机构(organization): Cablevision Systems Corp.

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Aug 27 14:11:18 mh1361109 sshd[20117]: Invalid user admin from 68.194.116.11 Aug 27 14:11:18 mh1361109 sshd[20117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.194.116.11 Aug 27 14:11:20 mh1361109 sshd[20117]: Failed password for invalid user admin from 68.194.116.11 port 55252 ssh2 Aug 27 14:14:44 mh1361109 sshd[20445]: Invalid user ubuntu from 68.194.116.11 Aug 27 14:14:44 mh1361109 sshd[20445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.194.116.11 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=68.194.116.11	2019-08-28 10:57:21

类型

评论内容

时间

attackspambots

Aug 27 14:11:18 mh1361109 sshd[20117]: Invalid user admin from 68.194.116.11
Aug 27 14:11:18 mh1361109 sshd[20117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.194.116.11
Aug 27 14:11:20 mh1361109 sshd[20117]: Failed password for invalid user admin from 68.194.116.11 port 55252 ssh2
Aug 27 14:14:44 mh1361109 sshd[20445]: Invalid user ubuntu from 68.194.116.11
Aug 27 14:14:44 mh1361109 sshd[20445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.194.116.11

........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=68.194.116.11

2019-08-28 10:57:21

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.194.116.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31466
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;68.194.116.11.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 21 00:22:27 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

11.116.194.68.in-addr.arpa domain name pointer ool-44c2740b.dyn.optonline.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
11.116.194.68.in-addr.arpa	name = ool-44c2740b.dyn.optonline.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
80.237.20.20	attack	Brute forcing email accounts	2020-09-10 03:43:52
186.234.80.7	attack	Automatic report - XMLRPC Attack	2020-09-10 04:05:47
213.78.76.93	attackspam	$f2bV_matches	2020-09-10 03:52:42
119.45.241.57	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-10 04:12:13
177.47.229.130	attackspambots	Icarus honeypot on github	2020-09-10 03:44:37
117.50.99.197	attackspambots	117.50.99.197 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 9 12:49:21 jbs1 sshd[17354]: Failed password for root from 157.245.54.200 port 46116 ssh2 Sep 9 12:57:44 jbs1 sshd[20671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.99.197 user=root Sep 9 12:52:29 jbs1 sshd[18281]: Failed password for root from 49.235.215.147 port 36210 ssh2 Sep 9 12:49:19 jbs1 sshd[17354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 user=root Sep 9 12:52:27 jbs1 sshd[18269]: Failed password for root from 95.163.195.60 port 40440 ssh2 Sep 9 12:52:27 jbs1 sshd[18281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.215.147 user=root IP Addresses Blocked: 157.245.54.200 (SG/Singapore/-)	2020-09-10 03:38:47
112.85.42.181	attackspam	Sep 9 21:56:09 nuernberg-4g-01 sshd[23646]: Failed password for root from 112.85.42.181 port 30547 ssh2 Sep 9 21:56:13 nuernberg-4g-01 sshd[23646]: Failed password for root from 112.85.42.181 port 30547 ssh2 Sep 9 21:56:17 nuernberg-4g-01 sshd[23646]: Failed password for root from 112.85.42.181 port 30547 ssh2 Sep 9 21:56:21 nuernberg-4g-01 sshd[23646]: Failed password for root from 112.85.42.181 port 30547 ssh2	2020-09-10 04:10:45
67.85.105.1	attackspambots	Sep 9 21:23:01 sticky sshd\[8989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.85.105.1 user=root Sep 9 21:23:03 sticky sshd\[8989\]: Failed password for root from 67.85.105.1 port 57792 ssh2 Sep 9 21:26:58 sticky sshd\[9040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.85.105.1 user=root Sep 9 21:27:00 sticky sshd\[9040\]: Failed password for root from 67.85.105.1 port 34148 ssh2 Sep 9 21:30:58 sticky sshd\[9076\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.85.105.1 user=root	2020-09-10 03:34:55
157.230.234.117	attack	157.230.234.117 - - \[09/Sep/2020:20:31:11 +0200\] "POST /wp-login.php HTTP/1.1" 200 12843 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 157.230.234.117 - - \[09/Sep/2020:20:31:12 +0200\] "POST /wp-login.php HTTP/1.1" 200 12678 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2020-09-10 03:55:29
218.22.36.135	attackspambots	2020-09-09T11:58:07.732172linuxbox-skyline sshd[1334]: Invalid user roman from 218.22.36.135 port 24881 ...	2020-09-10 03:41:11
81.68.85.195	attack	Time: Wed Sep 9 16:55:53 2020 +0000 IP: 81.68.85.195 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 9 16:45:20 pv-14-ams2 sshd[25944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.85.195 user=root Sep 9 16:45:22 pv-14-ams2 sshd[25944]: Failed password for root from 81.68.85.195 port 47472 ssh2 Sep 9 16:52:48 pv-14-ams2 sshd[17694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.85.195 user=root Sep 9 16:52:50 pv-14-ams2 sshd[17694]: Failed password for root from 81.68.85.195 port 59703 ssh2 Sep 9 16:55:49 pv-14-ams2 sshd[27634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.85.195 user=root	2020-09-10 04:08:40
46.105.149.168	attack	k+ssh-bruteforce	2020-09-10 04:09:09
218.92.0.223	attack	Sep 9 22:06:48 ip106 sshd[12886]: Failed password for root from 218.92.0.223 port 56729 ssh2 Sep 9 22:06:51 ip106 sshd[12886]: Failed password for root from 218.92.0.223 port 56729 ssh2 ...	2020-09-10 04:10:11
2.58.28.17	attackbotsspam	k+ssh-bruteforce	2020-09-10 04:13:48
91.121.162.198	attackbots	Sep 9 21:42:14 * sshd[21321]: Failed password for root from 91.121.162.198 port 55894 ssh2	2020-09-10 04:03:17

最近上报的IP列表

186.194.56.35	72.205.210.160	199.160.36.208	154.103.80.23
109.174.222.67	78.198.173.137	45.129.4.173	108.135.22.59
27.63.46.66	182.36.166.162	68.244.169.41	135.239.136.243
220.219.56.76	65.127.99.169	119.17.49.125	154.156.244.117
207.11.23.195	40.54.159.72	68.158.201.94	153.157.162.139