68.194.196.82 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Optimum Online

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	/sql/sqladmin/index.php?lang=en	2020-05-26 18:25:21
attackspambots	68.194.196.82 - - \[24/Oct/2019:22:12:00 +0200\] "GET /mysql/admin/index.php\?lang=en HTTP/1.1" 403 467 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/77.0.3865.120 Safari/537.36" 68.194.196.82 - - \[24/Oct/2019:22:12:00 +0200\] "GET /mysql/dbadmin/index.php\?lang=en HTTP/1.1" 403 469 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/77.0.3865.120 Safari/537.36" 68.194.196.82 - - \[24/Oct/2019:22:12:00 +0200\] "GET /mysql/sqlmanager/index.php\?lang=en HTTP/1.1" 403 472 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/77.0.3865.120 Safari/537.36" ...	2019-10-25 07:54:24

类型

评论内容

时间

attack

/sql/sqladmin/index.php?lang=en

2020-05-26 18:25:21

attackspambots

68.194.196.82 - - \[24/Oct/2019:22:12:00 +0200\] "GET /mysql/admin/index.php\?lang=en HTTP/1.1" 403 467 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/77.0.3865.120 Safari/537.36"
68.194.196.82 - - \[24/Oct/2019:22:12:00 +0200\] "GET /mysql/dbadmin/index.php\?lang=en HTTP/1.1" 403 469 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/77.0.3865.120 Safari/537.36"
68.194.196.82 - - \[24/Oct/2019:22:12:00 +0200\] "GET /mysql/sqlmanager/index.php\?lang=en HTTP/1.1" 403 472 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/77.0.3865.120 Safari/537.36"
...

2019-10-25 07:54:24

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.194.196.82
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49865
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;68.194.196.82.			IN	A

;; AUTHORITY SECTION:
.			539	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102401 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 25 07:54:21 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

82.196.194.68.in-addr.arpa domain name pointer ool-44c2c452.dyn.optonline.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
82.196.194.68.in-addr.arpa	name = ool-44c2c452.dyn.optonline.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
159.192.244.184	attackbots	Nov 15 07:20:16 andromeda sshd\[22065\]: Invalid user admin from 159.192.244.184 port 37137 Nov 15 07:20:16 andromeda sshd\[22065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.244.184 Nov 15 07:20:17 andromeda sshd\[22065\]: Failed password for invalid user admin from 159.192.244.184 port 37137 ssh2	2019-11-15 20:45:59
104.148.105.98	attackspam	SASL Brute Force	2019-11-15 21:03:28
190.85.234.215	attackspambots	Nov 14 22:17:22 hanapaa sshd\[9950\]: Invalid user zaq1@WSX from 190.85.234.215 Nov 14 22:17:22 hanapaa sshd\[9950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.234.215 Nov 14 22:17:24 hanapaa sshd\[9950\]: Failed password for invalid user zaq1@WSX from 190.85.234.215 port 38970 ssh2 Nov 14 22:21:37 hanapaa sshd\[10245\]: Invalid user 123456 from 190.85.234.215 Nov 14 22:21:37 hanapaa sshd\[10245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.234.215	2019-11-15 20:36:05
71.6.232.7	attackspam	15.11.2019 09:53:49 Recursive DNS scan	2019-11-15 20:23:00
2a00:d680:10:50::22	attackbots	/test/wp-login.php	2019-11-15 21:04:24
203.162.13.68	attackspambots	Nov 15 12:51:48 lnxweb61 sshd[12332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.162.13.68	2019-11-15 20:23:34
95.78.176.107	attackbotsspam	2019-11-15T05:07:02.6566971495-001 sshd\[4634\]: Invalid user hermack from 95.78.176.107 port 55130 2019-11-15T05:07:02.6646991495-001 sshd\[4634\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.78.176.107 2019-11-15T05:07:05.3018171495-001 sshd\[4634\]: Failed password for invalid user hermack from 95.78.176.107 port 55130 ssh2 2019-11-15T05:17:14.0382691495-001 sshd\[5011\]: Invalid user salli from 95.78.176.107 port 42064 2019-11-15T05:17:14.0466341495-001 sshd\[5011\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.78.176.107 2019-11-15T05:17:16.3673481495-001 sshd\[5011\]: Failed password for invalid user salli from 95.78.176.107 port 42064 ssh2 ...	2019-11-15 20:54:50
106.13.60.58	attack	Nov 15 08:57:46 vps666546 sshd\[5640\]: Invalid user info from 106.13.60.58 port 56458 Nov 15 08:57:46 vps666546 sshd\[5640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.60.58 Nov 15 08:57:48 vps666546 sshd\[5640\]: Failed password for invalid user info from 106.13.60.58 port 56458 ssh2 Nov 15 09:02:51 vps666546 sshd\[5836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.60.58 user=root Nov 15 09:02:52 vps666546 sshd\[5836\]: Failed password for root from 106.13.60.58 port 35584 ssh2 ...	2019-11-15 20:33:07
154.68.39.6	attackbots	Nov 15 16:48:25 gw1 sshd[1767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.68.39.6 Nov 15 16:48:26 gw1 sshd[1767]: Failed password for invalid user operator from 154.68.39.6 port 52183 ssh2 ...	2019-11-15 20:24:59
171.241.157.149	attackbots	Unauthorised access (Nov 15) SRC=171.241.157.149 LEN=52 TTL=108 ID=9510 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-15 20:42:35
111.120.83.7	attack	Port scan	2019-11-15 20:50:35
77.40.60.64	attackspambots	11/15/2019-13:23:30.752280 77.40.60.64 Protocol: 6 SURICATA SMTP tls rejected	2019-11-15 20:34:29
134.175.13.213	attackbotsspam	SSH bruteforce (Triggered fail2ban)	2019-11-15 21:00:58
180.250.248.169	attackbotsspam	ssh failed login	2019-11-15 20:25:11
182.73.123.118	attackbots	Nov 15 11:15:49 web8 sshd\[20991\]: Invalid user andrey from 182.73.123.118 Nov 15 11:15:49 web8 sshd\[20991\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.73.123.118 Nov 15 11:15:51 web8 sshd\[20991\]: Failed password for invalid user andrey from 182.73.123.118 port 52003 ssh2 Nov 15 11:21:50 web8 sshd\[23886\]: Invalid user infinite from 182.73.123.118 Nov 15 11:21:50 web8 sshd\[23886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.73.123.118	2019-11-15 20:48:39

最近上报的IP列表

114.118.2.143	37.193.175.55	144.48.223.181	45.180.73.47
129.28.184.6	214.23.132.23	110.42.30.94	87.17.60.133
218.4.227.21	77.45.239.15	5.54.208.216	46.171.236.5
217.165.15.44	178.128.233.118	25.95.118.28	94.177.204.106
136.129.243.220	106.73.152.64	42.205.133.115	216.94.18.147