68.8.80.12 - IPInfo

基本信息:

城市(city): San Diego

省份(region): California

国家(country): United States

运营商(isp): Cox Communications

主机名(hostname): unknown

机构(organization): Cox Communications Inc.

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Jun 27 08:40:29 ovpn sshd\[23376\]: Invalid user moodle from 68.8.80.12 Jun 27 08:40:29 ovpn sshd\[23376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.8.80.12 Jun 27 08:40:31 ovpn sshd\[23376\]: Failed password for invalid user moodle from 68.8.80.12 port 44326 ssh2 Jun 27 08:47:23 ovpn sshd\[23405\]: Invalid user steam from 68.8.80.12 Jun 27 08:47:23 ovpn sshd\[23405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.8.80.12	2019-06-27 20:28:51

类型

评论内容

时间

attackbotsspam

Jun 27 08:40:29 ovpn sshd\[23376\]: Invalid user moodle from 68.8.80.12
Jun 27 08:40:29 ovpn sshd\[23376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.8.80.12
Jun 27 08:40:31 ovpn sshd\[23376\]: Failed password for invalid user moodle from 68.8.80.12 port 44326 ssh2
Jun 27 08:47:23 ovpn sshd\[23405\]: Invalid user steam from 68.8.80.12
Jun 27 08:47:23 ovpn sshd\[23405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.8.80.12

2019-06-27 20:28:51

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.8.80.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8287
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;68.8.80.12.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061702 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 18 18:06:28 CST 2019
;; MSG SIZE  rcvd: 114

HOST信息:

12.80.8.68.in-addr.arpa domain name pointer ip68-8-80-12.sd.sd.cox.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
12.80.8.68.in-addr.arpa	name = ip68-8-80-12.sd.sd.cox.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
190.94.18.2	attackbotsspam	Aug 11 18:47:05 piServer sshd[13450]: Failed password for root from 190.94.18.2 port 57348 ssh2 Aug 11 18:50:37 piServer sshd[13849]: Failed password for root from 190.94.18.2 port 48194 ssh2 ...	2020-08-12 01:10:38
205.251.148.50	attack	PTA!	2020-08-12 01:25:52
150.109.182.166	attackbots	7001/tcp 31337/tcp 7144/tcp... [2020-06-24/08-11]5pkt,5pt.(tcp)	2020-08-12 01:15:16
183.92.214.38	attackbotsspam	Aug 11 15:09:43 server sshd[22863]: Failed password for root from 183.92.214.38 port 59822 ssh2 Aug 11 15:14:54 server sshd[24649]: Failed password for root from 183.92.214.38 port 35356 ssh2 Aug 11 15:20:07 server sshd[26407]: Failed password for root from 183.92.214.38 port 39117 ssh2	2020-08-12 01:13:16
115.124.64.126	attack	Aug 11 17:14:53 marvibiene sshd[31312]: Failed password for root from 115.124.64.126 port 32874 ssh2 Aug 11 17:19:43 marvibiene sshd[31865]: Failed password for root from 115.124.64.126 port 46198 ssh2	2020-08-12 00:53:57
61.177.172.41	attackbots	Aug 11 18:42:12 ip106 sshd[11342]: Failed password for root from 61.177.172.41 port 34675 ssh2 Aug 11 18:42:16 ip106 sshd[11342]: Failed password for root from 61.177.172.41 port 34675 ssh2 ...	2020-08-12 00:42:59
51.15.179.65	attack	Automatic report - Banned IP Access	2020-08-12 00:45:53
92.63.194.104	attackspambots	Icarus honeypot on github	2020-08-12 01:17:36
142.44.185.242	attack	Aug 11 15:12:36 jane sshd[14793]: Failed password for root from 142.44.185.242 port 37302 ssh2 ...	2020-08-12 01:04:13
141.144.61.39	attack	2020-08-11T17:29:30.419260vps773228.ovh.net sshd[8259]: Failed password for root from 141.144.61.39 port 63092 ssh2 2020-08-11T17:34:53.490868vps773228.ovh.net sshd[8323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-141-144-61-39.compute.oraclecloud.com user=root 2020-08-11T17:34:55.057853vps773228.ovh.net sshd[8323]: Failed password for root from 141.144.61.39 port 12802 ssh2 2020-08-11T17:39:59.896216vps773228.ovh.net sshd[8404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=oc-141-144-61-39.compute.oraclecloud.com user=root 2020-08-11T17:40:01.473737vps773228.ovh.net sshd[8404]: Failed password for root from 141.144.61.39 port 16479 ssh2 ...	2020-08-12 00:55:45
31.207.47.99	attack	Aug 11 17:57:21 fhem-rasp sshd[27167]: Bad protocol version identification '\003' from 31.207.47.99 port 65520 Aug 11 19:04:44 fhem-rasp sshd[26351]: Bad protocol version identification '\003' from 31.207.47.99 port 64676 ...	2020-08-12 01:14:18
37.187.149.98	attack	Aug 10 22:37:58 v26 sshd[20498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.149.98 user=r.r Aug 10 22:38:00 v26 sshd[20498]: Failed password for r.r from 37.187.149.98 port 57106 ssh2 Aug 10 22:38:00 v26 sshd[20498]: Received disconnect from 37.187.149.98 port 57106:11: Normal Shutdown, Thank you for playing [preauth] Aug 10 22:38:00 v26 sshd[20498]: Disconnected from 37.187.149.98 port 57106 [preauth] Aug 10 22:38:17 v26 sshd[20557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.149.98 user=r.r Aug 10 22:38:18 v26 sshd[20559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.149.98 user=r.r Aug 10 22:38:19 v26 sshd[20557]: Failed password for r.r from 37.187.149.98 port 45324 ssh2 Aug 10 22:38:19 v26 sshd[20557]: Received disconnect from 37.187.149.98 port 45324:11: Normal Shutdown, Thank you for playing [preauth] Aug 10 ........ -------------------------------	2020-08-12 00:54:27
94.78.107.136	attack	[-]:80 94.78.107.136 - - [11/Aug/2020:14:08:59 +0200] "GET / HTTP/1.1" 301 469 "http://anti-crisis-seo.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"	2020-08-12 01:13:48
122.117.197.196	attack	Unauthorised access (Aug 11) SRC=122.117.197.196 LEN=40 TTL=45 ID=55091 TCP DPT=23 WINDOW=61145 SYN	2020-08-12 00:52:27
220.74.48.104	attack	Aug 11 07:47:49 cumulus sshd[23764]: Bad protocol version identification '' from 220.74.48.104 port 59472 Aug 11 07:47:50 cumulus sshd[23765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.74.48.104 user=r.r Aug 11 07:47:52 cumulus sshd[23765]: Failed password for r.r from 220.74.48.104 port 59511 ssh2 Aug 11 07:47:52 cumulus sshd[23765]: Connection closed by 220.74.48.104 port 59511 [preauth] Aug 11 07:47:54 cumulus sshd[23772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.74.48.104 user=r.r Aug 11 07:47:55 cumulus sshd[23772]: Failed password for r.r from 220.74.48.104 port 59754 ssh2 Aug 11 07:47:55 cumulus sshd[23772]: Connection closed by 220.74.48.104 port 59754 [preauth] Aug 11 07:47:56 cumulus sshd[23785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.74.48.104 user=r.r Aug 11 07:47:58 cumulus sshd[23785]: Failed password ........ -------------------------------	2020-08-12 01:01:49

最近上报的IP列表

64.228.243.193	106.120.173.106	105.186.134.183	77.247.221.192
68.33.16.19	87.95.132.42	99.156.201.221	153.223.68.46
77.35.118.151	197.232.121.235	115.111.220.165	173.108.75.98
95.242.211.253	111.6.134.35	99.11.115.76	31.127.250.252
213.47.24.64	163.42.209.85	181.189.221.245	138.197.172.73