Check an IP Address, Domain Name, Subnet, or ASN

68.183.3.211 was found in our database!

$ whois 68.183.3.211

country·🇳🇱 The Netherlands

city·Amsterdam

isp·DigitalOcean, LLC

asn·AS14061

network·Standard

$ sikker risk 68.183.3.211scoring →

confidence

99%Very High

first_seen·Feb 26, 2026

last_seen·Mar 3, 2026

sessions·53

events·53

$ sikker protocols 68.183.3.211

SSH

47 / 47

HTTPS

5 / 5

HTTP

1 / 1

$ sikker summary 68.183.3.211

68.183.3.211 has a threat confidence score of 99%. This IP address from The Netherlands (AS14061, DigitalOcean, LLC) has been observed in 53 honeypot sessions targeting SSH, HTTPS, HTTP protocols. Detected attack patterns include ssh hardened host profiling and shell rc immutability bypass. First observed on February 26, 2026, most recently active March 3, 2026.

$ sikker behaviors 68.183.3.211catalog →

highSsh Hardened Host Profiling And Shell Rc Immutability Bypass44x

Identifies SSH post-auth activity combining resilient multi-source CPU enumeration (explicit /usr/bin/nproc fallback) with removal of the immutable flag from ~/.shellrc via chattr, indicating host profiling followed by shell configuration tampering for persistence preparation.

mediumNextjs Rsc Proto Pollution Probe1x

Automated multipart form-data payload attempting prototype pollution against a Next.js / React Server Components deserialization context using __proto__ and constructor:constructor gadget references. Indicates staged remote code execution probing against Node.js-based public-facing applications.

$ sikker primitives 68.183.3.211

unix_chattr_remove_immutable_flag_home_shell_rc44 hardened_cpu_enumeration_with_explicit_nproc_path44 http_multipart_nextjs_proto_constructor_pollution_probe1

$ sikker related 68.183.3.211

🇳🇱·More threats fromThe Netherlands→AS·More threats fromDigitalOcean, LLC→SSH·More threats targetingSSH→HTTP·More threats targetingHTTPS→HTTP·More threats targetingHTTP→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
164.92.209.43	88%	8
159.223.63.125	82%	310
164.92.204.93	99%	448
139.59.139.128	75%	51
142.93.145.126	95%	2,487

IP Address	Confidence	Events
45.153.34.81	100%	1,428
204.76.203.206	92%	36,598
89.190.156.78	70%	283
89.21.67.134	30%	2
185.223.235.11	25%	3