城市(city): Canton
省份(region): Michigan
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): Comcast Cable Communications, LLC
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.42.139.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28009
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;68.42.139.49. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019061201 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 07:59:25 CST 2019
;; MSG SIZE rcvd: 116
49.139.42.68.in-addr.arpa domain name pointer c-68-42-139-49.hsd1.mi.comcast.net.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
49.139.42.68.in-addr.arpa name = c-68-42-139-49.hsd1.mi.comcast.net.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 95.59.71.114 | attack | Unauthorised access (Nov 26) SRC=95.59.71.114 LEN=52 TTL=117 ID=7110 DF TCP DPT=445 WINDOW=8192 SYN |
2019-11-26 16:39:26 |
| 142.93.214.20 | attack | Invalid user hilliary from 142.93.214.20 port 41734 |
2019-11-26 16:49:53 |
| 5.249.131.161 | attackspam | Lines containing failures of 5.249.131.161 Nov 25 21:11:49 dns01 sshd[24974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.131.161 user=r.r Nov 25 21:11:52 dns01 sshd[24974]: Failed password for r.r from 5.249.131.161 port 10078 ssh2 Nov 25 21:11:52 dns01 sshd[24974]: Received disconnect from 5.249.131.161 port 10078:11: Bye Bye [preauth] Nov 25 21:11:52 dns01 sshd[24974]: Disconnected from authenticating user r.r 5.249.131.161 port 10078 [preauth] Nov 25 21:45:40 dns01 sshd[30634]: Invalid user rutan from 5.249.131.161 port 54649 Nov 25 21:45:40 dns01 sshd[30634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.131.161 Nov 25 21:45:42 dns01 sshd[30634]: Failed password for invalid user rutan from 5.249.131.161 port 54649 ssh2 Nov 25 21:45:42 dns01 sshd[30634]: Received disconnect from 5.249.131.161 port 54649:11: Bye Bye [preauth] Nov 25 21:45:42 dns01 sshd[30634]: Disconnect........ ------------------------------ |
2019-11-26 16:30:50 |
| 176.31.128.45 | attack | Nov 26 09:38:59 vps691689 sshd[29506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.128.45 Nov 26 09:39:00 vps691689 sshd[29506]: Failed password for invalid user sammy from 176.31.128.45 port 38292 ssh2 Nov 26 09:45:07 vps691689 sshd[29590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.128.45 ... |
2019-11-26 16:45:11 |
| 94.172.239.34 | attack | Forged login request. |
2019-11-26 16:52:51 |
| 51.77.220.183 | attack | Nov 26 07:11:18 localhost sshd[44090]: Failed password for invalid user kariushi from 51.77.220.183 port 46828 ssh2 Nov 26 07:23:59 localhost sshd[44191]: Failed password for invalid user aeneas from 51.77.220.183 port 41254 ssh2 Nov 26 07:27:06 localhost sshd[44216]: Failed password for invalid user julia from 51.77.220.183 port 49026 ssh2 |
2019-11-26 17:06:33 |
| 202.39.70.5 | attackbotsspam | CyberHackers.eu > SSH Bruteforce attempt! |
2019-11-26 16:47:58 |
| 62.234.156.221 | attackbotsspam | Nov 26 13:27:53 vibhu-HP-Z238-Microtower-Workstation sshd\[16721\]: Invalid user vagrant from 62.234.156.221 Nov 26 13:27:53 vibhu-HP-Z238-Microtower-Workstation sshd\[16721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.156.221 Nov 26 13:27:56 vibhu-HP-Z238-Microtower-Workstation sshd\[16721\]: Failed password for invalid user vagrant from 62.234.156.221 port 48550 ssh2 Nov 26 13:34:21 vibhu-HP-Z238-Microtower-Workstation sshd\[17007\]: Invalid user deasa from 62.234.156.221 Nov 26 13:34:21 vibhu-HP-Z238-Microtower-Workstation sshd\[17007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.156.221 ... |
2019-11-26 17:05:24 |
| 134.209.152.176 | attack | Nov 26 08:29:24 vps691689 sshd[28366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176 Nov 26 08:29:26 vps691689 sshd[28366]: Failed password for invalid user olavmartin from 134.209.152.176 port 45570 ssh2 ... |
2019-11-26 16:58:07 |
| 200.133.39.24 | attackbots | Nov 26 09:52:29 OPSO sshd\[10926\]: Invalid user otemoyan from 200.133.39.24 port 47570 Nov 26 09:52:29 OPSO sshd\[10926\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.133.39.24 Nov 26 09:52:31 OPSO sshd\[10926\]: Failed password for invalid user otemoyan from 200.133.39.24 port 47570 ssh2 Nov 26 09:59:50 OPSO sshd\[12225\]: Invalid user git from 200.133.39.24 port 54894 Nov 26 09:59:50 OPSO sshd\[12225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.133.39.24 |
2019-11-26 17:02:02 |
| 64.94.179.80 | attack | TCP Port Scanning |
2019-11-26 16:44:11 |
| 123.15.43.218 | attack | [portscan] Port scan |
2019-11-26 16:45:41 |
| 18.237.226.55 | attack | Bad bot/spoofed identity |
2019-11-26 16:40:10 |
| 150.161.5.10 | attackspam | Lines containing failures of 150.161.5.10 Nov 25 02:22:52 install sshd[25502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.161.5.10 user=games Nov 25 02:22:54 install sshd[25502]: Failed password for games from 150.161.5.10 port 33886 ssh2 Nov 25 02:22:55 install sshd[25502]: Received disconnect from 150.161.5.10 port 33886:11: Bye Bye [preauth] Nov 25 02:22:55 install sshd[25502]: Disconnected from authenticating user games 150.161.5.10 port 33886 [preauth] Nov 25 02:49:55 install sshd[28693]: Invalid user haddock from 150.161.5.10 port 60840 Nov 25 02:49:55 install sshd[28693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.161.5.10 Nov 25 02:49:57 install sshd[28693]: Failed password for invalid user haddock from 150.161.5.10 port 60840 ssh2 Nov 25 02:49:57 install sshd[28693]: Received disconnect from 150.161.5.10 port 60840:11: Bye Bye [preauth] Nov 25 02:49:57 install sshd........ ------------------------------ |
2019-11-26 16:55:23 |
| 31.171.108.133 | attackspambots | Nov 26 07:27:45 icinga sshd[29145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.171.108.133 Nov 26 07:27:47 icinga sshd[29145]: Failed password for invalid user webmaster from 31.171.108.133 port 40728 ssh2 ... |
2019-11-26 16:38:12 |