42.159.92.93 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai Blue Cloud Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jun 4 03:11:45 dns1 sshd[31706]: Failed password for root from 42.159.92.93 port 56014 ssh2 Jun 4 03:14:58 dns1 sshd[31869]: Failed password for root from 42.159.92.93 port 46274 ssh2	2020-06-04 20:04:56
attack	Jun 2 15:36:45 vps647732 sshd[30013]: Failed password for root from 42.159.92.93 port 46236 ssh2 ...	2020-06-03 02:57:50
attack	May 31 23:06:52 piServer sshd[17617]: Failed password for root from 42.159.92.93 port 38398 ssh2 May 31 23:09:05 piServer sshd[17784]: Failed password for root from 42.159.92.93 port 40550 ssh2 ...	2020-06-01 06:43:48
attackbotsspam	Invalid user oracle from 42.159.92.93 port 59522	2020-05-29 14:07:35
attackspambots	2020-05-13T12:27:54.094536abusebot-2.cloudsearch.cf sshd[5605]: Invalid user providencia from 42.159.92.93 port 41576 2020-05-13T12:27:54.103137abusebot-2.cloudsearch.cf sshd[5605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 2020-05-13T12:27:54.094536abusebot-2.cloudsearch.cf sshd[5605]: Invalid user providencia from 42.159.92.93 port 41576 2020-05-13T12:27:55.786440abusebot-2.cloudsearch.cf sshd[5605]: Failed password for invalid user providencia from 42.159.92.93 port 41576 ssh2 2020-05-13T12:35:11.391327abusebot-2.cloudsearch.cf sshd[5667]: Invalid user arkserver from 42.159.92.93 port 40616 2020-05-13T12:35:11.396652abusebot-2.cloudsearch.cf sshd[5667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 2020-05-13T12:35:11.391327abusebot-2.cloudsearch.cf sshd[5667]: Invalid user arkserver from 42.159.92.93 port 40616 2020-05-13T12:35:13.070072abusebot-2.cloudsearch.cf sshd[56 ...	2020-05-14 01:10:44
attackspam	Invalid user techuser from 42.159.92.93 port 36884	2020-04-19 13:44:06
attack	Apr 17 13:28:26 localhost sshd\[29064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 user=root Apr 17 13:28:27 localhost sshd\[29064\]: Failed password for root from 42.159.92.93 port 40368 ssh2 Apr 17 13:33:00 localhost sshd\[29396\]: Invalid user sftpuser from 42.159.92.93 Apr 17 13:33:00 localhost sshd\[29396\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Apr 17 13:33:02 localhost sshd\[29396\]: Failed password for invalid user sftpuser from 42.159.92.93 port 45650 ssh2 ...	2020-04-17 19:33:33
attackbotsspam	Mar 26 11:00:53 NPSTNNYC01T sshd[29953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Mar 26 11:00:56 NPSTNNYC01T sshd[29953]: Failed password for invalid user butthead from 42.159.92.93 port 48182 ssh2 Mar 26 11:03:15 NPSTNNYC01T sshd[30143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 ...	2020-03-26 23:30:26
attackspambots	Mar 22 04:54:17 nextcloud sshd\[30791\]: Invalid user robert from 42.159.92.93 Mar 22 04:54:17 nextcloud sshd\[30791\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Mar 22 04:54:19 nextcloud sshd\[30791\]: Failed password for invalid user robert from 42.159.92.93 port 57482 ssh2	2020-03-22 15:31:56
attackspambots	Mar 8 12:01:47 hosting sshd[13584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 user=root Mar 8 12:01:49 hosting sshd[13584]: Failed password for root from 42.159.92.93 port 43768 ssh2 Mar 8 12:18:34 hosting sshd[14999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 user=root Mar 8 12:18:36 hosting sshd[14999]: Failed password for root from 42.159.92.93 port 50604 ssh2 ...	2020-03-08 17:33:37
attack	Feb 20 13:47:13 auw2 sshd\[5665\]: Invalid user sinusbot from 42.159.92.93 Feb 20 13:47:13 auw2 sshd\[5665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Feb 20 13:47:15 auw2 sshd\[5665\]: Failed password for invalid user sinusbot from 42.159.92.93 port 49816 ssh2 Feb 20 13:52:12 auw2 sshd\[6085\]: Invalid user zhugf from 42.159.92.93 Feb 20 13:52:12 auw2 sshd\[6085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93	2020-02-21 08:21:09
attackspam	Feb 20 01:56:14 vps46666688 sshd[6322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Feb 20 01:56:16 vps46666688 sshd[6322]: Failed password for invalid user at from 42.159.92.93 port 36038 ssh2 ...	2020-02-20 13:54:06
attackspambots	Feb 11 21:32:22 mockhub sshd[613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Feb 11 21:32:23 mockhub sshd[613]: Failed password for invalid user sicily from 42.159.92.93 port 60336 ssh2 ...	2020-02-12 19:07:35

相同子网IP讨论:

IP	类型	评论内容	时间
42.159.92.147	attack	Sep 21 04:08:18 xtremcommunity sshd\[311665\]: Invalid user pi from 42.159.92.147 port 53334 Sep 21 04:08:18 xtremcommunity sshd\[311665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.147 Sep 21 04:08:20 xtremcommunity sshd\[311665\]: Failed password for invalid user pi from 42.159.92.147 port 53334 ssh2 Sep 21 04:11:40 xtremcommunity sshd\[311781\]: Invalid user tom from 42.159.92.147 port 51392 Sep 21 04:11:40 xtremcommunity sshd\[311781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.147 ...	2019-09-21 20:50:18
42.159.92.147	attackspam	2019-09-14T11:14:35.693859abusebot-2.cloudsearch.cf sshd\[13003\]: Invalid user nexthink from 42.159.92.147 port 53496	2019-09-14 19:26:55
42.159.92.147	attack	2019-09-11T13:38:18.180074abusebot-4.cloudsearch.cf sshd\[21784\]: Invalid user hadoop from 42.159.92.147 port 39960	2019-09-11 23:32:22
42.159.92.147	attackspambots	$f2bV_matches	2019-08-02 16:56:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.159.92.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53764
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.159.92.93.			IN	A

;; AUTHORITY SECTION:
.			126	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021200 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 19:07:28 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 93.92.159.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 93.92.159.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.151.137.160	attackspam	Unauthorized connection attempt from IP address 49.151.137.160 on Port 445(SMB)	2019-11-02 18:00:02
49.235.134.72	attack	SSH Brute-Force attacks	2019-11-02 17:59:14
222.186.175.212	attackbotsspam	2019-11-02T10:31:36.195195hub.schaetter.us sshd\[23625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root 2019-11-02T10:31:38.387569hub.schaetter.us sshd\[23625\]: Failed password for root from 222.186.175.212 port 4762 ssh2 2019-11-02T10:31:42.336390hub.schaetter.us sshd\[23625\]: Failed password for root from 222.186.175.212 port 4762 ssh2 2019-11-02T10:31:45.842070hub.schaetter.us sshd\[23625\]: Failed password for root from 222.186.175.212 port 4762 ssh2 2019-11-02T10:31:50.215609hub.schaetter.us sshd\[23625\]: Failed password for root from 222.186.175.212 port 4762 ssh2 ...	2019-11-02 18:32:21
80.211.117.21	attack	Oct 30 00:38:56 localhost sshd\[26213\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.117.21 user=root Oct 30 00:38:58 localhost sshd\[26213\]: Failed password for root from 80.211.117.21 port 59552 ssh2 Oct 30 00:54:38 localhost sshd\[26300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.117.21 user=root Oct 30 00:54:40 localhost sshd\[26300\]: Failed password for root from 80.211.117.21 port 50982 ssh2	2019-11-02 18:23:01
128.199.100.225	attackbots	Nov 2 10:02:43 MK-Soft-VM6 sshd[5510]: Failed password for root from 128.199.100.225 port 38191 ssh2 Nov 2 10:10:33 MK-Soft-VM6 sshd[5525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.100.225 ...	2019-11-02 18:21:32
190.75.76.72	attackbots	Unauthorized connection attempt from IP address 190.75.76.72 on Port 445(SMB)	2019-11-02 18:14:31
95.68.224.130	attackspambots	Chat Spam	2019-11-02 18:12:34
212.83.138.75	attackbots	Nov 2 03:50:06 lanister sshd[26958]: Invalid user teamspeak3 from 212.83.138.75 Nov 2 03:50:08 lanister sshd[26958]: Failed password for invalid user teamspeak3 from 212.83.138.75 port 51128 ssh2 Nov 2 03:54:38 lanister sshd[26998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.83.138.75 user=lp Nov 2 03:54:39 lanister sshd[26998]: Failed password for lp from 212.83.138.75 port 33958 ssh2 ...	2019-11-02 18:26:39
82.208.112.12	attackspambots	Chat Spam	2019-11-02 18:03:13
46.38.144.32	attackspambots	2019-11-02T11:08:45.046298mail01 postfix/smtpd[27272]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-02T11:09:39.410156mail01 postfix/smtpd[8442]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-02T11:09:47.193115mail01 postfix/smtpd[7830]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-02 18:22:10
77.93.33.212	attackspam	Nov 2 07:47:30 vmanager6029 sshd\[20790\]: Invalid user test from 77.93.33.212 port 37354 Nov 2 07:47:30 vmanager6029 sshd\[20790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.93.33.212 Nov 2 07:47:31 vmanager6029 sshd\[20790\]: Failed password for invalid user test from 77.93.33.212 port 37354 ssh2	2019-11-02 18:03:43
123.178.123.190	attackbotsspam	'IP reached maximum auth failures for a one day block'	2019-11-02 18:28:57
109.87.200.193	attack	[munged]::443 109.87.200.193 - - [02/Nov/2019:10:52:14 +0100] "POST /[munged]: HTTP/1.1" 200 6626 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-11-02 18:28:44
223.29.196.44	attackbots	Unauthorized connection attempt from IP address 223.29.196.44 on Port 445(SMB)	2019-11-02 17:54:42
54.39.50.204	attackbotsspam	Nov 2 10:58:33 ns381471 sshd[1191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.50.204 Nov 2 10:58:35 ns381471 sshd[1191]: Failed password for invalid user ftpuser from 54.39.50.204 port 12890 ssh2	2019-11-02 18:19:07

最近上报的IP列表

210.66.64.136	96.125.162.70	106.197.195.189	20.255.186.16
137.211.81.178	85.255.8.100	183.102.82.85	45.50.222.46
1.238.238.220	54.121.23.90	128.186.7.142	117.196.18.32
59.127.17.3	49.206.27.215	123.24.41.108	189.212.117.15
201.131.177.8	81.171.26.136	59.126.149.233	31.133.97.24