42.159.92.93 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai Blue Cloud Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jun 4 03:11:45 dns1 sshd[31706]: Failed password for root from 42.159.92.93 port 56014 ssh2 Jun 4 03:14:58 dns1 sshd[31869]: Failed password for root from 42.159.92.93 port 46274 ssh2	2020-06-04 20:04:56
attack	Jun 2 15:36:45 vps647732 sshd[30013]: Failed password for root from 42.159.92.93 port 46236 ssh2 ...	2020-06-03 02:57:50
attack	May 31 23:06:52 piServer sshd[17617]: Failed password for root from 42.159.92.93 port 38398 ssh2 May 31 23:09:05 piServer sshd[17784]: Failed password for root from 42.159.92.93 port 40550 ssh2 ...	2020-06-01 06:43:48
attackbotsspam	Invalid user oracle from 42.159.92.93 port 59522	2020-05-29 14:07:35
attackspambots	2020-05-13T12:27:54.094536abusebot-2.cloudsearch.cf sshd[5605]: Invalid user providencia from 42.159.92.93 port 41576 2020-05-13T12:27:54.103137abusebot-2.cloudsearch.cf sshd[5605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 2020-05-13T12:27:54.094536abusebot-2.cloudsearch.cf sshd[5605]: Invalid user providencia from 42.159.92.93 port 41576 2020-05-13T12:27:55.786440abusebot-2.cloudsearch.cf sshd[5605]: Failed password for invalid user providencia from 42.159.92.93 port 41576 ssh2 2020-05-13T12:35:11.391327abusebot-2.cloudsearch.cf sshd[5667]: Invalid user arkserver from 42.159.92.93 port 40616 2020-05-13T12:35:11.396652abusebot-2.cloudsearch.cf sshd[5667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 2020-05-13T12:35:11.391327abusebot-2.cloudsearch.cf sshd[5667]: Invalid user arkserver from 42.159.92.93 port 40616 2020-05-13T12:35:13.070072abusebot-2.cloudsearch.cf sshd[56 ...	2020-05-14 01:10:44
attackspam	Invalid user techuser from 42.159.92.93 port 36884	2020-04-19 13:44:06
attack	Apr 17 13:28:26 localhost sshd\[29064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 user=root Apr 17 13:28:27 localhost sshd\[29064\]: Failed password for root from 42.159.92.93 port 40368 ssh2 Apr 17 13:33:00 localhost sshd\[29396\]: Invalid user sftpuser from 42.159.92.93 Apr 17 13:33:00 localhost sshd\[29396\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Apr 17 13:33:02 localhost sshd\[29396\]: Failed password for invalid user sftpuser from 42.159.92.93 port 45650 ssh2 ...	2020-04-17 19:33:33
attackbotsspam	Mar 26 11:00:53 NPSTNNYC01T sshd[29953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Mar 26 11:00:56 NPSTNNYC01T sshd[29953]: Failed password for invalid user butthead from 42.159.92.93 port 48182 ssh2 Mar 26 11:03:15 NPSTNNYC01T sshd[30143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 ...	2020-03-26 23:30:26
attackspambots	Mar 22 04:54:17 nextcloud sshd\[30791\]: Invalid user robert from 42.159.92.93 Mar 22 04:54:17 nextcloud sshd\[30791\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Mar 22 04:54:19 nextcloud sshd\[30791\]: Failed password for invalid user robert from 42.159.92.93 port 57482 ssh2	2020-03-22 15:31:56
attackspambots	Mar 8 12:01:47 hosting sshd[13584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 user=root Mar 8 12:01:49 hosting sshd[13584]: Failed password for root from 42.159.92.93 port 43768 ssh2 Mar 8 12:18:34 hosting sshd[14999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 user=root Mar 8 12:18:36 hosting sshd[14999]: Failed password for root from 42.159.92.93 port 50604 ssh2 ...	2020-03-08 17:33:37
attack	Feb 20 13:47:13 auw2 sshd\[5665\]: Invalid user sinusbot from 42.159.92.93 Feb 20 13:47:13 auw2 sshd\[5665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Feb 20 13:47:15 auw2 sshd\[5665\]: Failed password for invalid user sinusbot from 42.159.92.93 port 49816 ssh2 Feb 20 13:52:12 auw2 sshd\[6085\]: Invalid user zhugf from 42.159.92.93 Feb 20 13:52:12 auw2 sshd\[6085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93	2020-02-21 08:21:09
attackspam	Feb 20 01:56:14 vps46666688 sshd[6322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Feb 20 01:56:16 vps46666688 sshd[6322]: Failed password for invalid user at from 42.159.92.93 port 36038 ssh2 ...	2020-02-20 13:54:06
attackspambots	Feb 11 21:32:22 mockhub sshd[613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Feb 11 21:32:23 mockhub sshd[613]: Failed password for invalid user sicily from 42.159.92.93 port 60336 ssh2 ...	2020-02-12 19:07:35

相同子网IP讨论:

IP	类型	评论内容	时间
42.159.92.147	attack	Sep 21 04:08:18 xtremcommunity sshd\[311665\]: Invalid user pi from 42.159.92.147 port 53334 Sep 21 04:08:18 xtremcommunity sshd\[311665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.147 Sep 21 04:08:20 xtremcommunity sshd\[311665\]: Failed password for invalid user pi from 42.159.92.147 port 53334 ssh2 Sep 21 04:11:40 xtremcommunity sshd\[311781\]: Invalid user tom from 42.159.92.147 port 51392 Sep 21 04:11:40 xtremcommunity sshd\[311781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.147 ...	2019-09-21 20:50:18
42.159.92.147	attackspam	2019-09-14T11:14:35.693859abusebot-2.cloudsearch.cf sshd\[13003\]: Invalid user nexthink from 42.159.92.147 port 53496	2019-09-14 19:26:55
42.159.92.147	attack	2019-09-11T13:38:18.180074abusebot-4.cloudsearch.cf sshd\[21784\]: Invalid user hadoop from 42.159.92.147 port 39960	2019-09-11 23:32:22
42.159.92.147	attackspambots	$f2bV_matches	2019-08-02 16:56:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.159.92.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53764
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.159.92.93.			IN	A

;; AUTHORITY SECTION:
.			126	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021200 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 19:07:28 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 93.92.159.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 93.92.159.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
178.128.158.113	attackbotsspam	Dec 3 09:38:56 MK-Soft-VM3 sshd[8373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.158.113 Dec 3 09:38:59 MK-Soft-VM3 sshd[8373]: Failed password for invalid user default from 178.128.158.113 port 56426 ssh2 ...	2019-12-03 16:45:23
27.150.169.223	attackspam	Dec 2 22:06:55 php1 sshd\[8455\]: Invalid user apache from 27.150.169.223 Dec 2 22:06:55 php1 sshd\[8455\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.150.169.223 Dec 2 22:06:57 php1 sshd\[8455\]: Failed password for invalid user apache from 27.150.169.223 port 50395 ssh2 Dec 2 22:13:52 php1 sshd\[9414\]: Invalid user syse from 27.150.169.223 Dec 2 22:13:52 php1 sshd\[9414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.150.169.223	2019-12-03 16:33:51
139.59.59.194	attack	Dec 3 08:41:12 cvbnet sshd[1269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.194 Dec 3 08:41:15 cvbnet sshd[1269]: Failed password for invalid user shillinger from 139.59.59.194 port 40162 ssh2 ...	2019-12-03 16:23:13
160.153.244.195	attackbotsspam	Unauthorized SSH login attempts	2019-12-03 16:33:14
185.84.181.47	attackspambots	WordPress wp-login brute force :: 185.84.181.47 0.100 BYPASS [03/Dec/2019:06:28:17 0000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 2134 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-12-03 16:33:00
49.247.203.22	attackspambots	Dec 3 09:38:28 OPSO sshd\[3134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.203.22 user=root Dec 3 09:38:30 OPSO sshd\[3134\]: Failed password for root from 49.247.203.22 port 56944 ssh2 Dec 3 09:45:25 OPSO sshd\[4646\]: Invalid user xv from 49.247.203.22 port 40150 Dec 3 09:45:25 OPSO sshd\[4646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.203.22 Dec 3 09:45:26 OPSO sshd\[4646\]: Failed password for invalid user xv from 49.247.203.22 port 40150 ssh2	2019-12-03 16:46:15
129.211.14.39	attackbots	Dec 3 12:56:12 gw1 sshd[10018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.14.39 Dec 3 12:56:14 gw1 sshd[10018]: Failed password for invalid user zmxncbv from 129.211.14.39 port 41614 ssh2 ...	2019-12-03 16:13:26
155.93.250.147	attackspam	Port 22 Scan, PTR: None	2019-12-03 16:26:04
13.90.197.39	attack	Port 22 Scan, PTR: None	2019-12-03 16:20:28
163.172.145.170	attackbots	Port 22 Scan, PTR: None	2019-12-03 16:49:33
5.196.73.40	attackspam	Dec 3 08:12:34 microserver sshd[63739]: Invalid user ching from 5.196.73.40 port 47620 Dec 3 08:12:34 microserver sshd[63739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.73.40 Dec 3 08:12:36 microserver sshd[63739]: Failed password for invalid user ching from 5.196.73.40 port 47620 ssh2 Dec 3 08:20:47 microserver sshd[65080]: Invalid user loughran from 5.196.73.40 port 58772 Dec 3 08:20:47 microserver sshd[65080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.73.40 Dec 3 08:52:36 microserver sshd[4398]: Invalid user hegdalsaunet from 5.196.73.40 port 46878 Dec 3 08:52:36 microserver sshd[4398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.73.40 Dec 3 08:52:39 microserver sshd[4398]: Failed password for invalid user hegdalsaunet from 5.196.73.40 port 46878 ssh2 Dec 3 09:00:23 microserver sshd[5657]: Invalid user brady from 5.196.73.40 port 58028 Dec 3 09:	2019-12-03 16:40:41
221.195.43.177	attackspam	2019-12-03T07:57:45.219767vps751288.ovh.net sshd\[10593\]: Invalid user testftp from 221.195.43.177 port 15871 2019-12-03T07:57:45.228147vps751288.ovh.net sshd\[10593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.195.43.177 2019-12-03T07:57:46.617113vps751288.ovh.net sshd\[10593\]: Failed password for invalid user testftp from 221.195.43.177 port 15871 ssh2 2019-12-03T08:04:45.556806vps751288.ovh.net sshd\[10697\]: Invalid user user from 221.195.43.177 port 18685 2019-12-03T08:04:45.563372vps751288.ovh.net sshd\[10697\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.195.43.177	2019-12-03 16:41:04
63.80.184.117	attackbotsspam	2019-12-03T07:48:26.447562stark.klein-stark.info postfix/smtpd\[16976\]: NOQUEUE: reject: RCPT from island.sapuxfiori.com\[63.80.184.117\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-03 16:47:23
181.130.114.152	attackbots	Dec 3 03:26:57 ny01 sshd[15004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.130.114.152 Dec 3 03:26:59 ny01 sshd[15004]: Failed password for invalid user rochell from 181.130.114.152 port 56784 ssh2 Dec 3 03:33:11 ny01 sshd[15803]: Failed password for root from 181.130.114.152 port 40184 ssh2	2019-12-03 16:47:36
14.43.82.242	attackbotsspam	Dec 3 08:27:39 icinga sshd[18719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.43.82.242 Dec 3 08:27:41 icinga sshd[18719]: Failed password for invalid user robert from 14.43.82.242 port 40924 ssh2 Dec 3 08:42:03 icinga sshd[32030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.43.82.242 ...	2019-12-03 16:14:03

最近上报的IP列表

210.66.64.136	96.125.162.70	106.197.195.189	20.255.186.16
137.211.81.178	85.255.8.100	183.102.82.85	45.50.222.46
1.238.238.220	54.121.23.90	128.186.7.142	117.196.18.32
59.127.17.3	49.206.27.215	123.24.41.108	189.212.117.15
201.131.177.8	81.171.26.136	59.126.149.233	31.133.97.24