93.42.126.148 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Italy

运营商(isp): Cariplo Factory

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Dec 2 16:23:47 server sshd\[7070\]: Invalid user abiel from 93.42.126.148 Dec 2 16:23:47 server sshd\[7070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Dec 2 16:23:50 server sshd\[7070\]: Failed password for invalid user abiel from 93.42.126.148 port 52715 ssh2 Dec 2 16:31:20 server sshd\[9231\]: Invalid user mufti from 93.42.126.148 Dec 2 16:31:20 server sshd\[9231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it ...	2019-12-03 03:31:19
attack	Nov 17 15:35:31 MK-Soft-VM8 sshd[26929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Nov 17 15:35:33 MK-Soft-VM8 sshd[26929]: Failed password for invalid user abhimani from 93.42.126.148 port 22992 ssh2 ...	2019-11-18 05:39:13
attackspam	F2B jail: sshd. Time: 2019-11-06 06:40:37, Reported by: VKReport	2019-11-06 13:41:26
attackbotsspam	Nov 5 16:45:32 vps691689 sshd[18325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Nov 5 16:45:35 vps691689 sshd[18325]: Failed password for invalid user aodun!@#$%^ from 93.42.126.148 port 53268 ssh2 ...	2019-11-06 02:26:33
attackbots	Nov 1 14:55:00 server sshd\[4397\]: Invalid user ji from 93.42.126.148 Nov 1 14:55:00 server sshd\[4397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Nov 1 14:55:02 server sshd\[4397\]: Failed password for invalid user ji from 93.42.126.148 port 34610 ssh2 Nov 1 15:10:02 server sshd\[7470\]: Invalid user silviu from 93.42.126.148 Nov 1 15:10:02 server sshd\[7470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it ...	2019-11-01 20:37:53
attackbots	Oct 26 17:54:28 DAAP sshd[29098]: Invalid user qwe123 from 93.42.126.148 port 52792 Oct 26 17:54:28 DAAP sshd[29098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Oct 26 17:54:28 DAAP sshd[29098]: Invalid user qwe123 from 93.42.126.148 port 52792 Oct 26 17:54:30 DAAP sshd[29098]: Failed password for invalid user qwe123 from 93.42.126.148 port 52792 ssh2 ...	2019-10-27 02:55:37
attackbots	lfd: (sshd) Failed SSH login from 93.42.126.148 (IT/Italy/93-42-126-148.ip86.fastwebnet.it): 5 in the last 3600 secs - Fri Oct 25 06:27:45 2019	2019-10-25 19:23:35
attackbotsspam	Oct 23 05:00:03 ip-172-31-62-245 sshd\[9500\]: Failed password for root from 93.42.126.148 port 48628 ssh2\ Oct 23 05:04:23 ip-172-31-62-245 sshd\[9510\]: Invalid user www from 93.42.126.148\ Oct 23 05:04:25 ip-172-31-62-245 sshd\[9510\]: Failed password for invalid user www from 93.42.126.148 port 59702 ssh2\ Oct 23 05:09:03 ip-172-31-62-245 sshd\[9604\]: Invalid user qe from 93.42.126.148\ Oct 23 05:09:05 ip-172-31-62-245 sshd\[9604\]: Failed password for invalid user qe from 93.42.126.148 port 42536 ssh2\	2019-10-23 13:43:27
attackspambots	Oct 21 15:45:31 lnxweb62 sshd[19797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148	2019-10-21 21:54:09
attackspambots	$f2bV_matches	2019-10-14 23:01:08
attackbotsspam	2019-10-14T11:17:34.436197abusebot-7.cloudsearch.cf sshd\[24333\]: Invalid user Virus123 from 93.42.126.148 port 57428	2019-10-14 19:26:35
attackbotsspam	Oct 12 12:10:04 cvbnet sshd[974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Oct 12 12:10:06 cvbnet sshd[974]: Failed password for invalid user P@ss from 93.42.126.148 port 51056 ssh2 ...	2019-10-12 18:50:35
attackspambots	(sshd) Failed SSH login from 93.42.126.148 (93-42-126-148.ip86.fastwebnet.it): 5 in the last 3600 secs	2019-10-06 00:48:55
attackbots	Sep 30 15:27:30 SilenceServices sshd[21601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Sep 30 15:27:32 SilenceServices sshd[21601]: Failed password for invalid user ahma from 93.42.126.148 port 45928 ssh2 Sep 30 15:32:25 SilenceServices sshd[22962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148	2019-09-30 23:07:25
attack	Sep 28 16:09:16 core sshd[7799]: Invalid user ubiqube from 93.42.126.148 port 34386 Sep 28 16:09:19 core sshd[7799]: Failed password for invalid user ubiqube from 93.42.126.148 port 34386 ssh2 ...	2019-09-28 22:15:49
attack	k+ssh-bruteforce	2019-09-27 18:35:58
attack	Sep 26 16:20:48 srv206 sshd[18120]: Invalid user arcs from 93.42.126.148 ...	2019-09-26 23:14:16
attackspam	Sep 22 20:27:28 plusreed sshd[6426]: Invalid user mumbleserver from 93.42.126.148 ...	2019-09-23 08:28:30
attackbots	Sep 22 13:11:55 hcbbdb sshd\[24224\]: Invalid user dd from 93.42.126.148 Sep 22 13:11:55 hcbbdb sshd\[24224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Sep 22 13:11:57 hcbbdb sshd\[24224\]: Failed password for invalid user dd from 93.42.126.148 port 46872 ssh2 Sep 22 13:16:42 hcbbdb sshd\[24812\]: Invalid user aDmin from 93.42.126.148 Sep 22 13:16:42 hcbbdb sshd\[24812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it	2019-09-22 21:30:59
attackspam	Lines containing failures of 93.42.126.148 (max 1000) Sep 11 21:47:44 Server sshd[5741]: Invalid user ftpuser from 93.42.126.148 port 57408 Sep 11 21:47:44 Server sshd[5741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Sep 11 21:47:46 Server sshd[5741]: Failed password for invalid user ftpuser from 93.42.126.148 port 57408 ssh2 Sep 11 21:47:47 Server sshd[5741]: Received disconnect from 93.42.126.148 port 57408:11: Bye Bye [preauth] Sep 11 21:47:47 Server sshd[5741]: Disconnected from invalid user ftpuser 93.42.126.148 port 57408 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=93.42.126.148	2019-09-13 04:01:28
attack	F2B jail: sshd. Time: 2019-09-12 09:29:37, Reported by: VKReport	2019-09-12 15:31:05

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.42.126.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13159
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.42.126.148.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 12 15:30:56 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

148.126.42.93.in-addr.arpa domain name pointer 93-42-126-148.ip86.fastwebnet.it.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
148.126.42.93.in-addr.arpa	name = 93-42-126-148.ip86.fastwebnet.it.

Authoritative answers can be found from:

IP	类型	评论内容	时间
103.108.157.174	attackbots	Apr 3 12:29:19 gw1 sshd[30691]: Failed password for root from 103.108.157.174 port 35780 ssh2 ...	2020-04-03 15:34:10
139.162.21.228	attackbots	Automatic report - Malicious Script Upload	2020-04-03 16:03:48
50.252.114.117	attack	Unauthorized connection attempt detected from IP address 50.252.114.117 to port 80	2020-04-03 15:59:28
148.70.40.218	attackbots	Apr 2 21:35:55 web9 sshd\[23819\]: Invalid user lvxiangning from 148.70.40.218 Apr 2 21:35:55 web9 sshd\[23819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.40.218 Apr 2 21:35:57 web9 sshd\[23819\]: Failed password for invalid user lvxiangning from 148.70.40.218 port 47636 ssh2 Apr 2 21:43:16 web9 sshd\[24906\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.40.218 user=root Apr 2 21:43:18 web9 sshd\[24906\]: Failed password for root from 148.70.40.218 port 58538 ssh2	2020-04-03 16:00:26
139.155.70.21	attackbotsspam	Apr 3 06:52:11 mout sshd[22694]: Connection closed by 139.155.70.21 port 53566 [preauth]	2020-04-03 16:09:24
218.94.103.226	attackbots	Invalid user yukenan from 218.94.103.226 port 31932	2020-04-03 15:38:39
180.76.173.189	attackspambots	Invalid user internet from 180.76.173.189 port 46546	2020-04-03 15:39:10
167.172.145.231	attack	Invalid user ebv from 167.172.145.231 port 41752	2020-04-03 15:52:59
178.128.123.111	attackbotsspam	Invalid user mukazhanov from 178.128.123.111 port 34852	2020-04-03 16:14:19
103.141.188.147	attackspambots	DATE:2020-04-03 05:52:12, IP:103.141.188.147, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2020-04-03 15:57:40
13.250.234.242	attackspambots	$f2bV_matches	2020-04-03 15:21:57
167.114.114.193	attackspam	k+ssh-bruteforce	2020-04-03 16:01:42
185.175.93.17	attackbotsspam	04/03/2020-02:33:22.112616 185.175.93.17 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-04-03 16:13:01
103.45.99.172	attackbotsspam	Apr 3 08:25:36 sip sshd[26142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.99.172 Apr 3 08:25:37 sip sshd[26142]: Failed password for invalid user kdoboku from 103.45.99.172 port 43028 ssh2 Apr 3 08:35:57 sip sshd[28671]: Failed password for root from 103.45.99.172 port 36902 ssh2	2020-04-03 15:43:50
117.158.134.217	attackbotsspam	Apr 2 23:49:04 ny01 sshd[9267]: Failed password for root from 117.158.134.217 port 21692 ssh2 Apr 2 23:51:01 ny01 sshd[9495]: Failed password for root from 117.158.134.217 port 21693 ssh2	2020-04-03 15:26:46

最近上报的IP列表

49.146.61.11	18.25.84.209	100.196.78.74	122.116.116.154
185.153.196.28	218.161.124.242	187.7.255.66	220.133.190.31
160.22.209.44	159.203.201.189	128.71.14.245	108.166.114.131
66.138.134.40	15.218.110.202	184.194.147.68	120.253.200.236
171.221.81.179	94.237.64.47	185.153.198.46	59.153.240.34