城市(city): unknown
省份(region): unknown
国家(country): Italy
运营商(isp): Cariplo Factory
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Commercial
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbotsspam | Dec 2 16:23:47 server sshd\[7070\]: Invalid user abiel from 93.42.126.148 Dec 2 16:23:47 server sshd\[7070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Dec 2 16:23:50 server sshd\[7070\]: Failed password for invalid user abiel from 93.42.126.148 port 52715 ssh2 Dec 2 16:31:20 server sshd\[9231\]: Invalid user mufti from 93.42.126.148 Dec 2 16:31:20 server sshd\[9231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it ... |
2019-12-03 03:31:19 |
| attack | Nov 17 15:35:31 MK-Soft-VM8 sshd[26929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Nov 17 15:35:33 MK-Soft-VM8 sshd[26929]: Failed password for invalid user abhimani from 93.42.126.148 port 22992 ssh2 ... |
2019-11-18 05:39:13 |
| attackspam | F2B jail: sshd. Time: 2019-11-06 06:40:37, Reported by: VKReport |
2019-11-06 13:41:26 |
| attackbotsspam | Nov 5 16:45:32 vps691689 sshd[18325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Nov 5 16:45:35 vps691689 sshd[18325]: Failed password for invalid user aodun!@#$%^ from 93.42.126.148 port 53268 ssh2 ... |
2019-11-06 02:26:33 |
| attackbots | Nov 1 14:55:00 server sshd\[4397\]: Invalid user ji from 93.42.126.148 Nov 1 14:55:00 server sshd\[4397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Nov 1 14:55:02 server sshd\[4397\]: Failed password for invalid user ji from 93.42.126.148 port 34610 ssh2 Nov 1 15:10:02 server sshd\[7470\]: Invalid user silviu from 93.42.126.148 Nov 1 15:10:02 server sshd\[7470\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it ... |
2019-11-01 20:37:53 |
| attackbots | Oct 26 17:54:28 DAAP sshd[29098]: Invalid user qwe123 from 93.42.126.148 port 52792 Oct 26 17:54:28 DAAP sshd[29098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Oct 26 17:54:28 DAAP sshd[29098]: Invalid user qwe123 from 93.42.126.148 port 52792 Oct 26 17:54:30 DAAP sshd[29098]: Failed password for invalid user qwe123 from 93.42.126.148 port 52792 ssh2 ... |
2019-10-27 02:55:37 |
| attackbots | lfd: (sshd) Failed SSH login from 93.42.126.148 (IT/Italy/93-42-126-148.ip86.fastwebnet.it): 5 in the last 3600 secs - Fri Oct 25 06:27:45 2019 |
2019-10-25 19:23:35 |
| attackbotsspam | Oct 23 05:00:03 ip-172-31-62-245 sshd\[9500\]: Failed password for root from 93.42.126.148 port 48628 ssh2\ Oct 23 05:04:23 ip-172-31-62-245 sshd\[9510\]: Invalid user www from 93.42.126.148\ Oct 23 05:04:25 ip-172-31-62-245 sshd\[9510\]: Failed password for invalid user www from 93.42.126.148 port 59702 ssh2\ Oct 23 05:09:03 ip-172-31-62-245 sshd\[9604\]: Invalid user qe from 93.42.126.148\ Oct 23 05:09:05 ip-172-31-62-245 sshd\[9604\]: Failed password for invalid user qe from 93.42.126.148 port 42536 ssh2\ |
2019-10-23 13:43:27 |
| attackspambots | Oct 21 15:45:31 lnxweb62 sshd[19797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 |
2019-10-21 21:54:09 |
| attackspambots | $f2bV_matches |
2019-10-14 23:01:08 |
| attackbotsspam | 2019-10-14T11:17:34.436197abusebot-7.cloudsearch.cf sshd\[24333\]: Invalid user Virus123 from 93.42.126.148 port 57428 |
2019-10-14 19:26:35 |
| attackbotsspam | Oct 12 12:10:04 cvbnet sshd[974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Oct 12 12:10:06 cvbnet sshd[974]: Failed password for invalid user P@ss from 93.42.126.148 port 51056 ssh2 ... |
2019-10-12 18:50:35 |
| attackspambots | (sshd) Failed SSH login from 93.42.126.148 (93-42-126-148.ip86.fastwebnet.it): 5 in the last 3600 secs |
2019-10-06 00:48:55 |
| attackbots | Sep 30 15:27:30 SilenceServices sshd[21601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Sep 30 15:27:32 SilenceServices sshd[21601]: Failed password for invalid user ahma from 93.42.126.148 port 45928 ssh2 Sep 30 15:32:25 SilenceServices sshd[22962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 |
2019-09-30 23:07:25 |
| attack | Sep 28 16:09:16 core sshd[7799]: Invalid user ubiqube from 93.42.126.148 port 34386 Sep 28 16:09:19 core sshd[7799]: Failed password for invalid user ubiqube from 93.42.126.148 port 34386 ssh2 ... |
2019-09-28 22:15:49 |
| attack | k+ssh-bruteforce |
2019-09-27 18:35:58 |
| attack | Sep 26 16:20:48 srv206 sshd[18120]: Invalid user arcs from 93.42.126.148 ... |
2019-09-26 23:14:16 |
| attackspam | Sep 22 20:27:28 plusreed sshd[6426]: Invalid user mumbleserver from 93.42.126.148 ... |
2019-09-23 08:28:30 |
| attackbots | Sep 22 13:11:55 hcbbdb sshd\[24224\]: Invalid user dd from 93.42.126.148 Sep 22 13:11:55 hcbbdb sshd\[24224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Sep 22 13:11:57 hcbbdb sshd\[24224\]: Failed password for invalid user dd from 93.42.126.148 port 46872 ssh2 Sep 22 13:16:42 hcbbdb sshd\[24812\]: Invalid user aDmin from 93.42.126.148 Sep 22 13:16:42 hcbbdb sshd\[24812\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it |
2019-09-22 21:30:59 |
| attackspam | Lines containing failures of 93.42.126.148 (max 1000) Sep 11 21:47:44 Server sshd[5741]: Invalid user ftpuser from 93.42.126.148 port 57408 Sep 11 21:47:44 Server sshd[5741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Sep 11 21:47:46 Server sshd[5741]: Failed password for invalid user ftpuser from 93.42.126.148 port 57408 ssh2 Sep 11 21:47:47 Server sshd[5741]: Received disconnect from 93.42.126.148 port 57408:11: Bye Bye [preauth] Sep 11 21:47:47 Server sshd[5741]: Disconnected from invalid user ftpuser 93.42.126.148 port 57408 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=93.42.126.148 |
2019-09-13 04:01:28 |
| attack | F2B jail: sshd. Time: 2019-09-12 09:29:37, Reported by: VKReport |
2019-09-12 15:31:05 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.42.126.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13159
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.42.126.148. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019091200 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 12 15:30:56 CST 2019
;; MSG SIZE rcvd: 117
148.126.42.93.in-addr.arpa domain name pointer 93-42-126-148.ip86.fastwebnet.it.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
148.126.42.93.in-addr.arpa name = 93-42-126-148.ip86.fastwebnet.it.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 195.231.0.20 | attack | Port 81 (TorPark onion routing) access denied |
2020-03-25 18:31:51 |
| 150.107.8.44 | attack | 03/25/2020-05:26:39.725554 150.107.8.44 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-03-25 18:48:44 |
| 178.162.193.100 | attackspambots | Mar 25 09:57:59 debian-2gb-nbg1-2 kernel: \[7385759.987287\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=178.162.193.100 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=55678 PROTO=TCP SPT=54727 DPT=37035 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-25 18:43:10 |
| 198.108.66.238 | attackspam | firewall-block, port(s): 9722/tcp |
2020-03-25 19:17:47 |
| 192.241.239.71 | attackspam | Unauthorized connection attempt
IP: 192.241.239.71
Ports affected
IMAP over TLS protocol (993)
Abuse Confidence rating 100%
ASN Details
AS14061 DigitalOcean LLC
United States (US)
CIDR 192.241.128.0/17
Log Date: 25/03/2020 6:58:55 AM UTC |
2020-03-25 19:24:52 |
| 85.209.3.142 | attack | Port 3814 scan denied |
2020-03-25 18:57:52 |
| 204.42.253.130 | attackbotsspam | scan z |
2020-03-25 19:16:46 |
| 194.26.29.110 | attackspam | Mar 25 11:21:45 src: 194.26.29.110 signature match: "BACKDOOR NetSphere Connection attempt" (sid: 100044) tcp port: 30100 |
2020-03-25 19:23:00 |
| 185.175.93.100 | attackspam | Mar 25 09:51:52 debian-2gb-nbg1-2 kernel: \[7385393.415539\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.100 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=41882 PROTO=TCP SPT=51379 DPT=5992 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-25 18:38:44 |
| 193.32.163.9 | attack | firewall-block, port(s): 1051/tcp |
2020-03-25 19:23:44 |
| 192.241.237.155 | attack | Port 5351 scan denied |
2020-03-25 18:36:18 |
| 176.32.34.113 | attack | Port 53 (DNS)access denied |
2020-03-25 18:44:19 |
| 185.56.80.50 | attack | Unauthorized connection attempt detected from IP address 185.56.80.50 to port 8089 |
2020-03-25 18:41:59 |
| 58.56.144.102 | attack | CMS (WordPress or Joomla) login attempt. |
2020-03-25 18:26:46 |
| 92.53.65.247 | attackbots | 360 packets to ports 3370 3371 3372 3373 3374 3375 3376 3377 3378 3379 3380 3381 3382 3383 3384 3385 3386 3387 3388 3390 3391 3392 3393 3394 3395 3396 3397 3398 3399 3400 3401 3402 3403 3404 3405 3406 3407 3408 3409 3410 |
2020-03-25 18:52:01 |