城市(city): unknown
省份(region): unknown
国家(country): Italy
运营商(isp): Cariplo Factory
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Commercial
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbotsspam | Dec 2 16:23:47 server sshd\[7070\]: Invalid user abiel from 93.42.126.148 Dec 2 16:23:47 server sshd\[7070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Dec 2 16:23:50 server sshd\[7070\]: Failed password for invalid user abiel from 93.42.126.148 port 52715 ssh2 Dec 2 16:31:20 server sshd\[9231\]: Invalid user mufti from 93.42.126.148 Dec 2 16:31:20 server sshd\[9231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it ... |
2019-12-03 03:31:19 |
| attack | Nov 17 15:35:31 MK-Soft-VM8 sshd[26929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Nov 17 15:35:33 MK-Soft-VM8 sshd[26929]: Failed password for invalid user abhimani from 93.42.126.148 port 22992 ssh2 ... |
2019-11-18 05:39:13 |
| attackspam | F2B jail: sshd. Time: 2019-11-06 06:40:37, Reported by: VKReport |
2019-11-06 13:41:26 |
| attackbotsspam | Nov 5 16:45:32 vps691689 sshd[18325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Nov 5 16:45:35 vps691689 sshd[18325]: Failed password for invalid user aodun!@#$%^ from 93.42.126.148 port 53268 ssh2 ... |
2019-11-06 02:26:33 |
| attackbots | Nov 1 14:55:00 server sshd\[4397\]: Invalid user ji from 93.42.126.148 Nov 1 14:55:00 server sshd\[4397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Nov 1 14:55:02 server sshd\[4397\]: Failed password for invalid user ji from 93.42.126.148 port 34610 ssh2 Nov 1 15:10:02 server sshd\[7470\]: Invalid user silviu from 93.42.126.148 Nov 1 15:10:02 server sshd\[7470\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it ... |
2019-11-01 20:37:53 |
| attackbots | Oct 26 17:54:28 DAAP sshd[29098]: Invalid user qwe123 from 93.42.126.148 port 52792 Oct 26 17:54:28 DAAP sshd[29098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Oct 26 17:54:28 DAAP sshd[29098]: Invalid user qwe123 from 93.42.126.148 port 52792 Oct 26 17:54:30 DAAP sshd[29098]: Failed password for invalid user qwe123 from 93.42.126.148 port 52792 ssh2 ... |
2019-10-27 02:55:37 |
| attackbots | lfd: (sshd) Failed SSH login from 93.42.126.148 (IT/Italy/93-42-126-148.ip86.fastwebnet.it): 5 in the last 3600 secs - Fri Oct 25 06:27:45 2019 |
2019-10-25 19:23:35 |
| attackbotsspam | Oct 23 05:00:03 ip-172-31-62-245 sshd\[9500\]: Failed password for root from 93.42.126.148 port 48628 ssh2\ Oct 23 05:04:23 ip-172-31-62-245 sshd\[9510\]: Invalid user www from 93.42.126.148\ Oct 23 05:04:25 ip-172-31-62-245 sshd\[9510\]: Failed password for invalid user www from 93.42.126.148 port 59702 ssh2\ Oct 23 05:09:03 ip-172-31-62-245 sshd\[9604\]: Invalid user qe from 93.42.126.148\ Oct 23 05:09:05 ip-172-31-62-245 sshd\[9604\]: Failed password for invalid user qe from 93.42.126.148 port 42536 ssh2\ |
2019-10-23 13:43:27 |
| attackspambots | Oct 21 15:45:31 lnxweb62 sshd[19797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 |
2019-10-21 21:54:09 |
| attackspambots | $f2bV_matches |
2019-10-14 23:01:08 |
| attackbotsspam | 2019-10-14T11:17:34.436197abusebot-7.cloudsearch.cf sshd\[24333\]: Invalid user Virus123 from 93.42.126.148 port 57428 |
2019-10-14 19:26:35 |
| attackbotsspam | Oct 12 12:10:04 cvbnet sshd[974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Oct 12 12:10:06 cvbnet sshd[974]: Failed password for invalid user P@ss from 93.42.126.148 port 51056 ssh2 ... |
2019-10-12 18:50:35 |
| attackspambots | (sshd) Failed SSH login from 93.42.126.148 (93-42-126-148.ip86.fastwebnet.it): 5 in the last 3600 secs |
2019-10-06 00:48:55 |
| attackbots | Sep 30 15:27:30 SilenceServices sshd[21601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Sep 30 15:27:32 SilenceServices sshd[21601]: Failed password for invalid user ahma from 93.42.126.148 port 45928 ssh2 Sep 30 15:32:25 SilenceServices sshd[22962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 |
2019-09-30 23:07:25 |
| attack | Sep 28 16:09:16 core sshd[7799]: Invalid user ubiqube from 93.42.126.148 port 34386 Sep 28 16:09:19 core sshd[7799]: Failed password for invalid user ubiqube from 93.42.126.148 port 34386 ssh2 ... |
2019-09-28 22:15:49 |
| attack | k+ssh-bruteforce |
2019-09-27 18:35:58 |
| attack | Sep 26 16:20:48 srv206 sshd[18120]: Invalid user arcs from 93.42.126.148 ... |
2019-09-26 23:14:16 |
| attackspam | Sep 22 20:27:28 plusreed sshd[6426]: Invalid user mumbleserver from 93.42.126.148 ... |
2019-09-23 08:28:30 |
| attackbots | Sep 22 13:11:55 hcbbdb sshd\[24224\]: Invalid user dd from 93.42.126.148 Sep 22 13:11:55 hcbbdb sshd\[24224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Sep 22 13:11:57 hcbbdb sshd\[24224\]: Failed password for invalid user dd from 93.42.126.148 port 46872 ssh2 Sep 22 13:16:42 hcbbdb sshd\[24812\]: Invalid user aDmin from 93.42.126.148 Sep 22 13:16:42 hcbbdb sshd\[24812\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it |
2019-09-22 21:30:59 |
| attackspam | Lines containing failures of 93.42.126.148 (max 1000) Sep 11 21:47:44 Server sshd[5741]: Invalid user ftpuser from 93.42.126.148 port 57408 Sep 11 21:47:44 Server sshd[5741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Sep 11 21:47:46 Server sshd[5741]: Failed password for invalid user ftpuser from 93.42.126.148 port 57408 ssh2 Sep 11 21:47:47 Server sshd[5741]: Received disconnect from 93.42.126.148 port 57408:11: Bye Bye [preauth] Sep 11 21:47:47 Server sshd[5741]: Disconnected from invalid user ftpuser 93.42.126.148 port 57408 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=93.42.126.148 |
2019-09-13 04:01:28 |
| attack | F2B jail: sshd. Time: 2019-09-12 09:29:37, Reported by: VKReport |
2019-09-12 15:31:05 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.42.126.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13159
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.42.126.148. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019091200 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 12 15:30:56 CST 2019
;; MSG SIZE rcvd: 117
148.126.42.93.in-addr.arpa domain name pointer 93-42-126-148.ip86.fastwebnet.it.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
148.126.42.93.in-addr.arpa name = 93-42-126-148.ip86.fastwebnet.it.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.227.98.251 | attack | (BR/Brazil/-) SMTP Bruteforcing attempts |
2020-06-05 13:39:30 |
| 176.227.202.95 | attackbots | Port Scan detected! ... |
2020-06-05 13:43:35 |
| 167.172.121.115 | attack | Jun 5 06:57:39 server sshd[34218]: Failed password for root from 167.172.121.115 port 33036 ssh2 Jun 5 07:01:16 server sshd[37481]: Failed password for root from 167.172.121.115 port 37438 ssh2 Jun 5 07:04:58 server sshd[40495]: Failed password for root from 167.172.121.115 port 41838 ssh2 |
2020-06-05 13:25:36 |
| 112.78.188.194 | attack | Jun 5 10:11:21 gw1 sshd[4830]: Failed password for root from 112.78.188.194 port 48274 ssh2 ... |
2020-06-05 13:38:17 |
| 45.224.162.4 | attack | Jun 5 05:34:52 mail.srvfarm.net postfix/smtps/smtpd[2916352]: warning: unknown[45.224.162.4]: SASL PLAIN authentication failed: Jun 5 05:34:53 mail.srvfarm.net postfix/smtps/smtpd[2916352]: lost connection after AUTH from unknown[45.224.162.4] Jun 5 05:39:54 mail.srvfarm.net postfix/smtps/smtpd[2917583]: warning: unknown[45.224.162.4]: SASL PLAIN authentication failed: Jun 5 05:39:54 mail.srvfarm.net postfix/smtps/smtpd[2917583]: lost connection after AUTH from unknown[45.224.162.4] Jun 5 05:40:54 mail.srvfarm.net postfix/smtps/smtpd[2917584]: lost connection after CONNECT from unknown[45.224.162.4] |
2020-06-05 13:55:48 |
| 118.24.9.152 | attackbotsspam | Jun 5 10:50:25 gw1 sshd[6197]: Failed password for root from 118.24.9.152 port 59344 ssh2 ... |
2020-06-05 13:54:15 |
| 129.226.53.203 | attackbotsspam | Jun 5 06:59:12 minden010 sshd[19768]: Failed password for root from 129.226.53.203 port 46006 ssh2 Jun 5 07:03:09 minden010 sshd[22141]: Failed password for root from 129.226.53.203 port 33332 ssh2 ... |
2020-06-05 13:43:53 |
| 191.184.42.175 | attack | Jun 4 23:57:01 Tower sshd[37019]: Connection from 191.184.42.175 port 37985 on 192.168.10.220 port 22 rdomain "" Jun 4 23:57:04 Tower sshd[37019]: Failed password for root from 191.184.42.175 port 37985 ssh2 Jun 4 23:57:04 Tower sshd[37019]: Received disconnect from 191.184.42.175 port 37985:11: Bye Bye [preauth] Jun 4 23:57:04 Tower sshd[37019]: Disconnected from authenticating user root 191.184.42.175 port 37985 [preauth] |
2020-06-05 13:17:44 |
| 74.82.47.51 | attackbots |
|
2020-06-05 13:31:17 |
| 128.199.204.164 | attack | (sshd) Failed SSH login from 128.199.204.164 (SG/Singapore/-): 5 in the last 3600 secs |
2020-06-05 13:38:51 |
| 110.229.220.187 | attackspam | php vulnerability probing |
2020-06-05 13:47:35 |
| 45.179.201.26 | attackbotsspam | (CO/Colombia/-) SMTP Bruteforcing attempts |
2020-06-05 14:00:33 |
| 47.244.244.136 | attackspambots | michaelklotzbier.de 47.244.244.136 [05/Jun/2020:05:56:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4280 "https://michaelklotzbier.de/xmlrpc.php" "python-requests/2.22.0" michaelklotzbier.de 47.244.244.136 [05/Jun/2020:05:56:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4280 "https://michaelklotzbier.de/xmlrpc.php" "python-requests/2.22.0" |
2020-06-05 13:51:54 |
| 4.7.94.244 | attack | Jun 5 06:57:34 server sshd[34151]: Failed password for root from 4.7.94.244 port 60272 ssh2 Jun 5 07:01:09 server sshd[37392]: Failed password for root from 4.7.94.244 port 35996 ssh2 Jun 5 07:04:55 server sshd[40476]: Failed password for root from 4.7.94.244 port 39952 ssh2 |
2020-06-05 13:17:14 |
| 51.77.140.36 | attack | SSH Brute-Force reported by Fail2Ban |
2020-06-05 13:48:06 |