93.42.126.148 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Italy

运营商(isp): Cariplo Factory

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Dec 2 16:23:47 server sshd\[7070\]: Invalid user abiel from 93.42.126.148 Dec 2 16:23:47 server sshd\[7070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Dec 2 16:23:50 server sshd\[7070\]: Failed password for invalid user abiel from 93.42.126.148 port 52715 ssh2 Dec 2 16:31:20 server sshd\[9231\]: Invalid user mufti from 93.42.126.148 Dec 2 16:31:20 server sshd\[9231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it ...	2019-12-03 03:31:19
attack	Nov 17 15:35:31 MK-Soft-VM8 sshd[26929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Nov 17 15:35:33 MK-Soft-VM8 sshd[26929]: Failed password for invalid user abhimani from 93.42.126.148 port 22992 ssh2 ...	2019-11-18 05:39:13
attackspam	F2B jail: sshd. Time: 2019-11-06 06:40:37, Reported by: VKReport	2019-11-06 13:41:26
attackbotsspam	Nov 5 16:45:32 vps691689 sshd[18325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Nov 5 16:45:35 vps691689 sshd[18325]: Failed password for invalid user aodun!@#$%^ from 93.42.126.148 port 53268 ssh2 ...	2019-11-06 02:26:33
attackbots	Nov 1 14:55:00 server sshd\[4397\]: Invalid user ji from 93.42.126.148 Nov 1 14:55:00 server sshd\[4397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Nov 1 14:55:02 server sshd\[4397\]: Failed password for invalid user ji from 93.42.126.148 port 34610 ssh2 Nov 1 15:10:02 server sshd\[7470\]: Invalid user silviu from 93.42.126.148 Nov 1 15:10:02 server sshd\[7470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it ...	2019-11-01 20:37:53
attackbots	Oct 26 17:54:28 DAAP sshd[29098]: Invalid user qwe123 from 93.42.126.148 port 52792 Oct 26 17:54:28 DAAP sshd[29098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Oct 26 17:54:28 DAAP sshd[29098]: Invalid user qwe123 from 93.42.126.148 port 52792 Oct 26 17:54:30 DAAP sshd[29098]: Failed password for invalid user qwe123 from 93.42.126.148 port 52792 ssh2 ...	2019-10-27 02:55:37
attackbots	lfd: (sshd) Failed SSH login from 93.42.126.148 (IT/Italy/93-42-126-148.ip86.fastwebnet.it): 5 in the last 3600 secs - Fri Oct 25 06:27:45 2019	2019-10-25 19:23:35
attackbotsspam	Oct 23 05:00:03 ip-172-31-62-245 sshd\[9500\]: Failed password for root from 93.42.126.148 port 48628 ssh2\ Oct 23 05:04:23 ip-172-31-62-245 sshd\[9510\]: Invalid user www from 93.42.126.148\ Oct 23 05:04:25 ip-172-31-62-245 sshd\[9510\]: Failed password for invalid user www from 93.42.126.148 port 59702 ssh2\ Oct 23 05:09:03 ip-172-31-62-245 sshd\[9604\]: Invalid user qe from 93.42.126.148\ Oct 23 05:09:05 ip-172-31-62-245 sshd\[9604\]: Failed password for invalid user qe from 93.42.126.148 port 42536 ssh2\	2019-10-23 13:43:27
attackspambots	Oct 21 15:45:31 lnxweb62 sshd[19797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148	2019-10-21 21:54:09
attackspambots	$f2bV_matches	2019-10-14 23:01:08
attackbotsspam	2019-10-14T11:17:34.436197abusebot-7.cloudsearch.cf sshd\[24333\]: Invalid user Virus123 from 93.42.126.148 port 57428	2019-10-14 19:26:35
attackbotsspam	Oct 12 12:10:04 cvbnet sshd[974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Oct 12 12:10:06 cvbnet sshd[974]: Failed password for invalid user P@ss from 93.42.126.148 port 51056 ssh2 ...	2019-10-12 18:50:35
attackspambots	(sshd) Failed SSH login from 93.42.126.148 (93-42-126-148.ip86.fastwebnet.it): 5 in the last 3600 secs	2019-10-06 00:48:55
attackbots	Sep 30 15:27:30 SilenceServices sshd[21601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Sep 30 15:27:32 SilenceServices sshd[21601]: Failed password for invalid user ahma from 93.42.126.148 port 45928 ssh2 Sep 30 15:32:25 SilenceServices sshd[22962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148	2019-09-30 23:07:25
attack	Sep 28 16:09:16 core sshd[7799]: Invalid user ubiqube from 93.42.126.148 port 34386 Sep 28 16:09:19 core sshd[7799]: Failed password for invalid user ubiqube from 93.42.126.148 port 34386 ssh2 ...	2019-09-28 22:15:49
attack	k+ssh-bruteforce	2019-09-27 18:35:58
attack	Sep 26 16:20:48 srv206 sshd[18120]: Invalid user arcs from 93.42.126.148 ...	2019-09-26 23:14:16
attackspam	Sep 22 20:27:28 plusreed sshd[6426]: Invalid user mumbleserver from 93.42.126.148 ...	2019-09-23 08:28:30
attackbots	Sep 22 13:11:55 hcbbdb sshd\[24224\]: Invalid user dd from 93.42.126.148 Sep 22 13:11:55 hcbbdb sshd\[24224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it Sep 22 13:11:57 hcbbdb sshd\[24224\]: Failed password for invalid user dd from 93.42.126.148 port 46872 ssh2 Sep 22 13:16:42 hcbbdb sshd\[24812\]: Invalid user aDmin from 93.42.126.148 Sep 22 13:16:42 hcbbdb sshd\[24812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-126-148.ip86.fastwebnet.it	2019-09-22 21:30:59
attackspam	Lines containing failures of 93.42.126.148 (max 1000) Sep 11 21:47:44 Server sshd[5741]: Invalid user ftpuser from 93.42.126.148 port 57408 Sep 11 21:47:44 Server sshd[5741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.42.126.148 Sep 11 21:47:46 Server sshd[5741]: Failed password for invalid user ftpuser from 93.42.126.148 port 57408 ssh2 Sep 11 21:47:47 Server sshd[5741]: Received disconnect from 93.42.126.148 port 57408:11: Bye Bye [preauth] Sep 11 21:47:47 Server sshd[5741]: Disconnected from invalid user ftpuser 93.42.126.148 port 57408 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=93.42.126.148	2019-09-13 04:01:28
attack	F2B jail: sshd. Time: 2019-09-12 09:29:37, Reported by: VKReport	2019-09-12 15:31:05

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.42.126.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13159
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.42.126.148.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 12 15:30:56 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

148.126.42.93.in-addr.arpa domain name pointer 93-42-126-148.ip86.fastwebnet.it.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
148.126.42.93.in-addr.arpa	name = 93-42-126-148.ip86.fastwebnet.it.

Authoritative answers can be found from:

IP	类型	评论内容	时间
195.231.0.20	attack	Port 81 (TorPark onion routing) access denied	2020-03-25 18:31:51
150.107.8.44	attack	03/25/2020-05:26:39.725554 150.107.8.44 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-03-25 18:48:44
178.162.193.100	attackspambots	Mar 25 09:57:59 debian-2gb-nbg1-2 kernel: \[7385759.987287\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=178.162.193.100 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=55678 PROTO=TCP SPT=54727 DPT=37035 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-25 18:43:10
198.108.66.238	attackspam	firewall-block, port(s): 9722/tcp	2020-03-25 19:17:47
192.241.239.71	attackspam	Unauthorized connection attempt IP: 192.241.239.71 Ports affected IMAP over TLS protocol (993) Abuse Confidence rating 100% ASN Details AS14061 DigitalOcean LLC United States (US) CIDR 192.241.128.0/17 Log Date: 25/03/2020 6:58:55 AM UTC	2020-03-25 19:24:52
85.209.3.142	attack	Port 3814 scan denied	2020-03-25 18:57:52
204.42.253.130	attackbotsspam	scan z	2020-03-25 19:16:46
194.26.29.110	attackspam	Mar 25 11:21:45 src: 194.26.29.110 signature match: "BACKDOOR NetSphere Connection attempt" (sid: 100044) tcp port: 30100	2020-03-25 19:23:00
185.175.93.100	attackspam	Mar 25 09:51:52 debian-2gb-nbg1-2 kernel: \[7385393.415539\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.100 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=41882 PROTO=TCP SPT=51379 DPT=5992 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-25 18:38:44
193.32.163.9	attack	firewall-block, port(s): 1051/tcp	2020-03-25 19:23:44
192.241.237.155	attack	Port 5351 scan denied	2020-03-25 18:36:18
176.32.34.113	attack	Port 53 (DNS)access denied	2020-03-25 18:44:19
185.56.80.50	attack	Unauthorized connection attempt detected from IP address 185.56.80.50 to port 8089	2020-03-25 18:41:59
58.56.144.102	attack	CMS (WordPress or Joomla) login attempt.	2020-03-25 18:26:46
92.53.65.247	attackbots	360 packets to ports 3370 3371 3372 3373 3374 3375 3376 3377 3378 3379 3380 3381 3382 3383 3384 3385 3386 3387 3388 3390 3391 3392 3393 3394 3395 3396 3397 3398 3399 3400 3401 3402 3403 3404 3405 3406 3407 3408 3409 3410	2020-03-25 18:52:01

最近上报的IP列表

49.146.61.11	18.25.84.209	100.196.78.74	122.116.116.154
185.153.196.28	218.161.124.242	187.7.255.66	220.133.190.31
160.22.209.44	159.203.201.189	128.71.14.245	108.166.114.131
66.138.134.40	15.218.110.202	184.194.147.68	120.253.200.236
171.221.81.179	94.237.64.47	185.153.198.46	59.153.240.34