193.112.42.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Dec 28 00:16:44 srv-ubuntu-dev3 sshd[59935]: Invalid user kjetsaa from 193.112.42.55 Dec 28 00:16:44 srv-ubuntu-dev3 sshd[59935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.55 Dec 28 00:16:44 srv-ubuntu-dev3 sshd[59935]: Invalid user kjetsaa from 193.112.42.55 Dec 28 00:16:46 srv-ubuntu-dev3 sshd[59935]: Failed password for invalid user kjetsaa from 193.112.42.55 port 53262 ssh2 Dec 28 00:20:16 srv-ubuntu-dev3 sshd[60190]: Invalid user user from 193.112.42.55 Dec 28 00:20:16 srv-ubuntu-dev3 sshd[60190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.55 Dec 28 00:20:16 srv-ubuntu-dev3 sshd[60190]: Invalid user user from 193.112.42.55 Dec 28 00:20:18 srv-ubuntu-dev3 sshd[60190]: Failed password for invalid user user from 193.112.42.55 port 47698 ssh2 Dec 28 00:23:43 srv-ubuntu-dev3 sshd[60497]: Invalid user Jalo from 193.112.42.55 ...	2019-12-28 07:34:59

Type

Details

Datetime

attackspambots

Dec 28 00:16:44 srv-ubuntu-dev3 sshd[59935]: Invalid user kjetsaa from 193.112.42.55
Dec 28 00:16:44 srv-ubuntu-dev3 sshd[59935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.55
Dec 28 00:16:44 srv-ubuntu-dev3 sshd[59935]: Invalid user kjetsaa from 193.112.42.55
Dec 28 00:16:46 srv-ubuntu-dev3 sshd[59935]: Failed password for invalid user kjetsaa from 193.112.42.55 port 53262 ssh2
Dec 28 00:20:16 srv-ubuntu-dev3 sshd[60190]: Invalid user user from 193.112.42.55
Dec 28 00:20:16 srv-ubuntu-dev3 sshd[60190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.55
Dec 28 00:20:16 srv-ubuntu-dev3 sshd[60190]: Invalid user user from 193.112.42.55
Dec 28 00:20:18 srv-ubuntu-dev3 sshd[60190]: Failed password for invalid user user from 193.112.42.55 port 47698 ssh2
Dec 28 00:23:43 srv-ubuntu-dev3 sshd[60497]: Invalid user Jalo from 193.112.42.55
...

2019-12-28 07:34:59

Comments on same subnet:

IP	Type	Details	Datetime
193.112.42.13	attack	" "	2020-08-10 01:12:42
193.112.42.13	attackbotsspam	2020-07-27T14:13:36.779186linuxbox-skyline sshd[56512]: Invalid user monero from 193.112.42.13 port 56764 ...	2020-07-28 04:43:29
193.112.42.13	attackbots	Jul 27 03:39:58 s30-ffm-r02 sshd[24582]: Invalid user noc from 193.112.42.13 Jul 27 03:39:58 s30-ffm-r02 sshd[24582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.13 Jul 27 03:39:59 s30-ffm-r02 sshd[24582]: Failed password for invalid user noc from 193.112.42.13 port 35952 ssh2 Jul 27 03:44:49 s30-ffm-r02 sshd[24721]: Invalid user cct from 193.112.42.13 Jul 27 03:44:49 s30-ffm-r02 sshd[24721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.13 Jul 27 03:44:51 s30-ffm-r02 sshd[24721]: Failed password for invalid user cct from 193.112.42.13 port 42144 ssh2 Jul 27 03:47:59 s30-ffm-r02 sshd[24800]: Did not receive identification string from 193.112.42.13 Jul 27 03:54:33 s30-ffm-r02 sshd[24981]: Invalid user bpoint from 193.112.42.13 Jul 27 03:54:33 s30-ffm-r02 sshd[24981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.4........ -------------------------------	2020-07-27 19:11:27
193.112.42.13	attackspam	2020-07-04T01:56:05.023961galaxy.wi.uni-potsdam.de sshd[32477]: Failed password for invalid user update from 193.112.42.13 port 58216 ssh2 2020-07-04T01:58:04.287491galaxy.wi.uni-potsdam.de sshd[32742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.13 user=root 2020-07-04T01:58:05.816972galaxy.wi.uni-potsdam.de sshd[32742]: Failed password for root from 193.112.42.13 port 44920 ssh2 2020-07-04T02:00:00.860738galaxy.wi.uni-potsdam.de sshd[572]: Invalid user st2 from 193.112.42.13 port 59856 2020-07-04T02:00:00.870659galaxy.wi.uni-potsdam.de sshd[572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.13 2020-07-04T02:00:00.860738galaxy.wi.uni-potsdam.de sshd[572]: Invalid user st2 from 193.112.42.13 port 59856 2020-07-04T02:00:02.991325galaxy.wi.uni-potsdam.de sshd[572]: Failed password for invalid user st2 from 193.112.42.13 port 59856 ssh2 2020-07-04T02:02:00.345033galaxy.wi.uni-pots ...	2020-07-04 09:10:52
193.112.42.13	attackbots	Jun 27 23:39:55 gestao sshd[27275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.13 Jun 27 23:39:56 gestao sshd[27275]: Failed password for invalid user sftp from 193.112.42.13 port 49432 ssh2 Jun 27 23:42:11 gestao sshd[27353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.13 ...	2020-06-28 08:27:09
193.112.42.13	attackbots	2020-06-18T15:20:13.532023randservbullet-proofcloud-66.localdomain sshd[31806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.13 user=root 2020-06-18T15:20:14.993401randservbullet-proofcloud-66.localdomain sshd[31806]: Failed password for root from 193.112.42.13 port 49142 ssh2 2020-06-18T15:35:53.917896randservbullet-proofcloud-66.localdomain sshd[31840]: Invalid user t from 193.112.42.13 port 38540 ...	2020-06-19 01:47:43
193.112.42.13	attack	Failed password for invalid user taz from 193.112.42.13 port 35532 ssh2	2020-06-17 17:15:53
193.112.42.13	attack	Invalid user newsletter from 193.112.42.13 port 34028	2020-05-02 02:42:23
193.112.42.13	attack	Apr 25 14:07:49 Ubuntu-1404-trusty-64-minimal sshd\[23877\]: Invalid user johnh from 193.112.42.13 Apr 25 14:07:49 Ubuntu-1404-trusty-64-minimal sshd\[23877\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.13 Apr 25 14:07:52 Ubuntu-1404-trusty-64-minimal sshd\[23877\]: Failed password for invalid user johnh from 193.112.42.13 port 52790 ssh2 Apr 25 14:12:27 Ubuntu-1404-trusty-64-minimal sshd\[27176\]: Invalid user password from 193.112.42.13 Apr 25 14:12:27 Ubuntu-1404-trusty-64-minimal sshd\[27176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.13	2020-04-26 02:27:14
193.112.42.13	attackspambots	Mar 26 17:15:31 pkdns2 sshd\[4118\]: Invalid user dana from 193.112.42.13Mar 26 17:15:33 pkdns2 sshd\[4118\]: Failed password for invalid user dana from 193.112.42.13 port 58666 ssh2Mar 26 17:19:32 pkdns2 sshd\[4276\]: Invalid user golf from 193.112.42.13Mar 26 17:19:34 pkdns2 sshd\[4276\]: Failed password for invalid user golf from 193.112.42.13 port 51040 ssh2Mar 26 17:23:37 pkdns2 sshd\[4488\]: Invalid user vernemq from 193.112.42.13Mar 26 17:23:39 pkdns2 sshd\[4488\]: Failed password for invalid user vernemq from 193.112.42.13 port 43410 ssh2 ...	2020-03-26 23:32:09
193.112.42.13	attackspambots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-03-22 22:29:42
193.112.42.13	attackspam	Mar 1 15:15:59 dedicated sshd[15300]: Invalid user liangmm from 193.112.42.13 port 58516	2020-03-01 22:16:58
193.112.42.13	attackspambots	Feb 26 19:17:15 vps691689 sshd[14129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.42.13 Feb 26 19:17:17 vps691689 sshd[14129]: Failed password for invalid user joyoudata from 193.112.42.13 port 54740 ssh2 ...	2020-02-27 04:38:41
193.112.42.13	attackspam	Feb 23 16:40:21 server sshd[430203]: Failed password for invalid user odoo from 193.112.42.13 port 59146 ssh2 Feb 23 16:43:17 server sshd[431844]: Failed password for invalid user wordpress from 193.112.42.13 port 47724 ssh2 Feb 23 16:46:11 server sshd[433481]: Failed password for invalid user justinbiberx from 193.112.42.13 port 36310 ssh2	2020-02-24 03:42:54
193.112.42.13	attackbots	Unauthorized connection attempt detected from IP address 193.112.42.13 to port 2220 [J]	2020-02-03 05:49:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 193.112.42.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7520
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;193.112.42.55.			IN	A

;; AUTHORITY SECTION:
.			407	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122702 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 28 07:34:57 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 55.42.112.193.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.42.112.193.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
145.239.88.184	attackspambots	2019-10-08T06:38:54.354503abusebot-8.cloudsearch.cf sshd\[19206\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.ip-145-239-88.eu user=root	2019-10-08 14:47:01
143.208.181.34	attack	Sep 18 20:08:23 dallas01 sshd[19425]: Failed password for invalid user asterix from 143.208.181.34 port 40814 ssh2 Sep 18 20:12:40 dallas01 sshd[20234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.181.34 Sep 18 20:12:42 dallas01 sshd[20234]: Failed password for invalid user hdfs from 143.208.181.34 port 54950 ssh2 Sep 18 20:16:56 dallas01 sshd[20824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.181.34	2019-10-08 14:37:19
193.112.58.149	attack	Oct 7 20:36:27 tdfoods sshd\[12137\]: Invalid user cent0s2018 from 193.112.58.149 Oct 7 20:36:27 tdfoods sshd\[12137\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.58.149 Oct 7 20:36:29 tdfoods sshd\[12137\]: Failed password for invalid user cent0s2018 from 193.112.58.149 port 60384 ssh2 Oct 7 20:42:36 tdfoods sshd\[12810\]: Invalid user P@\$\$wort0101 from 193.112.58.149 Oct 7 20:42:36 tdfoods sshd\[12810\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.58.149	2019-10-08 14:51:44
111.93.190.157	attackbots	Jul 14 14:52:35 dallas01 sshd[31689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.190.157 Jul 14 14:52:37 dallas01 sshd[31689]: Failed password for invalid user shop from 111.93.190.157 port 50362 ssh2 Jul 14 14:58:31 dallas01 sshd[32467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.190.157	2019-10-08 14:53:07
216.118.228.234	attackbotsspam	Oct 8 07:57:25 vmanager6029 sshd\[9623\]: Invalid user 12345@Admin from 216.118.228.234 port 23863 Oct 8 07:57:25 vmanager6029 sshd\[9623\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.118.228.234 Oct 8 07:57:26 vmanager6029 sshd\[9623\]: Failed password for invalid user 12345@Admin from 216.118.228.234 port 23863 ssh2	2019-10-08 14:20:38
221.229.143.86	attackspam	Unauthorised access (Oct 8) SRC=221.229.143.86 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=61432 TCP DPT=8080 WINDOW=4759 SYN	2019-10-08 14:53:32
182.61.130.121	attackspam	web-1 [ssh_2] SSH Attack	2019-10-08 14:44:46
144.217.214.100	attackbotsspam	Oct 8 08:03:06 www sshd\[69492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.100 user=root Oct 8 08:03:07 www sshd\[69492\]: Failed password for root from 144.217.214.100 port 45206 ssh2 Oct 8 08:11:06 www sshd\[69728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.100 user=root ...	2019-10-08 14:22:26
218.188.210.214	attackbots	Oct 8 08:09:07 vps691689 sshd[24884]: Failed password for root from 218.188.210.214 port 36682 ssh2 Oct 8 08:14:14 vps691689 sshd[25012]: Failed password for root from 218.188.210.214 port 49446 ssh2 ...	2019-10-08 14:15:06
170.244.188.182	attackspambots	Automatic report - Port Scan Attack	2019-10-08 14:46:47
106.12.82.84	attack	SSH invalid-user multiple login attempts	2019-10-08 14:49:22
213.14.214.203	attackbotsspam	2019-10-08T04:27:51.022681abusebot-4.cloudsearch.cf sshd\[22142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.14.214.203 user=root	2019-10-08 14:38:07
111.93.191.154	attackspambots	Sep 10 16:00:57 dallas01 sshd[21318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.191.154 Sep 10 16:00:58 dallas01 sshd[21318]: Failed password for invalid user gitlab from 111.93.191.154 port 58781 ssh2 Sep 10 16:07:31 dallas01 sshd[22695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.191.154	2019-10-08 14:52:18
152.250.41.161	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/152.250.41.161/ BR - 1H : (317) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN27699 IP : 152.250.41.161 CIDR : 152.250.0.0/16 PREFIX COUNT : 267 UNIQUE IP COUNT : 6569728 WYKRYTE ATAKI Z ASN27699 : 1H - 10 3H - 25 6H - 43 12H - 82 24H - 124 DateTime : 2019-10-08 05:56:58 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-08 14:16:18
129.28.180.174	attackbots	Oct 8 08:07:05 * sshd[4375]: Failed password for root from 129.28.180.174 port 51212 ssh2	2019-10-08 14:49:38

Recently Reported IPs

86.139.54.10	104.248.173.148	13.231.150.216	182.112.222.253
111.72.195.132	46.101.98.185	85.253.132.41	154.84.253.145
20.77.96.247	132.33.158.33	149.12.134.155	239.246.15.168
234.64.69.84	151.217.111.81	139.178.68.119	182.161.66.103
101.109.168.74	89.254.65.136	173.255.217.203	165.227.39.250