42.159.92.93 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanghai Blue Cloud Technology Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jun 4 03:11:45 dns1 sshd[31706]: Failed password for root from 42.159.92.93 port 56014 ssh2 Jun 4 03:14:58 dns1 sshd[31869]: Failed password for root from 42.159.92.93 port 46274 ssh2	2020-06-04 20:04:56
attack	Jun 2 15:36:45 vps647732 sshd[30013]: Failed password for root from 42.159.92.93 port 46236 ssh2 ...	2020-06-03 02:57:50
attack	May 31 23:06:52 piServer sshd[17617]: Failed password for root from 42.159.92.93 port 38398 ssh2 May 31 23:09:05 piServer sshd[17784]: Failed password for root from 42.159.92.93 port 40550 ssh2 ...	2020-06-01 06:43:48
attackbotsspam	Invalid user oracle from 42.159.92.93 port 59522	2020-05-29 14:07:35
attackspambots	2020-05-13T12:27:54.094536abusebot-2.cloudsearch.cf sshd[5605]: Invalid user providencia from 42.159.92.93 port 41576 2020-05-13T12:27:54.103137abusebot-2.cloudsearch.cf sshd[5605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 2020-05-13T12:27:54.094536abusebot-2.cloudsearch.cf sshd[5605]: Invalid user providencia from 42.159.92.93 port 41576 2020-05-13T12:27:55.786440abusebot-2.cloudsearch.cf sshd[5605]: Failed password for invalid user providencia from 42.159.92.93 port 41576 ssh2 2020-05-13T12:35:11.391327abusebot-2.cloudsearch.cf sshd[5667]: Invalid user arkserver from 42.159.92.93 port 40616 2020-05-13T12:35:11.396652abusebot-2.cloudsearch.cf sshd[5667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 2020-05-13T12:35:11.391327abusebot-2.cloudsearch.cf sshd[5667]: Invalid user arkserver from 42.159.92.93 port 40616 2020-05-13T12:35:13.070072abusebot-2.cloudsearch.cf sshd[56 ...	2020-05-14 01:10:44
attackspam	Invalid user techuser from 42.159.92.93 port 36884	2020-04-19 13:44:06
attack	Apr 17 13:28:26 localhost sshd\[29064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 user=root Apr 17 13:28:27 localhost sshd\[29064\]: Failed password for root from 42.159.92.93 port 40368 ssh2 Apr 17 13:33:00 localhost sshd\[29396\]: Invalid user sftpuser from 42.159.92.93 Apr 17 13:33:00 localhost sshd\[29396\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Apr 17 13:33:02 localhost sshd\[29396\]: Failed password for invalid user sftpuser from 42.159.92.93 port 45650 ssh2 ...	2020-04-17 19:33:33
attackbotsspam	Mar 26 11:00:53 NPSTNNYC01T sshd[29953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Mar 26 11:00:56 NPSTNNYC01T sshd[29953]: Failed password for invalid user butthead from 42.159.92.93 port 48182 ssh2 Mar 26 11:03:15 NPSTNNYC01T sshd[30143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 ...	2020-03-26 23:30:26
attackspambots	Mar 22 04:54:17 nextcloud sshd\[30791\]: Invalid user robert from 42.159.92.93 Mar 22 04:54:17 nextcloud sshd\[30791\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Mar 22 04:54:19 nextcloud sshd\[30791\]: Failed password for invalid user robert from 42.159.92.93 port 57482 ssh2	2020-03-22 15:31:56
attackspambots	Mar 8 12:01:47 hosting sshd[13584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 user=root Mar 8 12:01:49 hosting sshd[13584]: Failed password for root from 42.159.92.93 port 43768 ssh2 Mar 8 12:18:34 hosting sshd[14999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 user=root Mar 8 12:18:36 hosting sshd[14999]: Failed password for root from 42.159.92.93 port 50604 ssh2 ...	2020-03-08 17:33:37
attack	Feb 20 13:47:13 auw2 sshd\[5665\]: Invalid user sinusbot from 42.159.92.93 Feb 20 13:47:13 auw2 sshd\[5665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Feb 20 13:47:15 auw2 sshd\[5665\]: Failed password for invalid user sinusbot from 42.159.92.93 port 49816 ssh2 Feb 20 13:52:12 auw2 sshd\[6085\]: Invalid user zhugf from 42.159.92.93 Feb 20 13:52:12 auw2 sshd\[6085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93	2020-02-21 08:21:09
attackspam	Feb 20 01:56:14 vps46666688 sshd[6322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Feb 20 01:56:16 vps46666688 sshd[6322]: Failed password for invalid user at from 42.159.92.93 port 36038 ssh2 ...	2020-02-20 13:54:06
attackspambots	Feb 11 21:32:22 mockhub sshd[613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.93 Feb 11 21:32:23 mockhub sshd[613]: Failed password for invalid user sicily from 42.159.92.93 port 60336 ssh2 ...	2020-02-12 19:07:35

Comments on same subnet:

IP	Type	Details	Datetime
42.159.92.147	attack	Sep 21 04:08:18 xtremcommunity sshd\[311665\]: Invalid user pi from 42.159.92.147 port 53334 Sep 21 04:08:18 xtremcommunity sshd\[311665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.147 Sep 21 04:08:20 xtremcommunity sshd\[311665\]: Failed password for invalid user pi from 42.159.92.147 port 53334 ssh2 Sep 21 04:11:40 xtremcommunity sshd\[311781\]: Invalid user tom from 42.159.92.147 port 51392 Sep 21 04:11:40 xtremcommunity sshd\[311781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.92.147 ...	2019-09-21 20:50:18
42.159.92.147	attackspam	2019-09-14T11:14:35.693859abusebot-2.cloudsearch.cf sshd\[13003\]: Invalid user nexthink from 42.159.92.147 port 53496	2019-09-14 19:26:55
42.159.92.147	attack	2019-09-11T13:38:18.180074abusebot-4.cloudsearch.cf sshd\[21784\]: Invalid user hadoop from 42.159.92.147 port 39960	2019-09-11 23:32:22
42.159.92.147	attackspambots	$f2bV_matches	2019-08-02 16:56:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.159.92.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53764
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.159.92.93.			IN	A

;; AUTHORITY SECTION:
.			126	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021200 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 19:07:28 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 93.92.159.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 93.92.159.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
164.177.42.33	attackbots	web-1 [ssh] SSH Attack	2019-10-01 07:05:17
209.235.67.49	attackspambots	Oct 1 00:45:29 mail sshd\[23828\]: Failed password for invalid user tiago from 209.235.67.49 port 44720 ssh2 Oct 1 00:48:54 mail sshd\[24282\]: Invalid user cen from 209.235.67.49 port 36664 Oct 1 00:48:54 mail sshd\[24282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.235.67.49 Oct 1 00:48:55 mail sshd\[24282\]: Failed password for invalid user cen from 209.235.67.49 port 36664 ssh2 Oct 1 00:52:21 mail sshd\[24728\]: Invalid user user from 209.235.67.49 port 56842	2019-10-01 07:03:39
129.154.67.65	attack	Sep 30 18:34:35 ny01 sshd[834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.154.67.65 Sep 30 18:34:36 ny01 sshd[834]: Failed password for invalid user sejong79 from 129.154.67.65 port 35040 ssh2 Sep 30 18:39:20 ny01 sshd[1669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.154.67.65	2019-10-01 06:55:58
143.208.181.35	attack	2019-10-01T01:25:19.552301tmaserv sshd\[27355\]: Invalid user com from 143.208.181.35 port 36826 2019-10-01T01:25:19.565369tmaserv sshd\[27355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.181.35 2019-10-01T01:25:21.174758tmaserv sshd\[27355\]: Failed password for invalid user com from 143.208.181.35 port 36826 ssh2 2019-10-01T01:29:22.076910tmaserv sshd\[27602\]: Invalid user c from 143.208.181.35 port 49648 2019-10-01T01:29:22.082684tmaserv sshd\[27602\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.181.35 2019-10-01T01:29:24.051863tmaserv sshd\[27602\]: Failed password for invalid user c from 143.208.181.35 port 49648 ssh2 ...	2019-10-01 06:39:38
91.191.223.207	attack	Oct 1 00:52:10 mail postfix/smtpd\[21232\]: warning: unknown\[91.191.223.207\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 00:52:10 mail postfix/smtpd\[24550\]: warning: unknown\[91.191.223.207\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 00:52:10 mail postfix/smtpd\[24224\]: warning: unknown\[91.191.223.207\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 00:52:10 mail postfix/smtpd\[24549\]: warning: unknown\[91.191.223.207\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-01 07:05:58
113.141.28.106	attack	Sep 30 11:23:25 tdfoods sshd\[26011\]: Invalid user user from 113.141.28.106 Sep 30 11:23:25 tdfoods sshd\[26011\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.28.106 Sep 30 11:23:27 tdfoods sshd\[26011\]: Failed password for invalid user user from 113.141.28.106 port 24516 ssh2 Sep 30 11:27:06 tdfoods sshd\[26323\]: Invalid user user from 113.141.28.106 Sep 30 11:27:06 tdfoods sshd\[26323\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.28.106	2019-10-01 06:35:48
178.128.238.248	attackbots	Sep 30 12:43:44 wbs sshd\[20515\]: Invalid user oracle from 178.128.238.248 Sep 30 12:43:44 wbs sshd\[20515\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vancityblockchain.ca Sep 30 12:43:46 wbs sshd\[20515\]: Failed password for invalid user oracle from 178.128.238.248 port 41488 ssh2 Sep 30 12:47:40 wbs sshd\[20824\]: Invalid user rancher from 178.128.238.248 Sep 30 12:47:40 wbs sshd\[20824\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vancityblockchain.ca	2019-10-01 06:52:24
45.118.145.51	attackspam	Invalid user thanks from 45.118.145.51 port 38934	2019-10-01 06:57:50
103.210.238.81	attackbotsspam	Oct 1 00:49:31 mail sshd\[24341\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.210.238.81 user=root Oct 1 00:49:33 mail sshd\[24341\]: Failed password for root from 103.210.238.81 port 41660 ssh2 Oct 1 00:54:40 mail sshd\[24930\]: Invalid user godep from 103.210.238.81 port 53730 Oct 1 00:54:40 mail sshd\[24930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.210.238.81 Oct 1 00:54:42 mail sshd\[24930\]: Failed password for invalid user godep from 103.210.238.81 port 53730 ssh2	2019-10-01 07:05:45
1.53.26.126	attack	Unauthorised access (Oct 1) SRC=1.53.26.126 LEN=40 TTL=43 ID=2935 TCP DPT=8080 WINDOW=16927 SYN Unauthorised access (Sep 30) SRC=1.53.26.126 LEN=40 TTL=43 ID=6680 TCP DPT=8080 WINDOW=22143 SYN Unauthorised access (Sep 30) SRC=1.53.26.126 LEN=40 TTL=43 ID=12256 TCP DPT=8080 WINDOW=20607 SYN Unauthorised access (Sep 30) SRC=1.53.26.126 LEN=40 TTL=43 ID=143 TCP DPT=8080 WINDOW=22143 SYN Unauthorised access (Sep 30) SRC=1.53.26.126 LEN=40 TTL=43 ID=22648 TCP DPT=8080 WINDOW=20607 SYN Unauthorised access (Sep 30) SRC=1.53.26.126 LEN=40 TTL=48 ID=32450 TCP DPT=8080 WINDOW=48100 SYN	2019-10-01 07:02:45
37.115.185.176	attackspam	Automatic report - XMLRPC Attack	2019-10-01 07:01:16
202.90.198.213	attackspam	2019-09-30T22:36:55.987620shield sshd\[2500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.90.198.213 user=root 2019-09-30T22:36:58.478824shield sshd\[2500\]: Failed password for root from 202.90.198.213 port 33338 ssh2 2019-09-30T22:42:45.556161shield sshd\[3284\]: Invalid user informix from 202.90.198.213 port 46954 2019-09-30T22:42:45.561451shield sshd\[3284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.90.198.213 2019-09-30T22:42:48.102619shield sshd\[3284\]: Failed password for invalid user informix from 202.90.198.213 port 46954 ssh2	2019-10-01 06:50:52
170.82.23.165	attack	Sep 30 22:57:13 andromeda sshd\[17430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.82.23.165 user=root Sep 30 22:57:15 andromeda sshd\[17430\]: Failed password for root from 170.82.23.165 port 40074 ssh2 Sep 30 22:57:17 andromeda sshd\[17430\]: Failed password for root from 170.82.23.165 port 40074 ssh2	2019-10-01 07:00:29
222.186.175.161	attack	Oct 1 01:07:27 dedicated sshd[29892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Oct 1 01:07:29 dedicated sshd[29892]: Failed password for root from 222.186.175.161 port 22730 ssh2	2019-10-01 07:09:31
121.227.179.84	attackspam	Sep 30 22:57:33 host sshd\[55606\]: Invalid user kodi from 121.227.179.84 port 56853 Sep 30 22:57:33 host sshd\[55606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.227.179.84 ...	2019-10-01 06:51:08

Recently Reported IPs

210.66.64.136	96.125.162.70	106.197.195.189	20.255.186.16
137.211.81.178	85.255.8.100	183.102.82.85	45.50.222.46
1.238.238.220	54.121.23.90	128.186.7.142	117.196.18.32
59.127.17.3	49.206.27.215	123.24.41.108	189.212.117.15
201.131.177.8	81.171.26.136	59.126.149.233	31.133.97.24