142.93.126.65 - IPInfo

基本信息:

城市(city): North Bergen

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.126.181	attackspam	142.93.126.181 - - [12/Oct/2020:15:05:43 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [12/Oct/2020:15:05:44 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [12/Oct/2020:15:05:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-12 22:35:27
142.93.126.181	attack	CF RAY ID: 5de8a8b66915f059 IP Class: noRecord URI: /wp-login.php	2020-10-08 00:35:00
142.93.126.181	attack	142.93.126.181 - - [07/Oct/2020:09:22:48 +0100] "POST /wp-login.php HTTP/1.1" 200 2491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [07/Oct/2020:09:22:51 +0100] "POST /wp-login.php HTTP/1.1" 200 2431 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [07/Oct/2020:09:22:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2475 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-07 16:42:39
142.93.126.181	attackbotsspam	142.93.126.181 - - [30/Sep/2020:21:53:08 +0100] "POST /wp-login.php HTTP/1.1" 200 1908 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [30/Sep/2020:21:53:09 +0100] "POST /wp-login.php HTTP/1.1" 200 1856 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [30/Sep/2020:21:53:11 +0100] "POST /wp-login.php HTTP/1.1" 200 1835 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 05:23:50
142.93.126.181	attackspambots	142.93.126.181 - - [30/Sep/2020:14:26:47 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [30/Sep/2020:14:26:48 +0200] "POST /wp-login.php HTTP/1.1" 200 2698 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [30/Sep/2020:14:26:48 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [30/Sep/2020:14:26:48 +0200] "POST /wp-login.php HTTP/1.1" 200 2697 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [30/Sep/2020:14:26:48 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [30/Sep/2020:14:26:49 +0200] "POST /wp-login.php HTTP/1.1" 200 2696 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-09-30 21:40:41
142.93.126.181	attackspambots	142.93.126.181 - - [30/Sep/2020:06:14:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2223 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [30/Sep/2020:06:14:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2207 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [30/Sep/2020:06:14:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2204 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 14:12:46
142.93.126.181	attackbots	142.93.126.181 - - [23/Aug/2020:07:48:09 +0100] "POST /wp-login.php HTTP/1.1" 200 2448 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [23/Aug/2020:07:48:11 +0100] "POST /wp-login.php HTTP/1.1" 200 2428 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [23/Aug/2020:07:48:13 +0100] "POST /wp-login.php HTTP/1.1" 200 2428 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-23 19:36:28
142.93.126.181	attackbotsspam	142.93.126.181 - - [18/Aug/2020:14:34:42 +0200] "GET /wp-login.php HTTP/1.1" 200 8775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [18/Aug/2020:14:34:43 +0200] "POST /wp-login.php HTTP/1.1" 200 9026 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [18/Aug/2020:14:34:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-18 21:52:07
142.93.126.181	attack	142.93.126.181 - - [04/Aug/2020:10:54:39 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [04/Aug/2020:10:54:42 +0100] "POST /wp-login.php HTTP/1.1" 200 1860 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [04/Aug/2020:10:54:45 +0100] "POST /wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-04 22:59:07
142.93.126.181	attackspambots	142.93.126.181 - - [27/Jul/2020:08:23:31 +0200] "GET /wp-login.php HTTP/1.1" 200 5738 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [27/Jul/2020:08:23:32 +0200] "POST /wp-login.php HTTP/1.1" 200 5989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [27/Jul/2020:08:23:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-27 19:09:32
142.93.126.181	attack	Automatic report - Banned IP Access	2020-07-20 06:31:47
142.93.126.181	attack	php vulnerability probing	2020-07-12 19:04:46
142.93.126.181	attackspambots	142.93.126.181 - - [10/Jul/2020:08:06:30 +0200] "POST /xmlrpc.php HTTP/1.1" 403 79810 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.126.181 - - [10/Jul/2020:08:25:41 +0200] "POST /xmlrpc.php HTTP/1.1" 403 12787 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-10 20:34:52
142.93.126.181	attackbots	xmlrpc attack	2020-06-29 05:35:27
142.93.126.68	attackspam	Oct 17 05:57:59 vpn01 sshd[16879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.126.68 Oct 17 05:58:01 vpn01 sshd[16879]: Failed password for invalid user zxzczvzbznzm from 142.93.126.68 port 32848 ssh2 ...	2019-10-17 12:02:47

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.126.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34296
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.126.65.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun May 12 02:12:45 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 65.126.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 65.126.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.31.166	attackspambots	SSH auth scanning - multiple failed logins	2020-01-11 13:19:19
123.19.224.67	attack	1578718766 - 01/11/2020 05:59:26 Host: 123.19.224.67/123.19.224.67 Port: 445 TCP Blocked	2020-01-11 13:13:03
200.146.232.97	attackspam	Jan 11 05:53:23 amit sshd\[9894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.146.232.97 user=root Jan 11 05:53:25 amit sshd\[9894\]: Failed password for root from 200.146.232.97 port 58180 ssh2 Jan 11 05:59:53 amit sshd\[10005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.146.232.97 user=root ...	2020-01-11 13:06:04
185.210.248.141	attackbotsspam	Lines containing failures of 185.210.248.141 Jan 7 00:11:58 kmh-vmh-003-fsn07 sshd[29102]: Invalid user abhihhostnamea from 185.210.248.141 port 36282 Jan 7 00:11:58 kmh-vmh-003-fsn07 sshd[29102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.210.248.141 Jan 7 00:12:00 kmh-vmh-003-fsn07 sshd[29102]: Failed password for invalid user abhihhostnamea from 185.210.248.141 port 36282 ssh2 Jan 7 00:12:01 kmh-vmh-003-fsn07 sshd[29102]: Received disconnect from 185.210.248.141 port 36282:11: Bye Bye [preauth] Jan 7 00:12:01 kmh-vmh-003-fsn07 sshd[29102]: Disconnected from invalid user abhihhostnamea 185.210.248.141 port 36282 [preauth] Jan 7 00:16:26 kmh-vmh-003-fsn07 sshd[8761]: Invalid user oracle from 185.210.248.141 port 40192 Jan 7 00:16:26 kmh-vmh-003-fsn07 sshd[8761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.210.248.141 ........ ----------------------------------------------- https://www.blocklist.de/en/v	2020-01-11 09:13:37
222.186.173.154	attackspam	SSH bruteforce (Triggered fail2ban)	2020-01-11 09:07:01
178.62.12.192	attackspam	Jan 11 05:58:13 MK-Soft-VM7 sshd[5333]: Failed password for root from 178.62.12.192 port 55978 ssh2 ...	2020-01-11 13:02:06
54.68.152.144	attackspambots	port scan and connect, tcp 8080 (http-proxy)	2020-01-11 13:13:53
222.186.175.155	attackspam	Jan 11 06:16:02 legacy sshd[10421]: Failed password for root from 222.186.175.155 port 12154 ssh2 Jan 11 06:16:14 legacy sshd[10421]: error: maximum authentication attempts exceeded for root from 222.186.175.155 port 12154 ssh2 [preauth] Jan 11 06:16:20 legacy sshd[10424]: Failed password for root from 222.186.175.155 port 41794 ssh2 ...	2020-01-11 13:17:12
222.186.175.181	attackspambots	Jan 11 04:59:00 zeus sshd[26646]: Failed password for root from 222.186.175.181 port 36280 ssh2 Jan 11 04:59:05 zeus sshd[26646]: Failed password for root from 222.186.175.181 port 36280 ssh2 Jan 11 04:59:09 zeus sshd[26646]: Failed password for root from 222.186.175.181 port 36280 ssh2 Jan 11 04:59:14 zeus sshd[26646]: Failed password for root from 222.186.175.181 port 36280 ssh2 Jan 11 04:59:18 zeus sshd[26646]: Failed password for root from 222.186.175.181 port 36280 ssh2	2020-01-11 13:18:12
162.254.148.44	attackbots	Scanning random ports - tries to find possible vulnerable services	2020-01-11 09:15:55
222.186.173.226	attackspam	Jan 11 06:04:41 MK-Soft-VM7 sshd[5404]: Failed password for root from 222.186.173.226 port 24548 ssh2 Jan 11 06:04:45 MK-Soft-VM7 sshd[5404]: Failed password for root from 222.186.173.226 port 24548 ssh2 ...	2020-01-11 13:08:32
185.220.101.30	attack	01/11/2020-05:59:50.054531 185.220.101.30 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 31	2020-01-11 13:01:46
141.101.143.24	attack	(From matthaei.sue@yahoo.com) Acquiring GOV backlinks is one of the most sought-after link building strategies that’s still popular among SEO experts today. More info: https://www.monkeydigital.io/product/gov-backlinks/ thanks and regards Mike monkeydigital.co@gmail.com	2020-01-11 13:00:53
186.90.139.76	attack	20/1/10@23:59:31: FAIL: Alarm-Intrusion address from=186.90.139.76 ...	2020-01-11 13:11:16
54.38.242.233	attackbots	Jan 11 04:59:46 IngegnereFirenze sshd[25748]: User root from 54.38.242.233 not allowed because not listed in AllowUsers ...	2020-01-11 13:02:55

最近上报的IP列表

177.39.212.45	31.10.163.137	69.233.163.5	176.55.91.37
140.114.239.129	83.110.238.167	120.188.78.218	87.248.177.49
218.119.105.220	211.183.66.114	106.121.140.250	123.117.161.11
83.81.106.203	46.80.102.31	185.142.236.234	164.165.110.118
154.73.198.102	103.30.85.165	74.84.155.26	42.118.54.225