142.93.66.71 - IPInfo

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.66.165	attackbots	MYH,DEF GET /wp-login.php	2020-10-03 06:22:50
142.93.66.165	attack	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-03 01:50:22
142.93.66.165	attackspam	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-02 22:18:34
142.93.66.165	attack	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-02 18:51:05
142.93.66.165	attackbots	CMS (WordPress or Joomla) login attempt.	2020-10-02 15:26:09
142.93.66.165	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-12 23:21:36
142.93.66.165	attack	142.93.66.165 - - [11/Sep/2020:23:30:54 +0100] "POST /wp-login.php HTTP/1.1" 200 1874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [11/Sep/2020:23:30:55 +0100] "POST /wp-login.php HTTP/1.1" 200 1858 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [11/Sep/2020:23:30:56 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-12 15:26:12
142.93.66.165	attackbotsspam	142.93.66.165 - - [11/Sep/2020:23:30:54 +0100] "POST /wp-login.php HTTP/1.1" 200 1874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [11/Sep/2020:23:30:55 +0100] "POST /wp-login.php HTTP/1.1" 200 1858 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [11/Sep/2020:23:30:56 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-12 07:12:00
142.93.66.165	attack	142.93.66.165 - - [09/Sep/2020:09:29:03 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [09/Sep/2020:09:29:04 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [09/Sep/2020:09:29:05 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-09 16:02:19
142.93.66.165	attackspambots	Automatic report - XMLRPC Attack	2020-09-09 08:12:08
142.93.66.165	attackbots	xmlrpc attack	2020-09-01 17:06:11
142.93.66.165	attackbots	142.93.66.165 - - [31/Aug/2020:20:17:14 +0200] "POST /wp-login.php HTTP/1.0" 200 4747 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-01 02:25:34
142.93.66.165	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-28 14:33:59
142.93.66.165	attack	142.93.66.165 - - [23/Aug/2020:07:45:33 +0200] "GET /wp-login.php HTTP/1.1" 200 8691 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [23/Aug/2020:07:45:36 +0200] "POST /wp-login.php HTTP/1.1" 200 8921 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [23/Aug/2020:07:45:38 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-23 14:25:36
142.93.66.165	attackspambots	142.93.66.165 - - [12/Aug/2020:22:32:34 +0100] "POST /wp-login.php HTTP/1.1" 200 2080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [12/Aug/2020:22:32:35 +0100] "POST /wp-login.php HTTP/1.1" 200 2059 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [12/Aug/2020:22:32:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2062 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-13 07:02:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.66.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20023
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.66.71.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022070300 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 03 16:04:10 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 71.66.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 71.66.93.142.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
61.5.9.166	attackbotsspam	Unauthorized connection attempt from IP address 61.5.9.166 on Port 445(SMB)	2019-11-06 05:12:56
198.108.67.131	attackbotsspam	ET DROP Dshield Block Listed Source group 1 - port: 9200 proto: TCP cat: Misc Attack	2019-11-06 04:53:02
129.204.58.180	attack	Nov 5 16:07:04 mout sshd[19437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.58.180 user=root Nov 5 16:07:05 mout sshd[19437]: Failed password for root from 129.204.58.180 port 41154 ssh2	2019-11-06 05:06:05
117.6.133.115	attackbots	Unauthorized connection attempt from IP address 117.6.133.115 on Port 445(SMB)	2019-11-06 05:15:45
110.139.126.130	attackbotsspam	Nov 5 23:00:21 www1 sshd\[65443\]: Invalid user nation from 110.139.126.130Nov 5 23:00:23 www1 sshd\[65443\]: Failed password for invalid user nation from 110.139.126.130 port 63466 ssh2Nov 5 23:04:19 www1 sshd\[10224\]: Invalid user sno from 110.139.126.130Nov 5 23:04:21 www1 sshd\[10224\]: Failed password for invalid user sno from 110.139.126.130 port 45217 ssh2Nov 5 23:08:20 www1 sshd\[20319\]: Invalid user $passwor from 110.139.126.130Nov 5 23:08:22 www1 sshd\[20319\]: Failed password for invalid user $passwor from 110.139.126.130 port 27100 ssh2 ...	2019-11-06 05:12:27
179.56.206.204	attack	Unauthorized connection attempt from IP address 179.56.206.204 on Port 445(SMB)	2019-11-06 05:07:07
184.100.18.80	attack	WEB_SERVER 403 Forbidden	2019-11-06 05:21:57
66.112.65.193	attackbots	Unauthorized connection attempt from IP address 66.112.65.193 on Port 445(SMB)	2019-11-06 04:47:33
51.38.189.70	attackspam	Use masscan	2019-11-06 05:07:26
49.248.118.74	attackspambots	Unauthorized connection attempt from IP address 49.248.118.74 on Port 445(SMB)	2019-11-06 04:44:38
174.198.37.91	attackbotsspam	WEB_SERVER 403 Forbidden	2019-11-06 05:02:53
175.215.49.169	attackbots	Fail2Ban Ban Triggered	2019-11-06 05:10:07
113.140.75.205	attack	$f2bV_matches	2019-11-06 04:56:19
140.143.15.169	attackbots	$f2bV_matches	2019-11-06 05:04:04
106.13.71.133	attack	SSH brutforce	2019-11-06 05:18:10

最近上报的IP列表

139.28.176.132	114.97.117.211	149.62.239.100	150.95.27.159
150.95.82.131	151.34.228.137	24.244.92.169	81.88.116.16
154.202.104.21	149.34.242.25	185.236.216.164	87.242.95.254
221.153.167.219	120.24.233.31	172.99.67.12	154.38.118.168
121.158.12.66	106.246.240.90	81.224.139.66	1.197.91.5