142.93.66.71 - IPInfo

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.66.165	attackbots	MYH,DEF GET /wp-login.php	2020-10-03 06:22:50
142.93.66.165	attack	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-03 01:50:22
142.93.66.165	attackspam	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-02 22:18:34
142.93.66.165	attack	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-02 18:51:05
142.93.66.165	attackbots	CMS (WordPress or Joomla) login attempt.	2020-10-02 15:26:09
142.93.66.165	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-12 23:21:36
142.93.66.165	attack	142.93.66.165 - - [11/Sep/2020:23:30:54 +0100] "POST /wp-login.php HTTP/1.1" 200 1874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [11/Sep/2020:23:30:55 +0100] "POST /wp-login.php HTTP/1.1" 200 1858 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [11/Sep/2020:23:30:56 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-12 15:26:12
142.93.66.165	attackbotsspam	142.93.66.165 - - [11/Sep/2020:23:30:54 +0100] "POST /wp-login.php HTTP/1.1" 200 1874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [11/Sep/2020:23:30:55 +0100] "POST /wp-login.php HTTP/1.1" 200 1858 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [11/Sep/2020:23:30:56 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-12 07:12:00
142.93.66.165	attack	142.93.66.165 - - [09/Sep/2020:09:29:03 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [09/Sep/2020:09:29:04 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [09/Sep/2020:09:29:05 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-09 16:02:19
142.93.66.165	attackspambots	Automatic report - XMLRPC Attack	2020-09-09 08:12:08
142.93.66.165	attackbots	xmlrpc attack	2020-09-01 17:06:11
142.93.66.165	attackbots	142.93.66.165 - - [31/Aug/2020:20:17:14 +0200] "POST /wp-login.php HTTP/1.0" 200 4747 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-01 02:25:34
142.93.66.165	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-28 14:33:59
142.93.66.165	attack	142.93.66.165 - - [23/Aug/2020:07:45:33 +0200] "GET /wp-login.php HTTP/1.1" 200 8691 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [23/Aug/2020:07:45:36 +0200] "POST /wp-login.php HTTP/1.1" 200 8921 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [23/Aug/2020:07:45:38 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-23 14:25:36
142.93.66.165	attackspambots	142.93.66.165 - - [12/Aug/2020:22:32:34 +0100] "POST /wp-login.php HTTP/1.1" 200 2080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [12/Aug/2020:22:32:35 +0100] "POST /wp-login.php HTTP/1.1" 200 2059 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [12/Aug/2020:22:32:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2062 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-13 07:02:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.66.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20023
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.66.71.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022070300 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 03 16:04:10 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 71.66.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 71.66.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
103.8.119.166	attack	SSH-BruteForce	2020-01-02 07:35:51
106.13.195.84	attack	$f2bV_matches	2020-01-02 07:48:10
51.77.210.216	attackbots	3x Failed Password	2020-01-02 07:33:01
106.53.23.4	attack	Jan 2 00:24:46 [host] sshd[16687]: Invalid user gjetoe from 106.53.23.4 Jan 2 00:24:46 [host] sshd[16687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.23.4 Jan 2 00:24:48 [host] sshd[16687]: Failed password for invalid user gjetoe from 106.53.23.4 port 53806 ssh2	2020-01-02 07:41:49
185.232.67.6	attack	Jan 2 00:24:55 dedicated sshd[25130]: Invalid user admin from 185.232.67.6 port 53569	2020-01-02 07:42:45
154.72.201.190	attack	Spam trapped	2020-01-02 07:34:38
182.61.133.10	attackbots	Jan 2 00:14:49 localhost sshd\[25217\]: Invalid user pcap from 182.61.133.10 port 43588 Jan 2 00:14:49 localhost sshd\[25217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.133.10 Jan 2 00:14:51 localhost sshd\[25217\]: Failed password for invalid user pcap from 182.61.133.10 port 43588 ssh2	2020-01-02 07:25:07
185.81.96.39	attackspam	Automatic report - SSH Brute-Force Attack	2020-01-02 07:30:03
187.188.90.141	attack	$f2bV_matches	2020-01-02 07:15:52
51.77.201.36	attack	Jan 2 00:17:44 mout sshd[6927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.201.36 user=root Jan 2 00:17:46 mout sshd[6927]: Failed password for root from 51.77.201.36 port 34212 ssh2	2020-01-02 07:24:02
112.217.225.59	attackspambots	SSH bruteforce	2020-01-02 07:15:13
91.209.54.54	attackspam	Jan 2 06:04:46 itv-usvr-02 sshd[12565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.209.54.54 user=root Jan 2 06:04:48 itv-usvr-02 sshd[12565]: Failed password for root from 91.209.54.54 port 52537 ssh2 Jan 2 06:10:18 itv-usvr-02 sshd[12905]: Invalid user aweinreb from 91.209.54.54 port 56613 Jan 2 06:10:18 itv-usvr-02 sshd[12905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.209.54.54 Jan 2 06:10:18 itv-usvr-02 sshd[12905]: Invalid user aweinreb from 91.209.54.54 port 56613 Jan 2 06:10:21 itv-usvr-02 sshd[12905]: Failed password for invalid user aweinreb from 91.209.54.54 port 56613 ssh2	2020-01-02 07:23:48
203.110.179.26	attack	Jan 2 00:16:34 master sshd[32271]: Failed password for invalid user savarimuthu from 203.110.179.26 port 52061 ssh2	2020-01-02 07:47:26
106.13.53.173	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-01-02 07:49:52
167.86.127.137	attackbotsspam	2020-01-01T22:45:15.792426abusebot-3.cloudsearch.cf sshd[16118]: Invalid user admin from 167.86.127.137 port 33510 2020-01-01T22:45:15.798464abusebot-3.cloudsearch.cf sshd[16118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi274379.contaboserver.net 2020-01-01T22:45:15.792426abusebot-3.cloudsearch.cf sshd[16118]: Invalid user admin from 167.86.127.137 port 33510 2020-01-01T22:45:17.613467abusebot-3.cloudsearch.cf sshd[16118]: Failed password for invalid user admin from 167.86.127.137 port 33510 ssh2 2020-01-01T22:49:24.136032abusebot-3.cloudsearch.cf sshd[16523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi274379.contaboserver.net user=root 2020-01-01T22:49:25.800053abusebot-3.cloudsearch.cf sshd[16523]: Failed password for root from 167.86.127.137 port 36984 ssh2 2020-01-01T22:53:31.034450abusebot-3.cloudsearch.cf sshd[16775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-01-02 07:45:59

最近上报的IP列表

139.28.176.132	114.97.117.211	149.62.239.100	150.95.27.159
150.95.82.131	151.34.228.137	24.244.92.169	81.88.116.16
154.202.104.21	149.34.242.25	185.236.216.164	87.242.95.254
221.153.167.219	120.24.233.31	172.99.67.12	154.38.118.168
121.158.12.66	106.246.240.90	81.224.139.66	1.197.91.5