142.93.7.57 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Invalid user admin from 142.93.7.57 port 37320	2019-10-27 01:31:16

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.73.89	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-10-12 00:26:30
142.93.73.89	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-10-11 16:24:15
142.93.73.89	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-10-11 09:43:31
142.93.7.111	attack	142.93.7.111 - - [12/Sep/2020:06:09:50 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.7.111 - - [12/Sep/2020:06:09:53 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.7.111 - - [12/Sep/2020:06:09:55 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-12 22:12:37
142.93.7.111	attackspambots	142.93.7.111 - - [12/Sep/2020:06:09:50 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.7.111 - - [12/Sep/2020:06:09:53 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.7.111 - - [12/Sep/2020:06:09:55 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-12 14:14:25
142.93.7.111	attackbotsspam	142.93.7.111 - - \[12/Sep/2020:00:02:29 +0200\] "POST /wp-login.php HTTP/1.0" 200 5983 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.7.111 - - \[12/Sep/2020:00:02:31 +0200\] "POST /wp-login.php HTTP/1.0" 200 5815 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.7.111 - - \[12/Sep/2020:00:02:31 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-12 06:04:11
142.93.77.12	attack	Port scan: Attack repeated for 24 hours	2020-09-10 00:55:21
142.93.73.89	attack	142.93.73.89 - - [07/Sep/2020:13:42:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2172 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.73.89 - - [07/Sep/2020:13:42:57 +0100] "POST /wp-login.php HTTP/1.1" 200 2220 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.73.89 - - [07/Sep/2020:13:42:58 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-08 02:18:14
142.93.73.89	attack	142.93.73.89 - - [07/Sep/2020:10:37:28 +0100] "POST /wp-login.php HTTP/1.1" 200 1791 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.73.89 - - [07/Sep/2020:10:37:29 +0100] "POST /wp-login.php HTTP/1.1" 200 1772 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.73.89 - - [07/Sep/2020:10:37:29 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-07 17:44:00
142.93.73.89	attackbots	Attempting to access Wordpress login on a honeypot or private system.	2020-09-07 03:19:18
142.93.73.89	attackspambots	142.93.73.89 - - [06/Sep/2020:12:35:06 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.73.89 - - [06/Sep/2020:12:35:08 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.73.89 - - [06/Sep/2020:12:35:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-06 18:46:05
142.93.7.111	attack	142.93.7.111 - - [01/Sep/2020:09:29:11 +0200] "POST /wp-login.php HTTP/1.0" 200 4747 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-01 17:11:46
142.93.73.89	attackbotsspam	142.93.73.89 - - [22/Aug/2020:03:37:05 +0200] "www.ruhnke.cloud" "POST /wp-login.php HTTP/1.1" 200 4980 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 0.843 142.93.73.89 - - [22/Aug/2020:03:37:08 +0200] "www.ruhnke.cloud" "POST /xmlrpc.php HTTP/1.1" 200 393 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 2.463 142.93.73.89 - - [22/Aug/2020:05:55:40 +0200] "www.ruhnke.cloud" "POST /wp-login.php HTTP/1.1" 200 4980 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 0.843 142.93.73.89 - - [22/Aug/2020:05:55:43 +0200] "www.ruhnke.cloud" "POST /xmlrpc.php HTTP/1.1" 200 472 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 2.306 142.93.73.89 - - [25/Aug/2020:06:12:30 +0200] "www.ruhnke.cloud" "POST /wp-login.php HTTP/1.1" 200 4978 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 0.905 ...	2020-08-25 12:39:36
142.93.77.12	attackbotsspam	SIP/5060 Probe, BF, Hack -	2020-08-17 17:50:40
142.93.71.104	attackspambots		2020-08-14 22:44:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.7.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.7.57.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102601 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 27 01:31:02 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

57.7.93.142.in-addr.arpa domain name pointer anabel.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
57.7.93.142.in-addr.arpa	name = anabel.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
46.229.168.139	attackspambots	Malicious Traffic/Form Submission	2019-08-28 16:49:42
86.44.58.191	attack	Aug 27 20:18:11 sachi sshd\[19396\]: Invalid user marry from 86.44.58.191 Aug 27 20:18:11 sachi sshd\[19396\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86-44-58-191-dynamic.agg2.rsl.rsl-rtd.eircom.net Aug 27 20:18:14 sachi sshd\[19396\]: Failed password for invalid user marry from 86.44.58.191 port 55176 ssh2 Aug 27 20:22:37 sachi sshd\[19787\]: Invalid user jihye from 86.44.58.191 Aug 27 20:22:37 sachi sshd\[19787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86-44-58-191-dynamic.agg2.rsl.rsl-rtd.eircom.net	2019-08-28 16:50:41
59.45.99.99	attack	Aug 27 22:30:28 hcbb sshd\[12760\]: Invalid user zr from 59.45.99.99 Aug 27 22:30:28 hcbb sshd\[12760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Aug 27 22:30:30 hcbb sshd\[12760\]: Failed password for invalid user zr from 59.45.99.99 port 37874 ssh2 Aug 27 22:36:50 hcbb sshd\[13278\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 user=root Aug 27 22:36:52 hcbb sshd\[13278\]: Failed password for root from 59.45.99.99 port 60450 ssh2	2019-08-28 16:45:10
80.211.133.124	attack	Aug 28 06:24:56 h2177944 sshd\[5144\]: Failed password for invalid user kristin from 80.211.133.124 port 43936 ssh2 Aug 28 07:25:13 h2177944 sshd\[7397\]: Invalid user multimedia from 80.211.133.124 port 56444 Aug 28 07:25:13 h2177944 sshd\[7397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.133.124 Aug 28 07:25:15 h2177944 sshd\[7397\]: Failed password for invalid user multimedia from 80.211.133.124 port 56444 ssh2 ...	2019-08-28 16:47:11
219.155.103.86	attack	Unauthorised access (Aug 28) SRC=219.155.103.86 LEN=40 TTL=49 ID=62197 TCP DPT=8080 WINDOW=58682 SYN Unauthorised access (Aug 27) SRC=219.155.103.86 LEN=40 TTL=49 ID=47020 TCP DPT=8080 WINDOW=58682 SYN	2019-08-28 17:03:49
189.91.3.51	attackspam	Excessive failed login attempts on port 587	2019-08-28 16:47:43
177.23.184.99	attackbots	Port Scan detected from 177.23.184.99 (BR/Brazil/177-23-184-99.infobarranet.com.br). 4 hits in the last 76 seconds	2019-08-28 16:37:32
45.55.47.149	attackspambots	Reported by AbuseIPDB proxy server.	2019-08-28 16:49:07
115.194.135.210	attack	Aug 28 04:25:02 raspberrypi sshd\[20938\]: Failed password for root from 115.194.135.210 port 36320 ssh2Aug 28 04:25:05 raspberrypi sshd\[20938\]: Failed password for root from 115.194.135.210 port 36320 ssh2Aug 28 04:25:07 raspberrypi sshd\[20938\]: Failed password for root from 115.194.135.210 port 36320 ssh2 ...	2019-08-28 16:30:28
79.137.72.121	attack	Aug 27 19:26:14 php1 sshd\[17831\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.72.121 user=root Aug 27 19:26:16 php1 sshd\[17831\]: Failed password for root from 79.137.72.121 port 45492 ssh2 Aug 27 19:30:24 php1 sshd\[18194\]: Invalid user user from 79.137.72.121 Aug 27 19:30:24 php1 sshd\[18194\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.72.121 Aug 27 19:30:25 php1 sshd\[18194\]: Failed password for invalid user user from 79.137.72.121 port 34048 ssh2	2019-08-28 16:38:04
112.134.44.153	attack	B: /wp-login.php attack	2019-08-28 16:19:29
45.55.142.207	attackbotsspam	Invalid user altibase from 45.55.142.207 port 49204 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.142.207 Failed password for invalid user altibase from 45.55.142.207 port 49204 ssh2 Invalid user benjamin from 45.55.142.207 port 43432 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.142.207	2019-08-28 16:21:02
23.129.64.154	attackbotsspam	Aug 28 11:09:02 rotator sshd\[1246\]: Failed password for root from 23.129.64.154 port 43464 ssh2Aug 28 11:09:05 rotator sshd\[1246\]: Failed password for root from 23.129.64.154 port 43464 ssh2Aug 28 11:09:08 rotator sshd\[1246\]: Failed password for root from 23.129.64.154 port 43464 ssh2Aug 28 11:09:10 rotator sshd\[1246\]: Failed password for root from 23.129.64.154 port 43464 ssh2Aug 28 11:09:14 rotator sshd\[1246\]: Failed password for root from 23.129.64.154 port 43464 ssh2Aug 28 11:09:16 rotator sshd\[1246\]: Failed password for root from 23.129.64.154 port 43464 ssh2 ...	2019-08-28 17:11:28
186.156.177.115	attack	Aug 28 09:47:01 web1 sshd\[31783\]: Invalid user tmbecker from 186.156.177.115 Aug 28 09:47:01 web1 sshd\[31783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.156.177.115 Aug 28 09:47:03 web1 sshd\[31783\]: Failed password for invalid user tmbecker from 186.156.177.115 port 51270 ssh2 Aug 28 09:52:53 web1 sshd\[32031\]: Invalid user p from 186.156.177.115 Aug 28 09:52:53 web1 sshd\[32031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.156.177.115	2019-08-28 16:44:33
106.13.197.115	attackspambots	Aug 27 07:04:23 rb06 sshd[8850]: Failed password for invalid user newadmin from 106.13.197.115 port 44430 ssh2 Aug 27 07:04:24 rb06 sshd[8850]: Received disconnect from 106.13.197.115: 11: Bye Bye [preauth] Aug 27 07:09:31 rb06 sshd[9910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.197.115 user=r.r Aug 27 07:09:33 rb06 sshd[9910]: Failed password for r.r from 106.13.197.115 port 56502 ssh2 Aug 27 07:09:34 rb06 sshd[9910]: Received disconnect from 106.13.197.115: 11: Bye Bye [preauth] Aug 27 07:14:36 rb06 sshd[14332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.197.115 user=r.r Aug 27 07:14:38 rb06 sshd[14332]: Failed password for r.r from 106.13.197.115 port 40308 ssh2 Aug 27 07:14:38 rb06 sshd[14332]: Received disconnect from 106.13.197.115: 11: Bye Bye [preauth] Aug 27 07:19:41 rb06 sshd[15246]: Failed password for invalid user mathandazo from 106.13.197.115 port 5........ -------------------------------	2019-08-28 16:33:53

最近上报的IP列表

198.144.20.43	165.0.96.237	122.154.38.77	117.73.10.45
201.203.107.156	12.22.148.68	106.13.144.78	70.16.215.11
106.13.94.100	127.5.82.102	133.248.159.64	3.20.16.19
113.119.153.15	237.6.212.92	232.182.176.80	137.219.110.47
55.249.2.71	255.176.6.206	1.205.243.79	31.237.41.249