142.93.193.47 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	[2020-04-19 00:39:26] NOTICE[1170][C-00001f74] chan_sip.c: Call from '' (142.93.193.47:54507) to extension '901146406820514' rejected because extension not found in context 'public'. [2020-04-19 00:39:26] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-19T00:39:26.132-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146406820514",SessionID="0x7f6c08341c08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/142.93.193.47/54507",ACLName="no_extension_match" [2020-04-19 00:40:20] NOTICE[1170][C-00001f75] chan_sip.c: Call from '' (142.93.193.47:57474) to extension '801146406820514' rejected because extension not found in context 'public'. [2020-04-19 00:40:20] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-19T00:40:20.233-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="801146406820514",SessionID="0x7f6c08341c08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/ ...	2020-04-19 12:55:23

类型

评论内容

时间

attack

[2020-04-19 00:39:26] NOTICE[1170][C-00001f74] chan_sip.c: Call from '' (142.93.193.47:54507) to extension '901146406820514' rejected because extension not found in context 'public'.
[2020-04-19 00:39:26] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-19T00:39:26.132-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146406820514",SessionID="0x7f6c08341c08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/142.93.193.47/54507",ACLName="no_extension_match"
[2020-04-19 00:40:20] NOTICE[1170][C-00001f75] chan_sip.c: Call from '' (142.93.193.47:57474) to extension '801146406820514' rejected because extension not found in context 'public'.
[2020-04-19 00:40:20] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-19T00:40:20.233-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="801146406820514",SessionID="0x7f6c08341c08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/
...

2020-04-19 12:55:23

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.193.63	attackspam	142.93.193.63 - - \[13/Oct/2020:12:44:47 +0200\] "POST /wp-login.php HTTP/1.0" 200 5983 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - \[13/Oct/2020:12:44:48 +0200\] "POST /wp-login.php HTTP/1.0" 200 5815 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - \[13/Oct/2020:12:44:49 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-10-13 20:52:16
142.93.193.63	attack	142.93.193.63 - - [13/Oct/2020:02:53:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2548 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [13/Oct/2020:02:53:32 +0100] "POST /wp-login.php HTTP/1.1" 200 2529 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [13/Oct/2020:02:53:32 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-13 12:21:48
142.93.193.63	attack	142.93.193.63 - - [12/Oct/2020:22:49:59 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [12/Oct/2020:22:50:00 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [12/Oct/2020:22:50:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-13 05:11:14
142.93.193.63	attackspambots	142.93.193.63 - - [12/Oct/2020:00:28:27 +0100] "POST /wp-login.php HTTP/1.1" 200 2503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [12/Oct/2020:00:28:29 +0100] "POST /wp-login.php HTTP/1.1" 200 2479 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [12/Oct/2020:00:28:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2519 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-12 07:55:49
142.93.193.63	attackspambots	142.93.193.63 - - [10/Oct/2020:23:36:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2302 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [10/Oct/2020:23:36:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [10/Oct/2020:23:36:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2282 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-12 00:13:01
142.93.193.63	attack	142.93.193.63 - - [10/Oct/2020:23:36:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2302 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [10/Oct/2020:23:36:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [10/Oct/2020:23:36:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2282 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-11 16:11:20
142.93.193.63	attackspambots	142.93.193.63 - - [10/Oct/2020:23:36:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2302 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [10/Oct/2020:23:36:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [10/Oct/2020:23:36:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2282 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-11 09:30:22
142.93.193.63	attack	Trolling for resource vulnerabilities	2020-10-03 03:28:53
142.93.193.63	attackbotsspam	Trolling for resource vulnerabilities	2020-10-03 02:18:53
142.93.193.63	attack	142.93.193.63 - - [02/Oct/2020:09:22:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2598 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [02/Oct/2020:09:23:00 +0100] "POST /wp-login.php HTTP/1.1" 200 2540 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [02/Oct/2020:09:23:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2583 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-02 22:47:40
142.93.193.63	attackspam	142.93.193.63 - - [02/Oct/2020:09:22:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2598 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [02/Oct/2020:09:23:00 +0100] "POST /wp-login.php HTTP/1.1" 200 2540 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [02/Oct/2020:09:23:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2583 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-02 19:19:00
142.93.193.63	attackbots	142.93.193.63 - - [02/Oct/2020:06:06:25 +0100] "POST /wp-login.php HTTP/1.1" 200 2426 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [02/Oct/2020:06:06:26 +0100] "POST /wp-login.php HTTP/1.1" 200 2443 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [02/Oct/2020:06:06:27 +0100] "POST /wp-login.php HTTP/1.1" 200 2441 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-02 15:54:41
142.93.193.63	attack	142.93.193.63 - - [02/Oct/2020:02:38:46 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [02/Oct/2020:02:38:47 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [02/Oct/2020:02:38:48 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-02 12:09:24
142.93.193.63	attack	142.93.193.63 - - [19/Sep/2020:17:35:57 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.193.63 - - [19/Sep/2020:17:42:16 +0200] "POST /xmlrpc.php HTTP/1.1" 403 15713 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-20 01:54:01
142.93.193.63	attackspambots	142.93.193.63 - - [19/Sep/2020:07:59:14 +0000] "POST /wp-login.php HTTP/1.1" 200 2075 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.193.63 - - [19/Sep/2020:07:59:16 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.193.63 - - [19/Sep/2020:07:59:19 +0000] "POST /wp-login.php HTTP/1.1" 200 2049 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.193.63 - - [19/Sep/2020:07:59:21 +0000] "POST /wp-login.php HTTP/1.1" 200 2049 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.193.63 - - [19/Sep/2020:07:59:22 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-09-19 17:44:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.193.47
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19409
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.193.47.			IN	A

;; AUTHORITY SECTION:
.			539	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041801 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 19 12:55:15 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 47.193.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 47.193.93.142.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
64.227.37.93	attackbotsspam	Invalid user hadoop from 64.227.37.93 port 41806	2020-05-01 03:57:10
116.49.115.113	attack	Honeypot attack, port: 5555, PTR: n11649115113.netvigator.com.	2020-05-01 03:55:19
54.37.136.213	attack	Apr 30 12:09:29 XXX sshd[39721]: Invalid user backup from 54.37.136.213 port 58000	2020-05-01 03:27:55
185.202.1.164	attackbots	" "	2020-05-01 03:47:41
42.98.254.229	attackspambots	Honeypot attack, port: 5555, PTR: 42-98-254-229.static.netvigator.com.	2020-05-01 03:57:30
2.228.151.115	attack	2020-04-30T15:10:40.701233abusebot-7.cloudsearch.cf sshd[10264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2-228-151-115.ip192.fastwebnet.it user=root 2020-04-30T15:10:42.961206abusebot-7.cloudsearch.cf sshd[10264]: Failed password for root from 2.228.151.115 port 43896 ssh2 2020-04-30T15:14:58.250876abusebot-7.cloudsearch.cf sshd[10631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2-228-151-115.ip192.fastwebnet.it user=root 2020-04-30T15:15:00.260181abusebot-7.cloudsearch.cf sshd[10631]: Failed password for root from 2.228.151.115 port 11391 ssh2 2020-04-30T15:19:10.501773abusebot-7.cloudsearch.cf sshd[10888]: Invalid user central from 2.228.151.115 port 20166 2020-04-30T15:19:10.511842abusebot-7.cloudsearch.cf sshd[10888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2-228-151-115.ip192.fastwebnet.it 2020-04-30T15:19:10.501773abusebot-7.cloudsearch.cf ...	2020-05-01 03:58:58
165.22.107.45	attack	2020-04-30T11:29:20.957307linuxbox-skyline sshd[74389]: Invalid user daniel from 165.22.107.45 port 47184 ...	2020-05-01 03:30:24
106.12.192.129	attackspambots	$f2bV_matches	2020-05-01 03:43:10
111.231.71.157	attackbots	Apr 30 15:51:41 meumeu sshd[14679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.71.157 Apr 30 15:51:43 meumeu sshd[14679]: Failed password for invalid user navarrete from 111.231.71.157 port 54586 ssh2 Apr 30 15:55:16 meumeu sshd[15130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.71.157 ...	2020-05-01 03:55:36
213.231.12.172	attackbots	Honeypot attack, port: 5555, PTR: 213.231.12.172.pool.breezein.net.	2020-05-01 03:47:15
218.161.74.100	attack	Port probing on unauthorized port 81	2020-05-01 03:29:53
120.92.78.188	attackbots	Invalid user upload1 from 120.92.78.188 port 42254	2020-05-01 04:05:38
138.197.89.212	attack	Apr 30 18:10:58 163-172-32-151 sshd[24141]: Invalid user maurice from 138.197.89.212 port 54052 ...	2020-05-01 03:34:22
221.226.28.82	attackbots	SSH Brute-Force Attack	2020-05-01 04:07:08
185.50.149.11	attack	'IP reached maximum auth failures for a one day block'	2020-05-01 03:59:33

最近上报的IP列表

106.12.147.216	79.139.18.109	75.192.1.170	85.255.75.229
120.239.94.253	160.5.235.102	116.55.70.133	84.216.238.135
159.100.100.115	155.241.36.148	12.123.48.175	94.189.215.13
255.207.11.24	196.26.2.12	81.195.113.33	190.171.54.66
173.23.198.148	2.89.27.247	145.182.111.148	15.191.143.92