142.93.204.247

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.93.204.221	attackspam	Automatic report - Banned IP Access	2020-07-27 23:32:54
142.93.204.9	attackspambots	Port scan: Attack repeated for 24 hours	2020-07-24 17:32:43
142.93.204.221	attack	142.93.204.221 - - [11/Jul/2020:09:40:03 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [11/Jul/2020:09:40:15 +0100] "POST /wp-login.php HTTP/1.1" 200 1890 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [11/Jul/2020:09:40:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1926 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-11 17:00:30
142.93.204.221	attackbots	Automatic report - WordPress Brute Force	2020-07-10 18:11:55
142.93.204.221	attackspambots	WordPress login Brute force / Web App Attack on client site.	2020-07-06 17:31:16
142.93.204.221	attack	142.93.204.221 - - [26/Jun/2020:10:15:14 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Jun/2020:10:15:15 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Jun/2020:10:15:21 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-26 17:33:37
142.93.204.221	attack	WordPress (CMS) attack attempts. Date: 2020 Jun 01. 05:25:38 Source IP: 142.93.204.221 Portion of the log(s): 142.93.204.221 - [01/Jun/2020:05:25:20 +0200] "GET /wp-login.php HTTP/1.1" 200 1962 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - [01/Jun/2020:05:25:25 +0200] "POST /wp-login.php HTTP/1.1" 200 2411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - [01/Jun/2020:05:25:31 +0200] "GET /wp-login.php HTTP/1.1" 200 1962 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - [01/Jun/2020:05:25:32 +0200] "POST /wp-login.php HTTP/1.1" 200 2414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - [01/Jun/2020:05:25:32 +0200] "POST /xmlrpc.php HTTP/1.1" 404 118 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-01 13:07:34
142.93.204.221	attackbots	Automatic report - XMLRPC Attack	2020-05-26 10:05:16
142.93.204.221	attackspambots	xmlrpc attack	2020-05-23 23:23:08
142.93.204.221	attackbotsspam	wp-login.php	2020-05-20 03:58:29
142.93.204.221	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-04-18 20:56:56
142.93.204.89	attackspam	Apr 3 14:41:45 XXX sshd[39784]: Invalid user ubnt from 142.93.204.89 port 42676	2020-04-03 22:35:37
142.93.204.89	attackspam	SSH Server BruteForce Attack	2020-04-03 14:40:28
142.93.204.221	attack	142.93.204.221 - - [26/Mar/2020:22:19:52 +0100] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Mar/2020:22:19:52 +0100] "POST /wp-login.php HTTP/1.1" 200 2297 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Mar/2020:22:19:53 +0100] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Mar/2020:22:19:53 +0100] "POST /wp-login.php HTTP/1.1" 200 2272 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Mar/2020:22:19:58 +0100] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Mar/2020:22:19:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2272 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-27 06:12:58
142.93.204.221	attackspam	Unauthorized connection attempt detected, IP banned.	2020-03-25 08:40:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.204.247
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20330
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.204.247.			IN	A

;; AUTHORITY SECTION:
.			141	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 15:07:25 CST 2022
;; MSG SIZE  rcvd: 107

Host info

247.204.93.142.in-addr.arpa domain name pointer smyrna.4880008888.ptc.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
247.204.93.142.in-addr.arpa	name = smyrna.4880008888.ptc.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
34.75.43.215	attack	(PERMBLOCK) 34.75.43.215 (US/United States/215.43.75.34.bc.googleusercontent.com) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:	2020-08-27 18:44:10
194.87.138.103	attackbotsspam	SSH Scan	2020-08-27 18:37:20
119.148.8.34	attack	Port scan: Attack repeated for 24 hours	2020-08-27 18:20:46
194.87.139.159	attackbotsspam	DATE:2020-08-27 08:50:46, IP:194.87.139.159, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-08-27 18:27:25
124.106.77.49	attackspam	20/8/26@23:45:07: FAIL: Alarm-Intrusion address from=124.106.77.49 ...	2020-08-27 18:06:53
114.4.240.54	attackspam	Unauthorised access (Aug 27) SRC=114.4.240.54 LEN=52 TTL=115 ID=32168 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-27 18:02:12
96.50.224.169	attackbotsspam	2020-08-26 22:43:22.915048-0500 localhost sshd[76868]: Failed password for invalid user pi from 96.50.224.169 port 44440 ssh2	2020-08-27 18:11:03
51.83.76.25	attackspam	SSH login attempts.	2020-08-27 18:28:03
103.217.89.232	attackbots	Portscan detected	2020-08-27 18:40:54
49.146.36.145	attack	20/8/26@23:45:02: FAIL: Alarm-Network address from=49.146.36.145 20/8/26@23:45:02: FAIL: Alarm-Network address from=49.146.36.145 ...	2020-08-27 18:17:21
8.24.110.196	attackbots	Brute forcing email accounts	2020-08-27 18:45:58
40.113.232.40	attack	Aug x@x Aug x@x Aug x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=40.113.232.40	2020-08-27 18:31:41
94.25.170.235	attackspam	Unauthorized connection attempt from IP address 94.25.170.235 on Port 445(SMB)	2020-08-27 18:11:31
185.114.138.174	attackspam	SMB login attempts with user administrator.	2020-08-27 17:59:46
72.223.168.8	attackspambots	#2505 - [72.223.168.82] Closing connection (IP still banned) #2505 - [72.223.168.82] Closing connection (IP still banned) #2505 - [72.223.168.82] Closing connection (IP still banned) #2505 - [72.223.168.82] Closing connection (IP still banned) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=72.223.168.8	2020-08-27 18:02:38

Recently Reported IPs

142.93.113.83	142.93.220.199	142.93.4.32	143.110.226.172
143.110.188.238	143.198.102.159	143.198.144.159	143.198.101.185
143.110.151.117	142.93.45.226	143.198.133.189	143.198.149.245
143.198.221.208	143.198.109.155	143.198.33.129	143.198.35.72
143.198.176.79	143.198.33.138	143.198.39.151	143.198.35.110