142.93.204.59 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.93.204.221	attackspam	Automatic report - Banned IP Access	2020-07-27 23:32:54
142.93.204.9	attackspambots	Port scan: Attack repeated for 24 hours	2020-07-24 17:32:43
142.93.204.221	attack	142.93.204.221 - - [11/Jul/2020:09:40:03 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [11/Jul/2020:09:40:15 +0100] "POST /wp-login.php HTTP/1.1" 200 1890 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [11/Jul/2020:09:40:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1926 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-11 17:00:30
142.93.204.221	attackbots	Automatic report - WordPress Brute Force	2020-07-10 18:11:55
142.93.204.221	attackspambots	WordPress login Brute force / Web App Attack on client site.	2020-07-06 17:31:16
142.93.204.221	attack	142.93.204.221 - - [26/Jun/2020:10:15:14 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Jun/2020:10:15:15 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Jun/2020:10:15:21 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-26 17:33:37
142.93.204.221	attack	WordPress (CMS) attack attempts. Date: 2020 Jun 01. 05:25:38 Source IP: 142.93.204.221 Portion of the log(s): 142.93.204.221 - [01/Jun/2020:05:25:20 +0200] "GET /wp-login.php HTTP/1.1" 200 1962 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - [01/Jun/2020:05:25:25 +0200] "POST /wp-login.php HTTP/1.1" 200 2411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - [01/Jun/2020:05:25:31 +0200] "GET /wp-login.php HTTP/1.1" 200 1962 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - [01/Jun/2020:05:25:32 +0200] "POST /wp-login.php HTTP/1.1" 200 2414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - [01/Jun/2020:05:25:32 +0200] "POST /xmlrpc.php HTTP/1.1" 404 118 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-01 13:07:34
142.93.204.221	attackbots	Automatic report - XMLRPC Attack	2020-05-26 10:05:16
142.93.204.221	attackspambots	xmlrpc attack	2020-05-23 23:23:08
142.93.204.221	attackbotsspam	wp-login.php	2020-05-20 03:58:29
142.93.204.221	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-04-18 20:56:56
142.93.204.89	attackspam	Apr 3 14:41:45 XXX sshd[39784]: Invalid user ubnt from 142.93.204.89 port 42676	2020-04-03 22:35:37
142.93.204.89	attackspam	SSH Server BruteForce Attack	2020-04-03 14:40:28
142.93.204.221	attack	142.93.204.221 - - [26/Mar/2020:22:19:52 +0100] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Mar/2020:22:19:52 +0100] "POST /wp-login.php HTTP/1.1" 200 2297 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Mar/2020:22:19:53 +0100] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Mar/2020:22:19:53 +0100] "POST /wp-login.php HTTP/1.1" 200 2272 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Mar/2020:22:19:58 +0100] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.204.221 - - [26/Mar/2020:22:19:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2272 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-27 06:12:58
142.93.204.221	attackspam	Unauthorized connection attempt detected, IP banned.	2020-03-25 08:40:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.204.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42162
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.204.59.			IN	A

;; AUTHORITY SECTION:
.			335	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022013101 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 01 04:31:08 CST 2022
;; MSG SIZE  rcvd: 106

Host info

59.204.93.142.in-addr.arpa domain name pointer bastion.tsl.io.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
59.204.93.142.in-addr.arpa	name = bastion.tsl.io.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.36.81.86	attack	Rude login attack (7 tries in 1d)	2020-02-11 17:58:11
115.124.65.62	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-11 18:35:38
186.211.16.250	attackspam	1581396715 - 02/11/2020 05:51:55 Host: 186.211.16.250/186.211.16.250 Port: 445 TCP Blocked	2020-02-11 18:02:19
188.18.227.139	attackbots	Unauthorized connection attempt from IP address 188.18.227.139 on Port 445(SMB)	2020-02-11 18:20:03
102.22.217.166	attackspambots	2020-02-1105:50:281j1NVD-0007eU-Ou\<=verena@rs-solution.chH=\(localhost\)[180.183.128.222]:42615P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2560id=5055E3B0BB6F41F22E2B62DA2E462FD0@rs-solution.chT="\;\)beveryhappytoreceiveyouranswer\	2020-02-11 18:18:58
167.99.228.232	attackspam	Automatic report - XMLRPC Attack	2020-02-11 18:16:35
128.199.253.133	attackbots	Automatic report - Banned IP Access	2020-02-11 18:08:11
178.73.215.171	attack	Unauthorized connection attempt detected from IP address 178.73.215.171 to port 102	2020-02-11 18:16:01
87.225.90.201	attackbots	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-11 17:56:06
192.241.135.34	attackbotsspam	SSH Bruteforce attempt	2020-02-11 18:13:45
113.172.10.18	attackbots	2020-02-1105:50:281j1NVD-0007eU-Ou\<=verena@rs-solution.chH=\(localhost\)[180.183.128.222]:42615P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2560id=5055E3B0BB6F41F22E2B62DA2E462FD0@rs-solution.chT="\;\)beveryhappytoreceiveyouranswer\	2020-02-11 18:24:34
141.98.10.137	attack	Rude login attack (5 tries in 1d)	2020-02-11 18:00:14
58.69.175.20	attackspam	Feb 11 08:08:24 web8 sshd\[31276\]: Invalid user qwz from 58.69.175.20 Feb 11 08:08:24 web8 sshd\[31276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.69.175.20 Feb 11 08:08:26 web8 sshd\[31276\]: Failed password for invalid user qwz from 58.69.175.20 port 45448 ssh2 Feb 11 08:14:03 web8 sshd\[1610\]: Invalid user fpd from 58.69.175.20 Feb 11 08:14:03 web8 sshd\[1610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.69.175.20	2020-02-11 18:01:18
91.195.240.126	spam	Used for SPAM, PHISHING and SCAM for SEXE on STOLLEN list we don't know, as usual with LIERS and ROBERS !	2020-02-11 18:16:55
116.107.126.108	attack	1581396708 - 02/11/2020 05:51:48 Host: 116.107.126.108/116.107.126.108 Port: 445 TCP Blocked	2020-02-11 18:09:07

Recently Reported IPs

205.47.235.38	248.118.217.247	56.172.67.75	184.47.218.233
145.150.165.185	80.211.183.134	229.235.72.78	66.159.76.13
208.53.137.209	189.6.151.96	164.242.245.33	64.218.38.18
191.12.48.229	114.75.252.234	72.35.214.38	221.80.245.131
242.221.18.198	231.8.230.240	149.98.161.13	226.252.245.21