142.93.99.15 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.93.99.114	attackbotsspam	Automatic report - Banned IP Access	2020-10-12 06:35:13
142.93.99.114	attackbots	142.93.99.114 - - [11/Oct/2020:11:02:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2731 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.114 - - [11/Oct/2020:11:02:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2802 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.114 - - [11/Oct/2020:11:02:41 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-11 22:45:21
142.93.99.114	attack	Automatic report - XMLRPC Attack	2020-10-11 14:41:32
142.93.99.114	attackspam	Automatic report - XMLRPC Attack	2020-10-11 08:04:01
142.93.99.114	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-10-08 05:12:12
142.93.99.114	attackbots	Automatic report - Banned IP Access	2020-10-07 21:35:16
142.93.99.114	attackspam	Oct 7 05:17:33 b-vps wordpress(gpfans.cz)[32076]: Authentication attempt for unknown user buchtic from 142.93.99.114 ...	2020-10-07 13:22:42
142.93.99.56	attack	142.93.99.56 - - [25/Sep/2020:03:17:12 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [25/Sep/2020:03:17:13 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [25/Sep/2020:03:17:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-25 10:08:11
142.93.99.56	attackspam	142.93.99.56 - - [31/Aug/2020:14:01:20 +0200] "POST /xmlrpc.php HTTP/1.1" 403 13511 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [31/Aug/2020:14:27:59 +0200] "POST /xmlrpc.php HTTP/1.1" 403 8487 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-01 04:56:20
142.93.99.56	attackspambots	142.93.99.56 - - [31/Aug/2020:07:49:26 +0100] "POST /wp-login.php HTTP/1.1" 200 1885 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [31/Aug/2020:07:49:27 +0100] "POST /wp-login.php HTTP/1.1" 200 1868 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [31/Aug/2020:07:49:27 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-31 15:00:36
142.93.99.56	attack	142.93.99.56 - - [29/Aug/2020:10:41:06 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1867 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [29/Aug/2020:10:41:07 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [29/Aug/2020:10:41:07 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-29 18:38:00
142.93.99.56	attack	MYH,DEF GET /wp-login.php	2020-08-15 14:22:39
142.93.99.56	attack	WordPress login Brute force / Web App Attack on client site.	2020-08-13 07:15:48
142.93.99.56	attackbots	142.93.99.56 - - [06/Aug/2020:07:18:46 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [06/Aug/2020:07:18:47 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [06/Aug/2020:07:18:47 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-06 19:40:55
142.93.99.56	attackspam	142.93.99.56 - - [30/Jul/2020:11:44:16 +0100] "POST /wp-login.php HTTP/1.1" 200 2345 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [30/Jul/2020:11:44:17 +0100] "POST /wp-login.php HTTP/1.1" 200 2350 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [30/Jul/2020:11:44:21 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-30 19:40:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.99.15
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9091
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.99.15.			IN	A

;; AUTHORITY SECTION:
.			202	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 17:25:28 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 15.99.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 15.99.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.83.78.82	attack	8545/tcp 8545/tcp 8545/tcp... [2020-01-10/02-07]69pkt,1pt.(tcp)	2020-02-08 08:16:26
162.243.128.37	attackbots	7199/tcp 1521/tcp 2375/tcp... [2020-02-03/07]6pkt,6pt.(tcp)	2020-02-08 08:14:35
190.56.229.42	attack	Feb 7 13:25:42 web1 sshd\[2640\]: Invalid user qfc from 190.56.229.42 Feb 7 13:25:42 web1 sshd\[2640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.56.229.42 Feb 7 13:25:44 web1 sshd\[2640\]: Failed password for invalid user qfc from 190.56.229.42 port 60632 ssh2 Feb 7 13:26:54 web1 sshd\[2743\]: Invalid user wmh from 190.56.229.42 Feb 7 13:26:54 web1 sshd\[2743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.56.229.42	2020-02-08 07:44:38
2001:41d0:2:c586::	attackbots	2001:41d0:2:c586:: - - [08/Feb/2020:01:38:11 +0300] "POST /wp-login.php HTTP/1.1" 200 2568 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-02-08 08:19:29
107.6.171.131	attackspam	2000/tcp 82/tcp 3389/tcp... [2019-12-16/2020-02-05]16pkt,14pt.(tcp)	2020-02-08 07:57:48
167.99.203.202	attack	Feb 8 00:48:17 debian-2gb-nbg1-2 kernel: \[3378538.422793\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=167.99.203.202 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=50927 PROTO=TCP SPT=51082 DPT=9324 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-08 08:07:59
88.5.167.211	attackspambots	" "	2020-02-08 07:39:16
222.186.42.155	attackspambots	Feb 8 01:08:58 amit sshd\[9120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root Feb 8 01:09:00 amit sshd\[9120\]: Failed password for root from 222.186.42.155 port 37501 ssh2 Feb 8 01:09:02 amit sshd\[9120\]: Failed password for root from 222.186.42.155 port 37501 ssh2 ...	2020-02-08 08:09:25
181.48.29.35	attack	(sshd) Failed SSH login from 181.48.29.35 (CO/Colombia/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 7 23:39:03 ubnt-55d23 sshd[11981]: Invalid user uxn from 181.48.29.35 port 54468 Feb 7 23:39:05 ubnt-55d23 sshd[11981]: Failed password for invalid user uxn from 181.48.29.35 port 54468 ssh2	2020-02-08 07:38:50
192.241.238.245	attack	7001/tcp 445/tcp 5432/tcp... [2020-02-02/07]8pkt,8pt.(tcp)	2020-02-08 08:11:43
183.245.52.224	attack	Feb 8 00:39:08 cvbnet sshd[30531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.245.52.224 Feb 8 00:39:10 cvbnet sshd[30531]: Failed password for invalid user dmf from 183.245.52.224 port 55460 ssh2 ...	2020-02-08 08:02:52
180.76.167.125	attackspambots	DATE:2020-02-07 23:37:32, IP:180.76.167.125, PORT:6379 REDIS brute force auth on honeypot server (epe-honey1-hq)	2020-02-08 07:52:22
81.22.45.80	attack	3388/tcp 3377/tcp 3385/tcp... [2019-12-09/2020-02-07]121pkt,33pt.(tcp)	2020-02-08 08:02:22
172.245.106.19	attackbots	Feb 7 23:42:57 sigma sshd\[25963\]: Invalid user eo from 172.245.106.19Feb 7 23:42:59 sigma sshd\[25963\]: Failed password for invalid user eo from 172.245.106.19 port 60953 ssh2 ...	2020-02-08 08:15:14
51.91.199.233	attackbots	08.02.2020 00:31:39 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2020-02-08 07:39:42

Recently Reported IPs

95.90.204.73	123.248.86.86	46.219.243.245	223.88.208.170
141.95.121.5	196.202.63.22	216.97.191.41	184.174.66.86
42.230.140.94	103.11.106.38	50.28.78.115	104.255.170.69
171.251.237.219	192.162.179.144	45.56.99.74	187.167.205.225
79.131.116.255	182.59.176.105	58.11.44.75	193.202.13.83