142.93.99.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.93.99.114	attackbotsspam	Automatic report - Banned IP Access	2020-10-12 06:35:13
142.93.99.114	attackbots	142.93.99.114 - - [11/Oct/2020:11:02:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2731 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.114 - - [11/Oct/2020:11:02:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2802 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.114 - - [11/Oct/2020:11:02:41 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-11 22:45:21
142.93.99.114	attack	Automatic report - XMLRPC Attack	2020-10-11 14:41:32
142.93.99.114	attackspam	Automatic report - XMLRPC Attack	2020-10-11 08:04:01
142.93.99.114	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-10-08 05:12:12
142.93.99.114	attackbots	Automatic report - Banned IP Access	2020-10-07 21:35:16
142.93.99.114	attackspam	Oct 7 05:17:33 b-vps wordpress(gpfans.cz)[32076]: Authentication attempt for unknown user buchtic from 142.93.99.114 ...	2020-10-07 13:22:42
142.93.99.56	attack	142.93.99.56 - - [25/Sep/2020:03:17:12 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [25/Sep/2020:03:17:13 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [25/Sep/2020:03:17:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-25 10:08:11
142.93.99.56	attackspam	142.93.99.56 - - [31/Aug/2020:14:01:20 +0200] "POST /xmlrpc.php HTTP/1.1" 403 13511 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [31/Aug/2020:14:27:59 +0200] "POST /xmlrpc.php HTTP/1.1" 403 8487 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-01 04:56:20
142.93.99.56	attackspambots	142.93.99.56 - - [31/Aug/2020:07:49:26 +0100] "POST /wp-login.php HTTP/1.1" 200 1885 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [31/Aug/2020:07:49:27 +0100] "POST /wp-login.php HTTP/1.1" 200 1868 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [31/Aug/2020:07:49:27 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-31 15:00:36
142.93.99.56	attack	142.93.99.56 - - [29/Aug/2020:10:41:06 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1867 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [29/Aug/2020:10:41:07 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [29/Aug/2020:10:41:07 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-29 18:38:00
142.93.99.56	attack	MYH,DEF GET /wp-login.php	2020-08-15 14:22:39
142.93.99.56	attack	WordPress login Brute force / Web App Attack on client site.	2020-08-13 07:15:48
142.93.99.56	attackbots	142.93.99.56 - - [06/Aug/2020:07:18:46 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [06/Aug/2020:07:18:47 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [06/Aug/2020:07:18:47 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-06 19:40:55
142.93.99.56	attackspam	142.93.99.56 - - [30/Jul/2020:11:44:16 +0100] "POST /wp-login.php HTTP/1.1" 200 2345 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [30/Jul/2020:11:44:17 +0100] "POST /wp-login.php HTTP/1.1" 200 2350 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.99.56 - - [30/Jul/2020:11:44:21 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-30 19:40:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.99.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23563
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.99.85.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 139 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 04:22:24 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 85.99.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.99.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
40.65.136.31	attackbots	Aug 26 04:53:01 shivevps sshd[4681]: Bad protocol version identification '\024' from 40.65.136.31 port 57672 Aug 26 04:53:08 shivevps sshd[5015]: Bad protocol version identification '\024' from 40.65.136.31 port 58214 Aug 26 04:54:44 shivevps sshd[7829]: Bad protocol version identification '\024' from 40.65.136.31 port 36968 ...	2020-08-26 13:16:02
180.76.174.197	attackspambots	Aug 26 10:47:35 dhoomketu sshd[2670376]: Failed password for root from 180.76.174.197 port 44698 ssh2 Aug 26 10:51:57 dhoomketu sshd[2670441]: Invalid user eswar from 180.76.174.197 port 37990 Aug 26 10:51:57 dhoomketu sshd[2670441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.174.197 Aug 26 10:51:57 dhoomketu sshd[2670441]: Invalid user eswar from 180.76.174.197 port 37990 Aug 26 10:51:59 dhoomketu sshd[2670441]: Failed password for invalid user eswar from 180.76.174.197 port 37990 ssh2 ...	2020-08-26 13:45:57
134.175.32.95	attack	Aug 26 07:14:25 eventyay sshd[8235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.32.95 Aug 26 07:14:27 eventyay sshd[8235]: Failed password for invalid user jacob from 134.175.32.95 port 37416 ssh2 Aug 26 07:20:01 eventyay sshd[8360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.32.95 ...	2020-08-26 13:49:44
190.64.64.77	attackspambots	Aug 26 06:14:41 rocket sshd[9819]: Failed password for root from 190.64.64.77 port 19656 ssh2 Aug 26 06:18:33 rocket sshd[10990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.64.64.77 ...	2020-08-26 13:46:42
182.61.65.209	attack	Invalid user postgre from 182.61.65.209 port 46486	2020-08-26 13:53:54
60.169.192.10	attack	Aug 26 04:52:57 shivevps sshd[4162]: Bad protocol version identification '\024' from 60.169.192.10 port 54654 Aug 26 04:52:58 shivevps sshd[4219]: Bad protocol version identification '\024' from 60.169.192.10 port 54824 Aug 26 04:53:06 shivevps sshd[4861]: Bad protocol version identification '\024' from 60.169.192.10 port 57032 ...	2020-08-26 13:54:32
190.146.13.180	attackbots	Aug 25 08:31:46 serwer sshd\[19711\]: Invalid user st2 from 190.146.13.180 port 48523 Aug 25 08:31:46 serwer sshd\[19711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.146.13.180 Aug 25 08:31:48 serwer sshd\[19711\]: Failed password for invalid user st2 from 190.146.13.180 port 48523 ssh2 ...	2020-08-26 13:24:24
200.204.174.163	attack	Failed password for invalid user deployer from 200.204.174.163 port 16365 ssh2	2020-08-26 13:26:43
51.15.121.87	attackspam	Aug 26 04:52:52 shivevps sshd[3802]: Bad protocol version identification '\024' from 51.15.121.87 port 49864 Aug 26 04:52:53 shivevps sshd[3905]: Bad protocol version identification '\024' from 51.15.121.87 port 50320 Aug 26 04:53:09 shivevps sshd[5118]: Bad protocol version identification '\024' from 51.15.121.87 port 60870 ...	2020-08-26 13:43:45
177.22.31.145	attack	Aug 26 04:52:55 shivevps sshd[4071]: Bad protocol version identification '\024' from 177.22.31.145 port 56755 Aug 26 04:53:08 shivevps sshd[5013]: Bad protocol version identification '\024' from 177.22.31.145 port 57579 Aug 26 04:54:45 shivevps sshd[7844]: Bad protocol version identification '\024' from 177.22.31.145 port 36248 ...	2020-08-26 13:12:13
49.88.112.76	attackbotsspam	Aug 26 04:48:24 email sshd\[17523\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.76 user=root Aug 26 04:48:26 email sshd\[17523\]: Failed password for root from 49.88.112.76 port 46235 ssh2 Aug 26 04:51:45 email sshd\[18065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.76 user=root Aug 26 04:51:47 email sshd\[18065\]: Failed password for root from 49.88.112.76 port 34554 ssh2 Aug 26 04:51:50 email sshd\[18065\]: Failed password for root from 49.88.112.76 port 34554 ssh2 ...	2020-08-26 13:09:20
93.39.116.254	attackspambots	Aug 25 21:39:29 pixelmemory sshd[464255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.39.116.254 Aug 25 21:39:29 pixelmemory sshd[464255]: Invalid user useradmin from 93.39.116.254 port 40039 Aug 25 21:39:30 pixelmemory sshd[464255]: Failed password for invalid user useradmin from 93.39.116.254 port 40039 ssh2 Aug 25 21:42:03 pixelmemory sshd[464844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.39.116.254 user=root Aug 25 21:42:05 pixelmemory sshd[464844]: Failed password for root from 93.39.116.254 port 35352 ssh2 ...	2020-08-26 13:19:57
78.37.94.172	attack	Aug 26 04:52:53 shivevps sshd[3866]: Bad protocol version identification '\024' from 78.37.94.172 port 47901 Aug 26 04:53:06 shivevps sshd[4947]: Bad protocol version identification '\024' from 78.37.94.172 port 48520 Aug 26 04:53:09 shivevps sshd[5083]: Bad protocol version identification '\024' from 78.37.94.172 port 48595 ...	2020-08-26 13:44:58
51.15.131.72	attackbotsspam	Aug 26 04:52:52 shivevps sshd[3798]: Bad protocol version identification '\024' from 51.15.131.72 port 55246 Aug 26 04:52:54 shivevps sshd[3968]: Bad protocol version identification '\024' from 51.15.131.72 port 55972 Aug 26 04:53:09 shivevps sshd[5102]: Bad protocol version identification '\024' from 51.15.131.72 port 38708 ...	2020-08-26 13:43:20
45.230.202.119	attack	Automatic report - Port Scan Attack	2020-08-26 13:04:50

Recently Reported IPs

142.93.99.152	143.198.128.71	143.198.111.230	143.198.125.77
143.198.130.93	143.198.115.163	143.198.129.198	143.198.121.253
143.198.112.112	143.198.112.142	143.198.13.243	143.198.131.139
143.198.129.58	143.198.131.64	143.198.133.128	143.198.134.167
143.198.134.156	143.198.138.82	143.198.140.188	143.198.137.104