JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.93.221.157

142.93.221.157 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 53%: ?

53%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇮🇳 India
City	Bashettihalli, Karnataka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.93.221.157

Whois 142.93.221.157

IP Abuse Reports for 142.93.221.157:

This IP address has been reported a total of 43 times from 23 distinct sources. 142.93.221.157 was first reported on March 13th 2021, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-04 13:08:26 (4 hours ago)	(mod_security) mod_security (id:225170) triggered by 142.93.221.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 142.93.221.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 09:08:19.000186 2026] [security2:error] [pid 6521:tid 6521] [client 142.93.221.157:41338] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bzbdesigns.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bzbdesigns.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aiF4wmIQKRZyAq9wtKWXVgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xxkodedxx	2026-06-04 09:21:10 (8 hours ago)	[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost) Trigger: 2× edge-block in 10 ... show more [Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost) Trigger: 2× edge-block in 10m window. Origin: IN / AS14061 DigitalOcean, LLC Active: 09:20:21→09:20:23 UTC Volume: 2 HTTP req Probed: /xmlrpc.php, /wp-json/wp/v2/users/me Status mix: 444×2 Vhost fishing: cards.zvxlabs.com UA: "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Auto-banned 30d. zorvexus-banner. show less	Bad Web Bot Web App Attack
Anonymous	2026-06-04 08:57:50 (8 hours ago)	WordPress Brute Force	Brute-Force
Anonymous	2026-06-04 08:51:05 (8 hours ago)	Bot / scanning and/or hacking attempts: GET /wp-login.php HTTP/2.0, [2/2] done, POST /wp-login.php H ... show more Bot / scanning and/or hacking attempts: GET /wp-login.php HTTP/2.0, [2/2] done, POST /wp-login.php HTTP/2.0 show less	Hacking Web App Attack
🇨🇿 ptlab	2026-06-04 08:45:06 (8 hours ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 23:35:25 (17 hours ago)	(mod_security) mod_security (id:225170) triggered by 142.93.221.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 142.93.221.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 19:35:21.303577 2026] [security2:error] [pid 17290:tid 17290] [client 142.93.221.157:37826] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|karishma.byles.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "karishma.byles.net"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aiC6OS74NtxW2H9Gm_MgGAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 14:40:17 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 142.93.221.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 142.93.221.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 10:40:12.534762 2026] [security2:error] [pid 10502:tid 10502] [client 142.93.221.157:38106] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|josephshv.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "josephshv.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aiA8zC4DObB7G3TuCSxWJwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 05:22:26 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 142.93.221.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 142.93.221.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 01:22:21.505805 2026] [security2:error] [pid 28337:tid 28337] [client 142.93.221.157:47454] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|denroydannursery.edgeimprov.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "denroydannursery.edgeimprov.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ah-6Da7RL_J1SOqZV1LTwgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-06-02 17:30:03 (2 days ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 21:03:00 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 142.93.221.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 142.93.221.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 17:02:56.970301 2026] [security2:error] [pid 11679:tid 11679] [client 142.93.221.157:58714] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|talentstar2025.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "talentstar2025.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ah3zgIawNAyvBTu7PL6IHAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 lostswordfish.com	2026-06-01 16:00:06 (3 days ago)	Wordfence waf block on wvrsol	Web App Attack
🇫🇷 masterguru	2026-06-01 15:10:46 (3 days ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 142.93.221.157 (IN/India/-): 1 in the last 36 ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 142.93.221.157 (IN/India/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-06-01 14:47:05 (3 days ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 142.93.221.157 (IN/India/-): 1 in the last 36 ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 142.93.221.157 (IN/India/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇸🇬 Samuel K	2021-03-16 13:00:06 (5 years ago)	Web scan/attack	Port Scan Web App Attack
🇵🇱 ChillScanner	2021-03-16 11:39:10 (5 years ago)	2 probe(s) @ TCP(9990)	Port Scan

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.21.214.187

🇹🇷 213.14.61.157

🇮🇶 212.237.122.186

🇹🇭 202.183.141.133

🇹🇳 196.184.140.55

🇫🇮 147.185.133.99

🇺🇸 47.251.68.60

🇧🇷 45.205.1.243

🇦🇷 45.162.21.242

🇳🇱 45.148.10.152

🇬🇧 213.166.84.35

🇦🇷 200.73.131.100

🇧🇷 177.8.249.29

🇺🇸 164.90.156.35

🇻🇳 103.109.187.12

🇮🇳 103.30.81.138

🇷🇺 94.102.28.45

🇪🇸 93.176.158.24

🇺🇸 66.57.151.235

🇸🇦 46.153.52.70