142.105.253.156

Basic Info

City: Saranac Lake

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.105.253.156
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25221
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.105.253.156.		IN	A

;; AUTHORITY SECTION:
.			525	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022120700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 08 01:10:52 CST 2022
;; MSG SIZE  rcvd: 108

Host info

156.253.105.142.in-addr.arpa domain name pointer cpe-142-105-253-156.twcny.res.rr.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
156.253.105.142.in-addr.arpa	name = cpe-142-105-253-156.twcny.res.rr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
197.246.41.99	attackbots	port scan and connect, tcp 23 (telnet)	2020-02-22 09:25:12
23.92.225.228	attack	Feb 21 19:07:22 php1 sshd\[19614\]: Invalid user ocadmin from 23.92.225.228 Feb 21 19:07:22 php1 sshd\[19614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.92.225.228 Feb 21 19:07:25 php1 sshd\[19614\]: Failed password for invalid user ocadmin from 23.92.225.228 port 46585 ssh2 Feb 21 19:10:37 php1 sshd\[19896\]: Invalid user store from 23.92.225.228 Feb 21 19:10:37 php1 sshd\[19896\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.92.225.228	2020-02-22 13:15:52
117.95.228.69	attackspam	Bad bot requested remote resources	2020-02-22 09:38:01
39.68.3.58	attack	Automatic report - SSH Brute-Force Attack	2020-02-22 13:09:20
75.180.20.122	attackbots	SSH Brute-Force attacks	2020-02-22 09:27:34
218.92.0.171	attackspam	Feb 21 18:02:00 debian sshd[13450]: Unable to negotiate with 218.92.0.171 port 41175: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Feb 21 20:20:58 debian sshd[19677]: Unable to negotiate with 218.92.0.171 port 16938: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-02-22 09:26:26
112.85.42.173	attack	Feb 22 01:55:07 firewall sshd[28967]: Failed password for root from 112.85.42.173 port 63410 ssh2 Feb 22 01:55:21 firewall sshd[28967]: error: maximum authentication attempts exceeded for root from 112.85.42.173 port 63410 ssh2 [preauth] Feb 22 01:55:21 firewall sshd[28967]: Disconnecting: Too many authentication failures [preauth] ...	2020-02-22 13:03:23
46.249.123.130	attackspam	Feb 22 05:54:55 h2177944 kernel: \[5545131.027565\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.249.123.130 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=34608 DF PROTO=TCP SPT=57995 DPT=441 WINDOW=14600 RES=0x00 SYN URGP=0 Feb 22 05:54:55 h2177944 kernel: \[5545131.027579\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.249.123.130 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=34608 DF PROTO=TCP SPT=57995 DPT=441 WINDOW=14600 RES=0x00 SYN URGP=0 Feb 22 05:54:56 h2177944 kernel: \[5545132.021355\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.249.123.130 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=34609 DF PROTO=TCP SPT=57995 DPT=441 WINDOW=14600 RES=0x00 SYN URGP=0 Feb 22 05:54:56 h2177944 kernel: \[5545132.021369\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.249.123.130 DST=85.214.117.9 LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=34609 DF PROTO=TCP SPT=57995 DPT=441 WINDOW=14600 RES=0x00 SYN URGP=0 Feb 22 05:54:58 h2177944 kernel: \[5545134.022104\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.249.123.130 DST	2020-02-22 13:18:28
222.186.175.183	attack	2020-02-22T05:15:06.581271shield sshd\[16706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root 2020-02-22T05:15:08.212156shield sshd\[16706\]: Failed password for root from 222.186.175.183 port 24530 ssh2 2020-02-22T05:15:11.491359shield sshd\[16706\]: Failed password for root from 222.186.175.183 port 24530 ssh2 2020-02-22T05:15:15.124669shield sshd\[16706\]: Failed password for root from 222.186.175.183 port 24530 ssh2 2020-02-22T05:15:19.818663shield sshd\[16706\]: Failed password for root from 222.186.175.183 port 24530 ssh2	2020-02-22 13:20:07
85.117.120.188	attackspambots	2020-02-22 05:55:16 H=(oqbygcie.com) [85.117.120.188] sender verify fail for : Unrouteable address 2020-02-22 05:55:16 H=(oqbygcie.com) [85.117.120.188] F= rejected RCPT : Sender verify failed ...	2020-02-22 13:05:33
203.177.1.108	attackspam	Feb 22 05:54:48 ns381471 sshd[27801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.177.1.108 Feb 22 05:54:50 ns381471 sshd[27801]: Failed password for invalid user wyjeong from 203.177.1.108 port 42952 ssh2	2020-02-22 13:21:39
121.229.26.104	attackspambots	DATE:2020-02-22 05:55:14, IP:121.229.26.104, PORT:ssh SSH brute force auth (docker-dc)	2020-02-22 13:06:46
222.186.175.154	attackspam	Feb 22 06:10:43 SilenceServices sshd[18060]: Failed password for root from 222.186.175.154 port 30160 ssh2 Feb 22 06:10:46 SilenceServices sshd[18060]: Failed password for root from 222.186.175.154 port 30160 ssh2 Feb 22 06:10:49 SilenceServices sshd[18060]: Failed password for root from 222.186.175.154 port 30160 ssh2 Feb 22 06:10:56 SilenceServices sshd[18060]: error: maximum authentication attempts exceeded for root from 222.186.175.154 port 30160 ssh2 [preauth]	2020-02-22 13:22:22
172.104.109.88	attackbotsspam	" "	2020-02-22 09:24:13
213.147.113.131	attackspam	firewall-block, port(s): 3460/tcp, 3476/tcp, 3491/tcp, 3493/tcp, 3499/tcp, 3509/tcp, 3511/tcp, 3533/tcp, 3539/tcp	2020-02-22 13:11:41

Recently Reported IPs

140.77.196.194	140.182.29.219	134.237.86.130	13.88.204.134
13.191.184.194	129.63.71.219	129.233.61.142	125.252.157.139
124.3.62.13	123.166.166.84	122.92.160.141	10.159.189.239
119.238.125.93	119.0.205.82	117.113.226.121	116.84.65.81
116.243.224.222	153.157.220.10	43.152.137.32	115.177.5.67