142.11.253.132

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Hostwinds LLC.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	142.11.253.132 has been banned for [spam] ...	2020-07-28 23:04:44

Comments on same subnet:

IP	Type	Details	Datetime
142.11.253.29	attackbotsspam	DATE:2019-08-25 20:47:26, IP:142.11.253.29, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-08-26 07:03:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.11.253.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42014
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.11.253.132.			IN	A

;; AUTHORITY SECTION:
.			242	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072800 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 28 23:04:37 CST 2020
;; MSG SIZE  rcvd: 118

Host info

132.253.11.142.in-addr.arpa domain name pointer client-142-11-253-132.hostwindsdns.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
132.253.11.142.in-addr.arpa	name = client-142-11-253-132.hostwindsdns.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.232.163.91	attackspam	Dec 14 23:20:51 server sshd\[7594\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.232.163.91 user=root Dec 14 23:20:53 server sshd\[7594\]: Failed password for root from 124.232.163.91 port 48422 ssh2 Dec 14 23:46:17 server sshd\[14802\]: Invalid user maggie123456. from 124.232.163.91 Dec 14 23:46:17 server sshd\[14802\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.232.163.91 Dec 14 23:46:19 server sshd\[14802\]: Failed password for invalid user maggie123456. from 124.232.163.91 port 34334 ssh2 ...	2019-12-15 05:28:49
1.165.111.191	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 14-12-2019 14:40:08.	2019-12-15 05:42:09
141.212.123.195	attackbots	firewall-block, port(s): 7/tcp	2019-12-15 05:46:08
27.115.115.218	attack	Dec 14 17:43:09 yesfletchmain sshd\[16740\]: Invalid user admin from 27.115.115.218 port 46624 Dec 14 17:43:09 yesfletchmain sshd\[16740\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.115.115.218 Dec 14 17:43:11 yesfletchmain sshd\[16740\]: Failed password for invalid user admin from 27.115.115.218 port 46624 ssh2 Dec 14 17:48:38 yesfletchmain sshd\[16853\]: Invalid user guest from 27.115.115.218 port 33054 Dec 14 17:48:38 yesfletchmain sshd\[16853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.115.115.218 ...	2019-12-15 05:41:29
51.254.129.128	attackspambots	Invalid user gilberta from 51.254.129.128 port 56128	2019-12-15 05:30:36
218.92.0.179	attackbotsspam	Dec 14 22:05:53 ns381471 sshd[21557]: Failed password for root from 218.92.0.179 port 22266 ssh2 Dec 14 22:05:56 ns381471 sshd[21557]: Failed password for root from 218.92.0.179 port 22266 ssh2	2019-12-15 05:17:43
5.39.82.197	attackbotsspam	Dec 14 21:07:07 localhost sshd\[78977\]: Invalid user cliente1 from 5.39.82.197 port 55972 Dec 14 21:07:07 localhost sshd\[78977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.82.197 Dec 14 21:07:09 localhost sshd\[78977\]: Failed password for invalid user cliente1 from 5.39.82.197 port 55972 ssh2 Dec 14 21:20:39 localhost sshd\[79403\]: Invalid user squid from 5.39.82.197 port 34148 Dec 14 21:20:39 localhost sshd\[79403\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.82.197 ...	2019-12-15 05:26:13
112.134.160.106	attackbots	Port 1433 Scan	2019-12-15 05:38:30
115.52.207.141	attack	firewall-block, port(s): 5060/udp	2019-12-15 05:47:27
117.57.23.214	attack	SSH invalid-user multiple login try	2019-12-15 05:22:33
104.237.255.85	attackspam	RDP Bruteforce	2019-12-15 05:23:03
45.79.168.138	attack	Dec 14 21:10:26 debian-2gb-vpn-nbg1-1 kernel: [725400.323383] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=45.79.168.138 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=55211 PROTO=TCP SPT=50856 DPT=53 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-15 05:50:16
41.232.88.109	attack	$f2bV_matches	2019-12-15 05:25:49
110.92.164.229	attackbots	firewall-block, port(s): 81/tcp	2019-12-15 05:34:13
68.183.86.76	attack	Portscan or hack attempt detected by psad/fwsnort	2019-12-15 05:44:37

Recently Reported IPs

206.66.249.208	76.156.153.166	127.223.163.49	62.74.76.151
190.115.10.44	168.187.100.61	198.114.145.40	50.62.160.239
92.54.237.20	113.119.197.115	5.136.111.240	111.72.198.47
64.227.36.108	179.162.214.23	191.168.0.124	91.245.30.100
191.89.89.51	159.65.8.199	231.199.5.99	29.12.121.6