156.235.245.142

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 156.235.245.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11594
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;156.235.245.142.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021700 1800 900 604800 86400

;; Query time: 411 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 17:46:10 CST 2025
;; MSG SIZE  rcvd: 108

Host info

Host 142.245.235.156.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.245.235.156.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.121.171.104	attack	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	2019-07-05 09:42:01
218.76.140.155	attackbotsspam	'IP reached maximum auth failures for a one day block'	2019-07-05 10:09:09
222.243.211.200	attackspam	Brute force attack stopped by firewall	2019-07-05 10:07:04
199.59.150.85	attackspambots	Brute force attack stopped by firewall	2019-07-05 10:10:07
134.209.157.162	attackbotsspam	Jul 5 04:22:44 vtv3 sshd\[11900\]: Invalid user kan from 134.209.157.162 port 49774 Jul 5 04:22:44 vtv3 sshd\[11900\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.157.162 Jul 5 04:22:46 vtv3 sshd\[11900\]: Failed password for invalid user kan from 134.209.157.162 port 49774 ssh2 Jul 5 04:28:03 vtv3 sshd\[14360\]: Invalid user gitolite from 134.209.157.162 port 48720 Jul 5 04:28:03 vtv3 sshd\[14360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.157.162 Jul 5 04:38:13 vtv3 sshd\[19379\]: Invalid user nm from 134.209.157.162 port 40338 Jul 5 04:38:14 vtv3 sshd\[19379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.157.162 Jul 5 04:38:16 vtv3 sshd\[19379\]: Failed password for invalid user nm from 134.209.157.162 port 40338 ssh2 Jul 5 04:40:50 vtv3 sshd\[21085\]: Invalid user ftpuser from 134.209.157.162 port 38486 Jul 5 04:40:50 vtv3 sshd\[2	2019-07-05 10:16:20
220.225.7.42	attack	Brute force attack stopped by firewall	2019-07-05 09:52:47
41.218.197.30	attack	Automatic report - SSH Brute-Force Attack	2019-07-05 09:57:05
198.167.223.52	attack	[Fri Jul 05 07:20:28.122614 2019] [:error] [pid 14333:tid 139845505718016] [client 198.167.223.52:37238] [client 198.167.223.52] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "792"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/.git/config"] [unique_id "XR6XzM0r@obJ8yK1mAbjJQAAAAQ"] ...	2019-07-05 10:23:31
199.59.150.77	attackspambots	Brute force attack stopped by firewall	2019-07-05 10:12:07
104.248.134.200	attack	Jul 5 00:53:40 ncomp sshd[28963]: Invalid user ts3server from 104.248.134.200 Jul 5 00:53:40 ncomp sshd[28963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.134.200 Jul 5 00:53:40 ncomp sshd[28963]: Invalid user ts3server from 104.248.134.200 Jul 5 00:53:42 ncomp sshd[28963]: Failed password for invalid user ts3server from 104.248.134.200 port 56508 ssh2	2019-07-05 10:10:40
134.209.4.137	attackspambots	Portscan or hack attempt detected by psad/fwsnort	2019-07-05 10:09:51
185.211.245.170	attackspam	Jul 5 02:36:14 mail postfix/smtpd\[31121\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 5 02:36:22 mail postfix/smtpd\[31121\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 5 03:13:10 mail postfix/smtpd\[31906\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 5 03:58:25 mail postfix/smtpd\[814\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-05 10:02:24
92.118.160.37	attackbots	Brute force attack stopped by firewall	2019-07-05 10:22:59
180.125.93.7	attackspambots	19/7/4@18:53:38: FAIL: IoT-Telnet address from=180.125.93.7 ...	2019-07-05 10:14:08
123.234.215.242	attackbotsspam	Brute force attack stopped by firewall	2019-07-05 09:56:06

Recently Reported IPs

121.62.29.251	91.214.204.105	213.34.229.89	185.199.173.177
190.249.114.129	100.75.60.226	185.62.19.109	54.152.12.27
255.26.177.122	132.30.58.210	90.48.115.20	8.10.188.30
8.224.224.227	226.57.204.124	76.249.41.145	241.21.96.130
97.67.80.194	139.182.68.240	131.31.230.135	133.27.79.252