167.172.22.242

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.172.227.82	attackspam	167.172.227.82 - - [13/Oct/2020:13:58:45 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.227.82 - - [13/Oct/2020:13:58:47 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.227.82 - - [13/Oct/2020:13:58:48 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-13 23:24:54
167.172.227.82	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-10-13 14:42:03
167.172.227.82	attack	Trolling for resource vulnerabilities	2020-10-13 07:21:41
167.172.220.123	attackbots	2020-10-03T20:18:19+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-10-04 07:53:27
167.172.222.127	attackspambots	Invalid user tftp from 167.172.222.127 port 52486	2020-09-27 02:40:27
167.172.222.127	attack	Invalid user ramesh from 167.172.222.127 port 38814	2020-09-26 18:36:46
167.172.222.221	attack	Invalid user rs from 167.172.222.221 port 60624	2020-09-25 20:05:38
167.172.222.127	attackbots	Sep 19 10:08:09 v11 sshd[7963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.222.127 user=r.r Sep 19 10:08:12 v11 sshd[7963]: Failed password for r.r from 167.172.222.127 port 54898 ssh2 Sep 19 10:08:12 v11 sshd[7963]: Received disconnect from 167.172.222.127 port 54898:11: Bye Bye [preauth] Sep 19 10:08:12 v11 sshd[7963]: Disconnected from 167.172.222.127 port 54898 [preauth] Sep 19 10:17:17 v11 sshd[9482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.222.127 user=r.r Sep 19 10:17:20 v11 sshd[9482]: Failed password for r.r from 167.172.222.127 port 47254 ssh2 Sep 19 10:17:20 v11 sshd[9482]: Received disconnect from 167.172.222.127 port 47254:11: Bye Bye [preauth] Sep 19 10:17:20 v11 sshd[9482]: Disconnected from 167.172.222.127 port 47254 [preauth] Sep 19 10:21:19 v11 sshd[9891]: Invalid user zabbix from 167.172.222.127 port 60230 Sep 19 10:21:19 v11 sshd[9891]: pam_........ -------------------------------	2020-09-21 22:17:30
167.172.222.127	attackbotsspam	Sep 19 10:08:09 v11 sshd[7963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.222.127 user=r.r Sep 19 10:08:12 v11 sshd[7963]: Failed password for r.r from 167.172.222.127 port 54898 ssh2 Sep 19 10:08:12 v11 sshd[7963]: Received disconnect from 167.172.222.127 port 54898:11: Bye Bye [preauth] Sep 19 10:08:12 v11 sshd[7963]: Disconnected from 167.172.222.127 port 54898 [preauth] Sep 19 10:17:17 v11 sshd[9482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.222.127 user=r.r Sep 19 10:17:20 v11 sshd[9482]: Failed password for r.r from 167.172.222.127 port 47254 ssh2 Sep 19 10:17:20 v11 sshd[9482]: Received disconnect from 167.172.222.127 port 47254:11: Bye Bye [preauth] Sep 19 10:17:20 v11 sshd[9482]: Disconnected from 167.172.222.127 port 47254 [preauth] Sep 19 10:21:19 v11 sshd[9891]: Invalid user zabbix from 167.172.222.127 port 60230 Sep 19 10:21:19 v11 sshd[9891]: pam_........ -------------------------------	2020-09-21 14:04:23
167.172.222.127	attackbots	4 SSH login attempts.	2020-09-21 05:54:12
167.172.220.123	attackbotsspam	2020-09-16T11:51:09.017062upcloud.m0sh1x2.com sshd[22772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.220.123 user=root 2020-09-16T11:51:10.634512upcloud.m0sh1x2.com sshd[22772]: Failed password for root from 167.172.220.123 port 57380 ssh2	2020-09-17 00:39:16
167.172.220.123	attackbotsspam	(sshd) Failed SSH login from 167.172.220.123 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 16 00:33:39 server2 sshd[26925]: Invalid user stampede from 167.172.220.123 Sep 16 00:33:39 server2 sshd[26925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.220.123 Sep 16 00:33:41 server2 sshd[26925]: Failed password for invalid user stampede from 167.172.220.123 port 43710 ssh2 Sep 16 00:39:34 server2 sshd[328]: Invalid user iris from 167.172.220.123 Sep 16 00:39:34 server2 sshd[328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.220.123	2020-09-16 16:53:53
167.172.226.2	attack	firewall-block, port(s): 11473/tcp	2020-08-19 23:08:59
167.172.226.2	attackspam	" "	2020-08-16 01:38:54
167.172.226.2	attackspambots	TCP (SYN) 167.172.226.2:55005 -> port 5600, len 44	2020-08-13 04:33:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.172.22.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16101
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.172.22.242.			IN	A

;; AUTHORITY SECTION:
.			96	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062401 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 25 03:56:39 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 242.22.172.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.22.172.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.247.238.103	attackbots	Trolling for resource vulnerabilities	2020-06-04 00:59:15
67.216.206.250	attackspam	Jun 3 13:02:49 sip sshd[22066]: Failed password for root from 67.216.206.250 port 55946 ssh2 Jun 3 13:34:31 sip sshd[1339]: Failed password for root from 67.216.206.250 port 35006 ssh2	2020-06-04 01:22:56
1.214.156.163	attackbots	(sshd) Failed SSH login from 1.214.156.163 (KR/South Korea/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 3 18:45:54 ubnt-55d23 sshd[20939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.156.163 user=root Jun 3 18:45:56 ubnt-55d23 sshd[20939]: Failed password for root from 1.214.156.163 port 58764 ssh2	2020-06-04 01:10:30
220.191.160.42	attack	2020-06-03T16:47:23.373953 sshd[16828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.191.160.42 user=root 2020-06-03T16:47:25.160304 sshd[16828]: Failed password for root from 220.191.160.42 port 57564 ssh2 2020-06-03T17:04:03.552964 sshd[17158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.191.160.42 user=root 2020-06-03T17:04:05.289008 sshd[17158]: Failed password for root from 220.191.160.42 port 51982 ssh2 ...	2020-06-04 00:53:16
185.143.223.254	attackbots	port	2020-06-04 01:10:59
196.0.113.110	attack	Brute force attempt	2020-06-04 01:14:28
49.232.100.177	attackspam	Jun 1 22:13:22 our-server-hostname sshd[23470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.100.177 user=r.r Jun 1 22:13:24 our-server-hostname sshd[23470]: Failed password for r.r from 49.232.100.177 port 49302 ssh2 Jun 1 22:26:14 our-server-hostname sshd[26331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.100.177 user=r.r Jun 1 22:26:16 our-server-hostname sshd[26331]: Failed password for r.r from 49.232.100.177 port 55280 ssh2 Jun 1 22:31:49 our-server-hostname sshd[27459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.100.177 user=r.r Jun 1 22:31:51 our-server-hostname sshd[27459]: Failed password for r.r from 49.232.100.177 port 52156 ssh2 Jun 1 22:37:13 our-server-hostname sshd[28782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.100.177 user=r.r Jun 1 22........ -------------------------------	2020-06-04 00:55:05
106.13.40.65	attack	Jun 3 21:23:17 webhost01 sshd[8311]: Failed password for root from 106.13.40.65 port 50502 ssh2 ...	2020-06-04 00:49:07
91.134.169.25	attackbots	91.134.169.25 - - [03/Jun/2020:13:50:45 +0200] "GET /wp-login.php HTTP/1.1" 200 6702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.134.169.25 - - [03/Jun/2020:13:50:46 +0200] "POST /wp-login.php HTTP/1.1" 200 6953 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.134.169.25 - - [03/Jun/2020:13:50:47 +0200] "GET /wp-login.php HTTP/1.1" 200 6702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-04 01:17:24
45.95.168.117	attack	TCP (SYN) 45.95.168.117:59441 -> port 81, len 44	2020-06-04 01:02:23
162.243.140.84	attackspam	port scan and connect, tcp 8443 (https-alt)	2020-06-04 01:07:58
122.252.239.5	attackspam	Jun 3 15:03:33 vps687878 sshd\[1365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 user=root Jun 3 15:03:35 vps687878 sshd\[1365\]: Failed password for root from 122.252.239.5 port 53894 ssh2 Jun 3 15:07:45 vps687878 sshd\[1851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 user=root Jun 3 15:07:46 vps687878 sshd\[1851\]: Failed password for root from 122.252.239.5 port 57772 ssh2 Jun 3 15:12:30 vps687878 sshd\[2432\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 user=root ...	2020-06-04 01:22:14
165.22.213.129	attackspambots	Jun 3 02:03:01 web1 sshd\[22278\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.213.129 user=root Jun 3 02:03:03 web1 sshd\[22278\]: Failed password for root from 165.22.213.129 port 42518 ssh2 Jun 3 02:07:06 web1 sshd\[22638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.213.129 user=root Jun 3 02:07:08 web1 sshd\[22638\]: Failed password for root from 165.22.213.129 port 42098 ssh2 Jun 3 02:10:59 web1 sshd\[22982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.213.129 user=root	2020-06-04 00:53:39
111.67.193.204	attackspam	Jun 3 13:31:49 sip sshd[329]: Failed password for root from 111.67.193.204 port 37244 ssh2 Jun 3 13:42:17 sip sshd[4328]: Failed password for root from 111.67.193.204 port 53878 ssh2	2020-06-04 01:18:37
134.122.20.113	attack	Jun 3 18:20:18 vps647732 sshd[5318]: Failed password for root from 134.122.20.113 port 53138 ssh2 ...	2020-06-04 00:51:42

Recently Reported IPs

84.252.140.202	187.232.77.220	60.172.95.99	5.62.43.122
93.117.72.116	102.23.233.73	189.119.3.65	111.161.116.24
137.226.41.56	189.171.145.167	190.208.38.123	137.226.112.63
137.226.106.177	137.226.132.72	137.226.176.73	141.212.121.23
137.226.41.82	102.176.228.73	109.234.177.240	137.226.106.195