167.252.42.111

Basic Info

City: unknown

Region: unknown

Country: Argentina

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.252.42.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63609
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.252.42.111.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022703 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 12:52:46 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 111.42.252.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 111.42.252.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.233.53.132	attack	ssh failed login	2019-10-05 02:26:56
46.14.175.19	attackbots	Oct414:21:41server2kernel:Firewall:\PortFlood\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=46.14.175.19DST=136.243.224.50LEN=52TOS=0x00PREC=0x00TTL=51ID=49432DFPROTO=TCPSPT=14005DPT=80WINDOW=64240RES=0x00SYNURGP=0Oct414:21:41server2kernel:Firewall:\PortFlood\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=46.14.175.19DST=136.243.224.50LEN=52TOS=0x00PREC=0x00TTL=52ID=49435DFPROTO=TCPSPT=35428DPT=80WINDOW=64240RES=0x00SYNURGP=0Oct414:21:41server2kernel:Firewall:\PortFlood\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=46.14.175.19DST=136.243.224.50LEN=52TOS=0x00PREC=0x00TTL=52ID=49446DFPROTO=TCPSPT=34545DPT=80WINDOW=64240RES=0x00SYNURGP=0Oct414:21:41server2kernel:Firewall:\PortFlood\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=46.14.175.19DST=136.243.224.50LEN=52TOS=0x00PREC=0x00TTL=52ID=49483DFPROTO=TCPSPT=2362DPT=80WINDOW=64240RES=0x00SYNURGP=0Oct414:21:41server2kernel:Firewall:\PortFlood\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00S	2019-10-05 02:36:03
222.186.15.110	attackbots	Oct 4 08:21:49 sachi sshd\[22324\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.110 user=root Oct 4 08:21:51 sachi sshd\[22324\]: Failed password for root from 222.186.15.110 port 49391 ssh2 Oct 4 08:24:23 sachi sshd\[22536\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.110 user=root Oct 4 08:24:24 sachi sshd\[22536\]: Failed password for root from 222.186.15.110 port 21391 ssh2 Oct 4 08:24:26 sachi sshd\[22536\]: Failed password for root from 222.186.15.110 port 21391 ssh2	2019-10-05 02:28:51
178.63.193.202	attackspam	WordPress login Brute force / Web App Attack on client site.	2019-10-05 02:30:05
37.252.68.119	attack	Oct 4 18:21:34 OPSO sshd\[13625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.252.68.119 user=root Oct 4 18:21:36 OPSO sshd\[13625\]: Failed password for root from 37.252.68.119 port 33740 ssh2 Oct 4 18:26:07 OPSO sshd\[14500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.252.68.119 user=root Oct 4 18:26:09 OPSO sshd\[14500\]: Failed password for root from 37.252.68.119 port 45988 ssh2 Oct 4 18:30:44 OPSO sshd\[15338\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.252.68.119 user=root	2019-10-05 02:12:21
188.221.197.147	attack	Automatic report - Port Scan Attack	2019-10-05 02:29:31
128.199.142.138	attackspambots	Oct 4 19:52:33 core sshd[945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.142.138 user=root Oct 4 19:52:34 core sshd[945]: Failed password for root from 128.199.142.138 port 39096 ssh2 ...	2019-10-05 02:09:09
202.72.209.2	attackbots	proto=tcp . spt=39056 . dpt=25 . (Found on Dark List de Oct 04) (496)	2019-10-05 02:05:55
62.193.6.15	attackspambots	SSH Brute-Forcing (ownc)	2019-10-05 02:13:28
94.191.56.144	attackspambots	Oct 4 19:52:33 meumeu sshd[8013]: Failed password for root from 94.191.56.144 port 43978 ssh2 Oct 4 19:57:30 meumeu sshd[8822]: Failed password for root from 94.191.56.144 port 50862 ssh2 ...	2019-10-05 02:24:01
59.120.19.40	attackspam	Oct 4 16:46:24 vmd17057 sshd\[29524\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.120.19.40 user=root Oct 4 16:46:26 vmd17057 sshd\[29524\]: Failed password for root from 59.120.19.40 port 57757 ssh2 Oct 4 16:51:14 vmd17057 sshd\[29910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.120.19.40 user=root ...	2019-10-05 02:38:29
222.186.175.151	attackspam	Oct 4 14:05:46 debian sshd\[4004\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Oct 4 14:05:49 debian sshd\[4004\]: Failed password for root from 222.186.175.151 port 12588 ssh2 Oct 4 14:05:53 debian sshd\[4004\]: Failed password for root from 222.186.175.151 port 12588 ssh2 ...	2019-10-05 02:35:00
149.56.19.4	attack	149.56.19.4 - - [04/Oct/2019:14:22:41 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.56.19.4 - - [04/Oct/2019:14:22:42 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.56.19.4 - - [04/Oct/2019:14:22:42 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.56.19.4 - - [04/Oct/2019:14:22:42 +0200] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.56.19.4 - - [04/Oct/2019:14:22:42 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.56.19.4 - - [04/Oct/2019:14:22:43 +0200] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-05 02:18:54
54.36.215.201	attackspam	Received: from mail.lvtg.gr (mail.lvtg.gr [54.36.215.201]) Received: from webmail.lvtg.gr (localhost.localdomain [IPv6:::1]) by mail.lvtg.gr (Postfix) with ESMTPSA id CF6294607DA; Fri, 4 Oct 2019 15:11:56 +0300 (EEST) spf=pass (sender IP is ::1) smtp.mailfrom=urvi.joshi@dhl.com smtp.helo=webmail.lvtg.gr Received-SPF: pass (mail.lvtg.gr: connection is authenticated) MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="=_8f9ce31836d79467080a522edd778233" Date: Fri, 04 Oct 2019 13:11:56 +0100 From: "DHL Express.1" To: sales@canford.co.uk	2019-10-05 02:36:39
129.146.149.185	attackbotsspam	Oct 4 20:18:53 eventyay sshd[28068]: Failed password for root from 129.146.149.185 port 42160 ssh2 Oct 4 20:22:40 eventyay sshd[28141]: Failed password for root from 129.146.149.185 port 53506 ssh2 ...	2019-10-05 02:31:49

Recently Reported IPs

152.174.179.229	207.223.129.207	230.177.167.80	233.123.36.96
233.77.203.102	107.122.215.255	222.205.210.168	137.17.110.221
70.187.59.240	36.22.149.123	246.77.82.65	48.73.35.21
108.248.226.231	181.28.122.71	169.67.65.96	119.57.135.61
39.99.42.57	125.105.98.61	53.118.130.228	71.186.102.119