42.113.252.197

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.113.252.25	attackspam	Port 1433 Scan	2019-11-20 18:39:25
42.113.252.118	attackspam	445/tcp [2019-09-03]1pkt	2019-09-03 16:28:17
42.113.252.69	attackspam	Unauthorized connection attempt from IP address 42.113.252.69 on Port 445(SMB)	2019-06-30 04:31:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.113.252.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3733
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.113.252.197.			IN	A

;; AUTHORITY SECTION:
.			241	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 19:16:57 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 197.252.113.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 197.252.113.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.28.64.143	attackspambots	Apr 14 04:24:01 yesfletchmain sshd\[23484\]: User www-data from 129.28.64.143 not allowed because not listed in AllowUsers Apr 14 04:24:01 yesfletchmain sshd\[23484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.64.143 user=www-data Apr 14 04:24:03 yesfletchmain sshd\[23484\]: Failed password for invalid user www-data from 129.28.64.143 port 65245 ssh2 Apr 14 04:27:25 yesfletchmain sshd\[23581\]: Invalid user cron from 129.28.64.143 port 33506 Apr 14 04:27:25 yesfletchmain sshd\[23581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.64.143 ...	2019-12-23 23:46:15
129.28.56.16	attackbotsspam	Apr 19 23:24:18 yesfletchmain sshd\[14843\]: Invalid user admin from 129.28.56.16 port 48978 Apr 19 23:24:18 yesfletchmain sshd\[14843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.56.16 Apr 19 23:24:19 yesfletchmain sshd\[14843\]: Failed password for invalid user admin from 129.28.56.16 port 48978 ssh2 Apr 19 23:27:20 yesfletchmain sshd\[14875\]: Invalid user dv from 129.28.56.16 port 47446 Apr 19 23:27:20 yesfletchmain sshd\[14875\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.56.16 ...	2019-12-23 23:51:54
46.229.168.162	attackspam	Malicious Traffic/Form Submission	2019-12-23 23:45:53
192.207.205.98	attack	2019-12-23T15:23:32.778990host3.slimhost.com.ua sshd[1158422]: Invalid user hendryson from 192.207.205.98 port 57084 2019-12-23T15:23:32.783991host3.slimhost.com.ua sshd[1158422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.207.205.98 2019-12-23T15:23:32.778990host3.slimhost.com.ua sshd[1158422]: Invalid user hendryson from 192.207.205.98 port 57084 2019-12-23T15:23:34.710187host3.slimhost.com.ua sshd[1158422]: Failed password for invalid user hendryson from 192.207.205.98 port 57084 ssh2 2019-12-23T15:30:05.280096host3.slimhost.com.ua sshd[1164018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.207.205.98 user=mysql 2019-12-23T15:30:07.823222host3.slimhost.com.ua sshd[1164018]: Failed password for mysql from 192.207.205.98 port 35634 ssh2 2019-12-23T15:59:16.758338host3.slimhost.com.ua sshd[1187191]: Invalid user guest from 192.207.205.98 port 25032 2019-12-23T15:59:16.762938host3.slimhost.c ...	2019-12-24 00:04:08
129.28.196.215	attackspam	Dec 21 20:52:42 yesfletchmain sshd\[8186\]: Invalid user jz from 129.28.196.215 port 55112 Dec 21 20:52:43 yesfletchmain sshd\[8186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.196.215 Dec 21 20:52:45 yesfletchmain sshd\[8186\]: Failed password for invalid user jz from 129.28.196.215 port 55112 ssh2 Dec 21 20:57:40 yesfletchmain sshd\[8258\]: Invalid user agv from 129.28.196.215 port 40626 Dec 21 20:57:40 yesfletchmain sshd\[8258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.196.215 ...	2019-12-23 23:55:09
133.130.90.174	attackbots	Dec 10 17:57:08 yesfletchmain sshd\[21922\]: User mysql from 133.130.90.174 not allowed because not listed in AllowUsers Dec 10 17:57:08 yesfletchmain sshd\[21922\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.90.174 user=mysql Dec 10 17:57:10 yesfletchmain sshd\[21922\]: Failed password for invalid user mysql from 133.130.90.174 port 59578 ssh2 Dec 10 18:02:57 yesfletchmain sshd\[22079\]: Invalid user nagios from 133.130.90.174 port 40236 Dec 10 18:02:57 yesfletchmain sshd\[22079\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.90.174 ...	2019-12-24 00:25:48
129.28.166.212	attackspambots	Dec 9 22:20:53 yesfletchmain sshd\[14322\]: User root from 129.28.166.212 not allowed because not listed in AllowUsers Dec 9 22:20:53 yesfletchmain sshd\[14322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.166.212 user=root Dec 9 22:20:55 yesfletchmain sshd\[14322\]: Failed password for invalid user root from 129.28.166.212 port 58116 ssh2 Dec 9 22:30:09 yesfletchmain sshd\[14502\]: Invalid user tschang6 from 129.28.166.212 port 55512 Dec 9 22:30:09 yesfletchmain sshd\[14502\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.166.212 ...	2019-12-24 00:03:45
38.240.3.21	attackspam	2019-12-23T15:58:02.768122shield sshd\[8963\]: Invalid user apache from 38.240.3.21 port 51006 2019-12-23T15:58:02.773501shield sshd\[8963\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.240.3.21 2019-12-23T15:58:05.090591shield sshd\[8963\]: Failed password for invalid user apache from 38.240.3.21 port 51006 ssh2 2019-12-23T16:03:23.997953shield sshd\[10376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.240.3.21 user=root 2019-12-23T16:03:26.049189shield sshd\[10376\]: Failed password for root from 38.240.3.21 port 55150 ssh2	2019-12-24 00:26:59
5.148.3.212	attackspambots	Dec 23 05:29:37 web9 sshd\[13248\]: Invalid user dinwiddie from 5.148.3.212 Dec 23 05:29:37 web9 sshd\[13248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 Dec 23 05:29:38 web9 sshd\[13248\]: Failed password for invalid user dinwiddie from 5.148.3.212 port 51185 ssh2 Dec 23 05:36:41 web9 sshd\[14223\]: Invalid user agnisandesh from 5.148.3.212 Dec 23 05:36:41 web9 sshd\[14223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212	2019-12-23 23:53:58
222.186.180.17	attack	Dec 23 16:46:48 MK-Soft-Root1 sshd[8138]: Failed password for root from 222.186.180.17 port 8120 ssh2 Dec 23 16:46:52 MK-Soft-Root1 sshd[8138]: Failed password for root from 222.186.180.17 port 8120 ssh2 ...	2019-12-23 23:49:30
223.171.32.55	attackspambots	Dec 23 15:59:14 cp sshd[16547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.171.32.55	2019-12-24 00:07:09
54.38.139.210	attackspam	detected by Fail2Ban	2019-12-23 23:48:47
190.34.184.214	attackbotsspam	SSH Bruteforce attempt	2019-12-24 00:05:15
138.68.4.198	attackspam	Feb 25 04:46:02 dillonfme sshd\[378\]: Invalid user ftpuser from 138.68.4.198 port 59076 Feb 25 04:46:02 dillonfme sshd\[378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.198 Feb 25 04:46:04 dillonfme sshd\[378\]: Failed password for invalid user ftpuser from 138.68.4.198 port 59076 ssh2 Feb 25 04:50:38 dillonfme sshd\[773\]: Invalid user hadoop from 138.68.4.198 port 56876 Feb 25 04:50:38 dillonfme sshd\[773\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.198 ...	2019-12-23 23:51:30
129.28.115.92	attackspambots	Sep 21 03:48:26 yesfletchmain sshd\[8178\]: Invalid user nq from 129.28.115.92 port 49161 Sep 21 03:48:26 yesfletchmain sshd\[8178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.115.92 Sep 21 03:48:28 yesfletchmain sshd\[8178\]: Failed password for invalid user nq from 129.28.115.92 port 49161 ssh2 Sep 21 03:52:33 yesfletchmain sshd\[8274\]: Invalid user test from 129.28.115.92 port 37471 Sep 21 03:52:34 yesfletchmain sshd\[8274\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.115.92 ...	2019-12-24 00:24:05

Recently Reported IPs

120.57.222.54	171.95.99.188	183.238.32.23	110.90.77.250
121.240.10.3	177.74.122.35	154.0.14.113	176.236.141.30
92.38.218.165	191.199.181.244	168.228.230.141	1.187.50.155
167.62.171.101	187.178.230.45	175.107.2.194	36.34.7.196
121.4.211.127	138.201.198.254	45.171.57.57	41.113.99.71