190.13.130.242

Basic Info

City: unknown

Region: unknown

Country: Chile

Internet Service Provider: Telefonica del Sur S.A.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	TCP (SYN) 190.13.130.242:59583 -> port 139, len 44	2020-09-24 21:27:52
attack	TCP (SYN) 190.13.130.242:59583 -> port 139, len 44	2020-09-24 13:21:21
attackbotsspam	Unauthorised access (Sep 23) SRC=190.13.130.242 LEN=40 TOS=0x10 PREC=0x40 TTL=237 ID=3827 TCP DPT=139 WINDOW=1024 SYN Unauthorised access (Sep 22) SRC=190.13.130.242 LEN=40 TOS=0x10 PREC=0x40 TTL=237 ID=8805 TCP DPT=139 WINDOW=1024 SYN Unauthorised access (Sep 21) SRC=190.13.130.242 LEN=40 TOS=0x10 PREC=0x40 TTL=237 ID=36064 TCP DPT=139 WINDOW=1024 SYN	2020-09-24 04:50:50
attack	Unauthorised access (Jul 26) SRC=190.13.130.242 LEN=40 TOS=0x10 PREC=0x40 TTL=237 ID=14765 TCP DPT=139 WINDOW=1024 SYN	2020-07-26 19:15:30

Comments on same subnet:

IP	Type	Details	Datetime
190.13.130.237	attackspam	unauthorized connection attempt	2020-01-17 18:42:29

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 190.13.130.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30369
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;190.13.130.242.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051504 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu May 16 12:39:36 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 242.130.13.190.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 242.130.13.190.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.241.224.123	attackbots	Port Scan ...	2020-09-02 01:34:48
122.176.103.115	attackbots	Unauthorized connection attempt from IP address 122.176.103.115 on Port 445(SMB)	2020-09-02 00:46:48
165.22.200.17	attackspam	Sep 1 18:18:45 pve1 sshd[3267]: Failed password for root from 165.22.200.17 port 59532 ssh2 ...	2020-09-02 00:48:16
123.160.1.109	attackbotsspam	Sep 1 13:30:28 shivevps sshd[29963]: Did not receive identification string from 123.160.1.109 port 59808 ...	2020-09-02 01:27:11
211.170.28.251	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-02 01:01:48
13.234.110.156	attack	13.234.110.156 - - [01/Sep/2020:14:30:24 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.234.110.156 - - [01/Sep/2020:14:30:25 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.234.110.156 - - [01/Sep/2020:14:30:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.234.110.156 - - [01/Sep/2020:14:30:25 +0200] "POST /wp-login.php HTTP/1.1" 200 1799 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.234.110.156 - - [01/Sep/2020:14:30:26 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.234.110.156 - - [01/Sep/2020:14:30:26 +0200] "POST /wp-login.php HTTP/1.1" 200 1798 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-09-02 01:32:00
162.243.129.46	attackbotsspam	firewall-block, port(s): 45000/tcp	2020-09-02 01:02:51
92.118.115.172	attackspambots	Spam	2020-09-02 00:57:43
134.209.123.101	attackbotsspam	134.209.123.101 - - [01/Sep/2020:16:04:27 +0100] "POST /wp-login.php HTTP/1.1" 200 2216 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.123.101 - - [01/Sep/2020:16:04:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2229 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.123.101 - - [01/Sep/2020:16:04:43 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-02 01:11:08
193.176.81.90	attackspambots	Unauthorized connection attempt from IP address 193.176.81.90 on Port 445(SMB)	2020-09-02 00:47:45
200.52.36.72	attackbots	Automatic report - Port Scan Attack	2020-09-02 00:55:46
106.12.5.137	attack	Sep 1 14:41:17 rocket sshd[32407]: Failed password for root from 106.12.5.137 port 39360 ssh2 Sep 1 14:46:17 rocket sshd[687]: Failed password for root from 106.12.5.137 port 36804 ssh2 ...	2020-09-02 00:42:42
182.52.90.164	attackbotsspam	2020-09-01T16:46:48.297337lavrinenko.info sshd[31387]: Failed password for root from 182.52.90.164 port 41644 ssh2 2020-09-01T16:51:15.970499lavrinenko.info sshd[31497]: Invalid user docker from 182.52.90.164 port 47240 2020-09-01T16:51:15.976568lavrinenko.info sshd[31497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.52.90.164 2020-09-01T16:51:15.970499lavrinenko.info sshd[31497]: Invalid user docker from 182.52.90.164 port 47240 2020-09-01T16:51:18.430821lavrinenko.info sshd[31497]: Failed password for invalid user docker from 182.52.90.164 port 47240 ssh2 ...	2020-09-02 00:57:13
51.83.129.84	attack	Sep 1 09:31:13 Tower sshd[774]: Connection from 51.83.129.84 port 40005 on 192.168.10.220 port 22 rdomain ""	2020-09-02 01:20:55
180.149.126.185	attackspambots	Firewall Dropped Connection	2020-09-02 01:05:51

Recently Reported IPs

103.37.82.118	101.201.111.246	58.254.169.65	110.173.180.252
27.72.148.233	94.85.249.225	44.229.135.23	58.97.100.186
118.70.184.173	61.216.35.247	123.25.61.231	244.151.14.204
177.204.149.132	180.248.169.38	193.188.23.47	164.101.13.34
133.24.248.11	190.177.168.177	216.34.188.139	63.220.235.12