2.42.216.10 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: Vodafone Italia S.p.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Fail2Ban Ban Triggered	2019-10-17 21:58:05

Comments on same subnet:

IP	Type	Details	Datetime
2.42.216.170	attack	Repeated RDP login failures. Last user: administrator	2020-06-11 20:59:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.42.216.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14612
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.42.216.10.			IN	A

;; AUTHORITY SECTION:
.			569	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101700 1800 900 604800 86400

;; Query time: 209 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 17 21:58:01 CST 2019
;; MSG SIZE  rcvd: 115

Host info

10.216.42.2.in-addr.arpa domain name pointer net-2-42-216-10.cust.vodafonedsl.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
10.216.42.2.in-addr.arpa	name = net-2-42-216-10.cust.vodafonedsl.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
79.137.82.213	attack	Oct 14 16:37:41 sso sshd[30477]: Failed password for root from 79.137.82.213 port 35508 ssh2 ...	2019-10-14 23:24:40
118.24.13.248	attack	Oct 14 13:44:43 vps647732 sshd[14591]: Failed password for root from 118.24.13.248 port 46462 ssh2 ...	2019-10-14 22:56:08
39.88.220.205	attackspam	DATE:2019-10-14 13:38:36, IP:39.88.220.205, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc-bis)	2019-10-14 23:30:22
193.112.27.92	attackspam	Oct 14 13:39:47 OPSO sshd\[1680\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.27.92 user=root Oct 14 13:39:50 OPSO sshd\[1680\]: Failed password for root from 193.112.27.92 port 49762 ssh2 Oct 14 13:44:41 OPSO sshd\[2399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.27.92 user=root Oct 14 13:44:43 OPSO sshd\[2399\]: Failed password for root from 193.112.27.92 port 58898 ssh2 Oct 14 13:49:47 OPSO sshd\[3250\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.27.92 user=root	2019-10-14 23:27:50
222.186.175.167	attackspam	Oct 14 17:05:51 dedicated sshd[1272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root Oct 14 17:05:53 dedicated sshd[1272]: Failed password for root from 222.186.175.167 port 33136 ssh2	2019-10-14 23:09:04
47.22.135.70	attack	Oct 14 14:38:50 thevastnessof sshd[31893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.22.135.70 ...	2019-10-14 22:57:00
194.190.86.109	attack	on port 22	2019-10-14 23:21:02
106.12.214.128	attackbots	2019-10-14T14:39:14.632219abusebot-7.cloudsearch.cf sshd\[25198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.128 user=root	2019-10-14 23:19:34
185.90.116.101	attackbotsspam	Honeypot hit, critical abuseConfidenceScore, incoming Traffic from this IP	2019-10-14 23:12:41
125.99.173.162	attack	Oct 14 17:54:00 server sshd\[10326\]: User root from 125.99.173.162 not allowed because listed in DenyUsers Oct 14 17:54:00 server sshd\[10326\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.99.173.162 user=root Oct 14 17:54:02 server sshd\[10326\]: Failed password for invalid user root from 125.99.173.162 port 9972 ssh2 Oct 14 18:00:04 server sshd\[29700\]: User root from 125.99.173.162 not allowed because listed in DenyUsers Oct 14 18:00:04 server sshd\[29700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.99.173.162 user=root	2019-10-14 23:17:02
222.186.42.4	attack	Oct 14 17:36:30 tux-35-217 sshd\[29624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root Oct 14 17:36:32 tux-35-217 sshd\[29624\]: Failed password for root from 222.186.42.4 port 9820 ssh2 Oct 14 17:36:38 tux-35-217 sshd\[29624\]: Failed password for root from 222.186.42.4 port 9820 ssh2 Oct 14 17:36:42 tux-35-217 sshd\[29624\]: Failed password for root from 222.186.42.4 port 9820 ssh2 ...	2019-10-14 23:40:16
81.86.80.241	attackbots	scan z	2019-10-14 23:17:32
103.92.84.102	attackbotsspam	Oct 14 16:03:20 MK-Soft-VM7 sshd[12548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.84.102 Oct 14 16:03:23 MK-Soft-VM7 sshd[12548]: Failed password for invalid user 123 from 103.92.84.102 port 41964 ssh2 ...	2019-10-14 22:56:33
202.47.32.230	attack	14.10.2019 13:50:20 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2019-10-14 23:13:50
190.190.40.203	attackspambots	Oct 14 01:59:59 auw2 sshd\[3843\]: Invalid user Admin@2018 from 190.190.40.203 Oct 14 01:59:59 auw2 sshd\[3843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.190.40.203 Oct 14 02:00:02 auw2 sshd\[3843\]: Failed password for invalid user Admin@2018 from 190.190.40.203 port 52592 ssh2 Oct 14 02:05:20 auw2 sshd\[4343\]: Invalid user Admin@2018 from 190.190.40.203 Oct 14 02:05:20 auw2 sshd\[4343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.190.40.203	2019-10-14 23:29:22

Recently Reported IPs

51.116.117.34	202.79.169.252	124.252.194.158	117.18.153.196
190.166.249.44	113.173.239.221	62.69.252.141	207.127.26.103
110.172.132.76	91.121.29.29	41.90.22.129	210.48.204.118
123.200.26.62	123.254.65.177	178.221.12.9	194.199.7.28
193.124.129.92	14.102.61.46	37.115.165.218	68.183.83.28