42.159.13.21 - IPInfo

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.159.132.238	attack	Unauthorized connection attempt detected from IP address 42.159.132.238 to port 2220 [J]	2020-01-31 21:55:30
42.159.132.238	attack	Jan 10 15:05:58 amit sshd\[29925\]: Invalid user qum from 42.159.132.238 Jan 10 15:05:58 amit sshd\[29925\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.132.238 Jan 10 15:06:00 amit sshd\[29925\]: Failed password for invalid user qum from 42.159.132.238 port 40884 ssh2 ...	2020-01-11 01:56:46
42.159.132.238	attackspam	Jan 3 05:54:55 pornomens sshd\[28292\]: Invalid user cth from 42.159.132.238 port 51958 Jan 3 05:54:55 pornomens sshd\[28292\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.132.238 Jan 3 05:54:58 pornomens sshd\[28292\]: Failed password for invalid user cth from 42.159.132.238 port 51958 ssh2 ...	2020-01-03 13:13:10
42.159.132.238	attackbots	Dec 6 10:53:02 vps666546 sshd\[31014\]: Invalid user mysql from 42.159.132.238 port 53680 Dec 6 10:53:02 vps666546 sshd\[31014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.132.238 Dec 6 10:53:04 vps666546 sshd\[31014\]: Failed password for invalid user mysql from 42.159.132.238 port 53680 ssh2 Dec 6 11:00:40 vps666546 sshd\[31251\]: Invalid user elewitz from 42.159.132.238 port 37390 Dec 6 11:00:40 vps666546 sshd\[31251\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.132.238 ...	2019-12-06 18:10:32
42.159.132.238	attackbots	Nov 24 22:42:19 sachi sshd\[24849\]: Invalid user nelzie from 42.159.132.238 Nov 24 22:42:19 sachi sshd\[24849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.132.238 Nov 24 22:42:22 sachi sshd\[24849\]: Failed password for invalid user nelzie from 42.159.132.238 port 43022 ssh2 Nov 24 22:47:07 sachi sshd\[25289\]: Invalid user werle from 42.159.132.238 Nov 24 22:47:07 sachi sshd\[25289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.132.238	2019-11-25 18:13:57
42.159.132.238	attackspambots	Nov 24 04:52:36 kapalua sshd\[11834\]: Invalid user carrutn from 42.159.132.238 Nov 24 04:52:36 kapalua sshd\[11834\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.132.238 Nov 24 04:52:38 kapalua sshd\[11834\]: Failed password for invalid user carrutn from 42.159.132.238 port 53528 ssh2 Nov 24 04:57:03 kapalua sshd\[12220\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.132.238 user=root Nov 24 04:57:05 kapalua sshd\[12220\]: Failed password for root from 42.159.132.238 port 60716 ssh2	2019-11-24 23:05:55
42.159.132.238	attackbots	Nov 24 03:21:21 ws22vmsma01 sshd[60956]: Failed password for root from 42.159.132.238 port 56164 ssh2 Nov 24 03:25:10 ws22vmsma01 sshd[68633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.132.238 ...	2019-11-24 17:42:55
42.159.132.238	attack	2019-11-17T09:28:29.3219701240 sshd\[798\]: Invalid user test from 42.159.132.238 port 48678 2019-11-17T09:28:29.3247991240 sshd\[798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.132.238 2019-11-17T09:28:31.9714611240 sshd\[798\]: Failed password for invalid user test from 42.159.132.238 port 48678 ssh2 ...	2019-11-17 17:08:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.159.13.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39605
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.159.13.21.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100601 1800 900 604800 86400

;; Query time: 81 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 07 03:47:03 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 21.13.159.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.13.159.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.230.204.113	attackbotsspam	DATE:2020-06-07 05:56:58, IP:111.230.204.113, PORT:ssh SSH brute force auth (docker-dc)	2020-06-07 13:43:47
222.186.169.194	attack	Jun 6 23:55:37 NPSTNNYC01T sshd[5099]: Failed password for root from 222.186.169.194 port 23964 ssh2 Jun 6 23:55:51 NPSTNNYC01T sshd[5099]: error: maximum authentication attempts exceeded for root from 222.186.169.194 port 23964 ssh2 [preauth] Jun 6 23:56:06 NPSTNNYC01T sshd[5178]: Failed password for root from 222.186.169.194 port 8318 ssh2 ...	2020-06-07 14:15:25
88.80.148.149	attackspambots	[2020-06-07 01:39:51] NOTICE[1288][C-0000116b] chan_sip.c: Call from '' (88.80.148.149:65497) to extension '00442037697638' rejected because extension not found in context 'public'. [2020-06-07 01:39:51] SECURITY[1303] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-07T01:39:51.205-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00442037697638",SessionID="0x7f4d742d3bb8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/88.80.148.149/65497",ACLName="no_extension_match" [2020-06-07 01:40:06] NOTICE[1288][C-0000116e] chan_sip.c: Call from '' (88.80.148.149:55774) to extension '00442037694290' rejected because extension not found in context 'public'. [2020-06-07 01:40:06] SECURITY[1303] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-07T01:40:06.380-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00442037694290",SessionID="0x7f4d74371bc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/88.8 ...	2020-06-07 13:49:20
191.235.104.37	attack	Jun 7 05:48:56 amit sshd\[12899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.104.37 user=root Jun 7 05:48:57 amit sshd\[12899\]: Failed password for root from 191.235.104.37 port 51546 ssh2 Jun 7 05:56:03 amit sshd\[12983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.104.37 user=root ...	2020-06-07 14:14:36
206.189.146.27	attackbots	Jun 7 06:57:37 vpn01 sshd[6936]: Failed password for root from 206.189.146.27 port 47976 ssh2 ...	2020-06-07 14:10:00
111.93.71.219	attack	Jun 7 02:01:33 firewall sshd[16211]: Failed password for root from 111.93.71.219 port 55021 ssh2 Jun 7 02:03:54 firewall sshd[16232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.71.219 user=root Jun 7 02:03:56 firewall sshd[16232]: Failed password for root from 111.93.71.219 port 44169 ssh2 ...	2020-06-07 13:44:15
142.93.212.10	attack	Jun 6 19:50:31 hpm sshd\[22130\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.10 user=root Jun 6 19:50:33 hpm sshd\[22130\]: Failed password for root from 142.93.212.10 port 53274 ssh2 Jun 6 19:54:46 hpm sshd\[22492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.10 user=root Jun 6 19:54:48 hpm sshd\[22492\]: Failed password for root from 142.93.212.10 port 56696 ssh2 Jun 6 19:58:58 hpm sshd\[22808\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.10 user=root	2020-06-07 14:25:53
125.121.119.210	attackspam	Jun 7 05:52:29 amit sshd\[12955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.121.119.210 user=root Jun 7 05:52:31 amit sshd\[12955\]: Failed password for root from 125.121.119.210 port 60142 ssh2 Jun 7 05:56:14 amit sshd\[13012\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.121.119.210 user=root ...	2020-06-07 14:08:18
144.172.79.5	attack	$f2bV_matches	2020-06-07 14:15:38
192.35.168.32	attack	Unauthorized connection attempt detected from IP address 192.35.168.32 to port 443	2020-06-07 14:05:23
116.196.105.232	attackbots	Jun 7 06:18:44 localhost sshd\[9512\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.105.232 user=root Jun 7 06:18:46 localhost sshd\[9512\]: Failed password for root from 116.196.105.232 port 60022 ssh2 Jun 7 06:19:47 localhost sshd\[9527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.105.232 user=root Jun 7 06:19:49 localhost sshd\[9527\]: Failed password for root from 116.196.105.232 port 45452 ssh2 Jun 7 06:20:56 localhost sshd\[9712\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.105.232 user=root ...	2020-06-07 14:24:45
49.235.49.236	attack	2020-06-07T08:13:56.743235mail.standpoint.com.ua sshd[22119]: Failed password for root from 49.235.49.236 port 60790 ssh2 2020-06-07T08:15:19.636837mail.standpoint.com.ua sshd[22296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.49.236 user=root 2020-06-07T08:15:22.197633mail.standpoint.com.ua sshd[22296]: Failed password for root from 49.235.49.236 port 46420 ssh2 2020-06-07T08:16:35.067666mail.standpoint.com.ua sshd[22442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.49.236 user=root 2020-06-07T08:16:37.061637mail.standpoint.com.ua sshd[22442]: Failed password for root from 49.235.49.236 port 60280 ssh2 ...	2020-06-07 13:53:30
180.164.62.158	attackspam	$f2bV_matches	2020-06-07 13:53:52
192.162.98.39	attack	$f2bV_matches	2020-06-07 14:22:11
62.234.137.128	attackbotsspam	Jun 7 08:14:07 mellenthin sshd[14534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.137.128 user=root Jun 7 08:14:10 mellenthin sshd[14534]: Failed password for invalid user root from 62.234.137.128 port 37702 ssh2	2020-06-07 14:17:05

Recently Reported IPs

5.41.45.240	14.134.24.170	112.149.124.123	101.12.213.244
188.77.75.55	80.200.225.127	91.186.231.253	17.100.36.47
103.210.238.240	70.140.184.81	184.255.96.255	173.184.76.218
85.113.221.249	137.187.99.37	36.248.82.190	194.39.94.137
71.242.115.64	193.212.213.42	39.67.143.160	194.192.153.1