42.2.13.100 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt detected from IP address 42.2.13.100 to port 5555 [J]	2020-02-05 07:33:34

Comments on same subnet:

IP	Type	Details	Datetime
42.2.131.7	attackspam	Sep 20 14:01:26 logopedia-1vcpu-1gb-nyc1-01 sshd[443008]: Failed password for root from 42.2.131.7 port 35310 ssh2 ...	2020-09-21 23:17:15
42.2.131.7	attackspambots	Sep 20 14:01:26 logopedia-1vcpu-1gb-nyc1-01 sshd[443008]: Failed password for root from 42.2.131.7 port 35310 ssh2 ...	2020-09-21 15:00:24
42.2.131.7	attackbotsspam	Sep 20 14:01:26 logopedia-1vcpu-1gb-nyc1-01 sshd[443008]: Failed password for root from 42.2.131.7 port 35310 ssh2 ...	2020-09-21 06:53:17
42.2.132.108	attackbots	$f2bV_matches	2020-06-13 19:04:35
42.2.136.107	attack	Brute-force attempt banned	2020-06-07 23:21:10
42.2.131.73	attackspam	May 28 14:02:19 fhem-rasp sshd[9311]: Failed password for root from 42.2.131.73 port 51048 ssh2 May 28 14:02:20 fhem-rasp sshd[9311]: Connection closed by authenticating user root 42.2.131.73 port 51048 [preauth] ...	2020-05-28 21:52:47
42.2.132.131	attackbotsspam	Bruteforce detected by fail2ban	2020-04-29 20:20:12
42.2.132.131	attackspam	Feb 8 04:06:46 XXX sshd[10564]: Invalid user jvn from 42.2.132.131 port 43384	2020-02-08 13:11:20
42.2.135.11	attackspam	" "	2020-02-08 09:58:46
42.2.132.131	attack	Jan 26 05:46:20 MainVPS sshd[13796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.2.132.131 user=root Jan 26 05:46:22 MainVPS sshd[13796]: Failed password for root from 42.2.132.131 port 60990 ssh2 Jan 26 05:51:47 MainVPS sshd[24247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.2.132.131 user=root Jan 26 05:51:49 MainVPS sshd[24247]: Failed password for root from 42.2.132.131 port 45388 ssh2 Jan 26 05:55:02 MainVPS sshd[30728]: Invalid user raisa from 42.2.132.131 port 47818 ...	2020-01-26 13:15:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.13.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24341
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.13.100.			IN	A

;; AUTHORITY SECTION:
.			406	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020401 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 07:33:29 CST 2020
;; MSG SIZE  rcvd: 115

Host info

100.13.2.42.in-addr.arpa domain name pointer 42-2-13-100.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
100.13.2.42.in-addr.arpa	name = 42-2-13-100.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.55.173.225	attackbotsspam	Nov 26 18:10:11 server sshd\[9070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.173.225 user=lp Nov 26 18:10:12 server sshd\[9070\]: Failed password for lp from 45.55.173.225 port 57082 ssh2 Nov 26 18:16:13 server sshd\[28367\]: Invalid user emo from 45.55.173.225 port 46406 Nov 26 18:16:13 server sshd\[28367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.173.225 Nov 26 18:16:15 server sshd\[28367\]: Failed password for invalid user emo from 45.55.173.225 port 46406 ssh2	2019-11-27 05:15:53
139.59.4.63	attackspambots	Nov 26 05:57:07 wbs sshd\[4425\]: Invalid user ifanw from 139.59.4.63 Nov 26 05:57:07 wbs sshd\[4425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.4.63 Nov 26 05:57:09 wbs sshd\[4425\]: Failed password for invalid user ifanw from 139.59.4.63 port 33958 ssh2 Nov 26 06:04:29 wbs sshd\[5011\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.4.63 user=news Nov 26 06:04:31 wbs sshd\[5011\]: Failed password for news from 139.59.4.63 port 51917 ssh2	2019-11-27 05:41:25
42.98.201.169	attackspam	Automatic report - Banned IP Access	2019-11-27 05:40:36
68.12.141.156	attack	Honeypot hit.	2019-11-27 05:28:07
220.85.233.145	attackbots	Nov 26 15:36:54 ns381471 sshd[19111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.85.233.145 Nov 26 15:36:57 ns381471 sshd[19111]: Failed password for invalid user roede from 220.85.233.145 port 42262 ssh2	2019-11-27 05:35:49
159.138.154.210	attackspambots	badbot	2019-11-27 05:39:21
213.202.228.12	attackbotsspam	2019-11-27T06:36:51.196017luisaranguren sshd[334192]: Connection from 213.202.228.12 port 49322 on 10.10.10.6 port 22 rdomain "" 2019-11-27T06:36:52.863996luisaranguren sshd[334192]: Invalid user thesoul from 213.202.228.12 port 49322 2019-11-27T06:36:52.869455luisaranguren sshd[334192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.228.12 2019-11-27T06:36:51.196017luisaranguren sshd[334192]: Connection from 213.202.228.12 port 49322 on 10.10.10.6 port 22 rdomain "" 2019-11-27T06:36:52.863996luisaranguren sshd[334192]: Invalid user thesoul from 213.202.228.12 port 49322 2019-11-27T06:36:54.562763luisaranguren sshd[334192]: Failed password for invalid user thesoul from 213.202.228.12 port 49322 ssh2 ...	2019-11-27 05:51:27
157.52.211.162	attackspam	157.52.211.162 - - \[26/Nov/2019:14:37:47 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 157.52.211.162 - - \[26/Nov/2019:14:37:49 +0000\] "POST /wp-login.php HTTP/1.1" 200 6254 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-11-27 05:13:34
218.92.0.156	attackspam	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.156 user=root Failed password for root from 218.92.0.156 port 15809 ssh2 Failed password for root from 218.92.0.156 port 15809 ssh2 Failed password for root from 218.92.0.156 port 15809 ssh2 Failed password for root from 218.92.0.156 port 15809 ssh2	2019-11-27 05:42:41
175.139.243.82	attack	Invalid user morishima from 175.139.243.82 port 16480	2019-11-27 05:22:43
91.92.186.2	attack	11/26/2019-09:37:19.134686 91.92.186.2 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-27 05:25:07
188.166.211.194	attack	Nov 26 15:37:11 vpn01 sshd[32346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.211.194 Nov 26 15:37:13 vpn01 sshd[32346]: Failed password for invalid user ryan from 188.166.211.194 port 49060 ssh2 ...	2019-11-27 05:27:16
95.57.232.213	attack	Port scan: Attack repeated for 24 hours	2019-11-27 05:44:01
179.0.12.222	attackbots	Automatic report - Port Scan	2019-11-27 05:24:48
185.176.27.102	attack	11/26/2019-15:57:34.451074 185.176.27.102 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-27 05:16:25

Recently Reported IPs

127.38.112.180	97.3.28.166	14.243.72.110	141.84.164.212
41.190.32.243	221.132.118.208	135.46.58.205	141.49.215.89
184.156.223.2	103.230.28.58	90.57.98.94	41.24.5.239
182.173.219.163	65.219.162.118	246.11.142.122	24.237.39.181
178.226.79.22	140.204.7.70	70.89.122.142	78.80.29.253