118.123.105.42

Basic Info

City: Chengdu

Region: Sichuan

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
118.123.105.85	attack	Vulnerability Scanner	2024-04-13 12:21:22
118.123.105.90	proxy	VPN fraud	2023-06-02 13:00:44
118.123.105.86	proxy	VPN f	2023-03-06 13:56:04
118.123.105.89	attack	10/12/22 13:29:04 GMT+7 Error no transactions waiting for reply: IP: 118.123.105.89: .well-known/security.txt 11/12/22 20:48:51 GMT+7 Error no transactions waiting for reply: IP: 118.123.105.89: .well-known/security.txt 11/12/22 23:08:58 GMT+7 Error no transactions waiting for reply: IP: 118.123.105.89: .well-known/security.txt 12/12/22 00:58:29 GMT+7 Error no transactions waiting for reply: IP: 118.123.105.89: .well-known/security.txt 12/12/22 06:08:24 GMT+7 Error no transactions waiting for reply: IP: 118.123.105.89: .well-known/security.txt 12/12/22 06:48:41 GMT+7 Error no transactions waiting for reply: IP: 118.123.105.89: .well-known/security.txt 12/12/22 21:33:05 GMT+7 Error no transactions waiting for reply: IP: 118.123.105.89: .well-known/security.txt 13/12/22 00:42:33 GMT+7 Error no transactions waiting for reply: IP: 118.123.105.89: .well-known/security.txt 13/12/22 06:32:27 GMT+7 Error no transactions waiting for reply: IP: 118.123.105.89: .well-known/security.txt 13/12/22 09:51:26 GMT+7 Error no transactions waiting for reply: IP: 118.123.105.89: .well-known/security.txt	2022-12-13 14:10:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.123.105.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2484
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;118.123.105.42.			IN	A

;; AUTHORITY SECTION:
.			353	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023082400 1800 900 604800 86400

;; Query time: 79 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 24 18:05:29 CST 2023
;; MSG SIZE  rcvd: 107

Host info

Host 42.105.123.118.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.105.123.118.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
31.167.76.161	attack	FTP: login Brute Force attempt, PTR: PTR record not found	2019-11-16 19:51:02
198.108.67.33	attack	" "	2019-11-16 19:47:50
117.24.227.113	attack	MYH,DEF GET /downloader/	2019-11-16 20:01:45
1.255.153.167	attackbotsspam	Nov 16 07:59:47 firewall sshd[17776]: Failed password for invalid user Aaron from 1.255.153.167 port 57144 ssh2 Nov 16 08:04:15 firewall sshd[17851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.255.153.167 user=daemon Nov 16 08:04:17 firewall sshd[17851]: Failed password for daemon from 1.255.153.167 port 46372 ssh2 ...	2019-11-16 19:57:09
117.60.38.218	attackspambots	firewall-block, port(s): 23/tcp	2019-11-16 19:51:55
92.86.179.186	attackbotsspam	SSH brute-force: detected 11 distinct usernames within a 24-hour window.	2019-11-16 19:52:50
199.195.249.6	attackbotsspam	Nov 16 09:52:05 vps691689 sshd[6449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.249.6 Nov 16 09:52:07 vps691689 sshd[6449]: Failed password for invalid user mdh123 from 199.195.249.6 port 42504 ssh2 Nov 16 09:56:15 vps691689 sshd[6519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.249.6 ...	2019-11-16 19:33:18
113.70.212.159	attackspam	Port 1433 Scan	2019-11-16 19:24:29
183.239.61.55	attackspam	2019-11-16T11:17:57.769218stark.klein-stark.info sshd\[13104\]: Invalid user buexec from 183.239.61.55 port 33340 2019-11-16T11:17:57.777752stark.klein-stark.info sshd\[13104\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.239.61.55 2019-11-16T11:18:00.213671stark.klein-stark.info sshd\[13104\]: Failed password for invalid user buexec from 183.239.61.55 port 33340 ssh2 ...	2019-11-16 19:34:07
43.246.143.206	attackspambots	Unauthorised access (Nov 16) SRC=43.246.143.206 LEN=52 PREC=0x20 TTL=113 ID=7734 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-16 20:00:50
50.227.195.3	attack	Nov 15 22:40:57 hanapaa sshd\[4819\]: Invalid user stuen from 50.227.195.3 Nov 15 22:40:57 hanapaa sshd\[4819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.227.195.3 Nov 15 22:40:59 hanapaa sshd\[4819\]: Failed password for invalid user stuen from 50.227.195.3 port 54386 ssh2 Nov 15 22:44:50 hanapaa sshd\[5113\]: Invalid user deprez from 50.227.195.3 Nov 15 22:44:50 hanapaa sshd\[5113\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.227.195.3	2019-11-16 19:49:50
211.216.189.122	attackbots	Port scan	2019-11-16 19:28:29
27.41.37.67	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/27.41.37.67/ CN - 1H : (699) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN17816 IP : 27.41.37.67 CIDR : 27.41.0.0/16 PREFIX COUNT : 512 UNIQUE IP COUNT : 3430656 ATTACKS DETECTED ASN17816 : 1H - 2 3H - 2 6H - 3 12H - 3 24H - 6 DateTime : 2019-11-16 07:20:53 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-11-16 19:56:40
61.181.15.75	attackspambots	Nov 16 08:32:33 vps666546 sshd\[5711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.181.15.75 user=root Nov 16 08:32:34 vps666546 sshd\[5711\]: Failed password for root from 61.181.15.75 port 44966 ssh2 Nov 16 08:35:09 vps666546 sshd\[5823\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.181.15.75 user=root Nov 16 08:35:11 vps666546 sshd\[5823\]: Failed password for root from 61.181.15.75 port 58240 ssh2 Nov 16 08:37:46 vps666546 sshd\[5912\]: Invalid user kuromai from 61.181.15.75 port 43280 Nov 16 08:37:46 vps666546 sshd\[5912\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.181.15.75 ...	2019-11-16 19:31:15
192.3.185.78	attackbots	Netis/Netcore Router Default Credential Remote Code Execution Vulnerability, PTR: 192-3-185-78-host.colocrossing.com.	2019-11-16 19:53:11

Recently Reported IPs

216.250.10.42	152.15.6.142	179.6.166.54	38.54.45.250
49.204.130.134	45.77.56.234	196.61.35.118	5.252.192.38
122.53.133.181	157.240.214.196	88.87.94.56	75.34.133.237
65.21.35.200	110.139.106.11	110.139.106.111	127.84.53.90
108.159.227.105	13.127.222.117	18.81.184.235	91.215.68.172