118.140.183.42

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: HGC Global Communications Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Aug 14 14:09:26 dev0-dcde-rnet sshd[13756]: Failed password for root from 118.140.183.42 port 43046 ssh2 Aug 14 14:14:08 dev0-dcde-rnet sshd[13800]: Failed password for root from 118.140.183.42 port 59062 ssh2	2020-08-15 04:12:24
attack	Aug 6 07:56:27 ns382633 sshd\[19438\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=root Aug 6 07:56:29 ns382633 sshd\[19438\]: Failed password for root from 118.140.183.42 port 58124 ssh2 Aug 6 08:04:06 ns382633 sshd\[20593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=root Aug 6 08:04:09 ns382633 sshd\[20593\]: Failed password for root from 118.140.183.42 port 58940 ssh2 Aug 6 08:09:47 ns382633 sshd\[21470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=root	2020-08-06 20:59:59
attack	Invalid user riverwin from 118.140.183.42 port 45182	2020-07-30 07:43:17
attackbotsspam	Jul 23 01:07:48 marvibiene sshd[11367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 Jul 23 01:07:50 marvibiene sshd[11367]: Failed password for invalid user testuser from 118.140.183.42 port 49050 ssh2	2020-07-23 08:32:48
attackspam	Invalid user Jordan from 118.140.183.42 port 57150	2020-07-12 22:09:19
attackspambots	Jun 25 14:23:43 host sshd[27610]: Invalid user jo from 118.140.183.42 port 47370 ...	2020-06-26 01:38:43
attackbotsspam	Invalid user o from 118.140.183.42 port 52184	2020-06-14 16:45:32
attack	$f2bV_matches	2020-06-11 20:36:46
attackspambots	Jun 3 15:18:38 vps687878 sshd\[2995\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=root Jun 3 15:18:39 vps687878 sshd\[2995\]: Failed password for root from 118.140.183.42 port 52214 ssh2 Jun 3 15:22:25 vps687878 sshd\[3416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=root Jun 3 15:22:26 vps687878 sshd\[3416\]: Failed password for root from 118.140.183.42 port 46590 ssh2 Jun 3 15:26:43 vps687878 sshd\[3913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=root ...	2020-06-04 03:31:12
attackspambots	Jun 2 03:39:10 marvibiene sshd[11861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=root Jun 2 03:39:12 marvibiene sshd[11861]: Failed password for root from 118.140.183.42 port 57866 ssh2 Jun 2 03:56:02 marvibiene sshd[12053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=root Jun 2 03:56:04 marvibiene sshd[12053]: Failed password for root from 118.140.183.42 port 56200 ssh2 ...	2020-06-02 12:23:32
attackspam	Jun 1 10:18:44 our-server-hostname sshd[10143]: reveeclipse mapping checking getaddrinfo for static-bbs-42-183-140-118-on-nets.com [118.140.183.42] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 1 10:18:44 our-server-hostname sshd[10143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=r.r Jun 1 10:18:46 our-server-hostname sshd[10143]: Failed password for r.r from 118.140.183.42 port 42958 ssh2 Jun 1 10:31:52 our-server-hostname sshd[12929]: reveeclipse mapping checking getaddrinfo for static-bbs-42-183-140-118-on-nets.com [118.140.183.42] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 1 10:31:53 our-server-hostname sshd[12929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=r.r Jun 1 10:31:54 our-server-hostname sshd[12929]: Failed password for r.r from 118.140.183.42 port 60228 ssh2 Jun 1 10:37:40 our-server-hostname sshd[14245]: reveeclipse mapping che........ -------------------------------	2020-06-01 21:27:02
attackspam	SSH Brute-Forcing (server1)	2020-05-16 03:44:29
attackbots	2020-05-10T14:52:15.430182shield sshd\[23713\]: Invalid user oracle from 118.140.183.42 port 39680 2020-05-10T14:52:15.434666shield sshd\[23713\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 2020-05-10T14:52:17.143504shield sshd\[23713\]: Failed password for invalid user oracle from 118.140.183.42 port 39680 ssh2 2020-05-10T14:56:11.028212shield sshd\[24633\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 user=root 2020-05-10T14:56:13.133803shield sshd\[24633\]: Failed password for root from 118.140.183.42 port 40202 ssh2	2020-05-10 23:58:02
attackspambots	May 8 11:04:33 ny01 sshd[795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 May 8 11:04:34 ny01 sshd[795]: Failed password for invalid user jump from 118.140.183.42 port 47310 ssh2 May 8 11:09:25 ny01 sshd[1436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42	2020-05-08 23:12:06
attackbots	(sshd) Failed SSH login from 118.140.183.42 (HK/Hong Kong/static-bbs-42-183-140-118-on-nets.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 7 11:17:00 ubnt-55d23 sshd[18031]: Invalid user steam from 118.140.183.42 port 50044 May 7 11:17:03 ubnt-55d23 sshd[18031]: Failed password for invalid user steam from 118.140.183.42 port 50044 ssh2	2020-05-07 19:24:30
attackspam	Apr 26 23:39:32 vpn01 sshd[21905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.183.42 Apr 26 23:39:35 vpn01 sshd[21905]: Failed password for invalid user designer from 118.140.183.42 port 53394 ssh2 ...	2020-04-27 08:48:15
attackbots	$f2bV_matches	2020-04-26 18:01:02

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.140.183.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37771
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;118.140.183.42.			IN	A

;; AUTHORITY SECTION:
.			566	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042600 1800 900 604800 86400

;; Query time: 194 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 26 18:00:58 CST 2020
;; MSG SIZE  rcvd: 118

Host info

42.183.140.118.in-addr.arpa domain name pointer static-bbs-42-183-140-118-on-nets.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.183.140.118.in-addr.arpa	name = static-bbs-42-183-140-118-on-nets.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
171.88.165.165	attack	Aug 20 07:35:16 IngegnereFirenze sshd[4981]: Failed password for invalid user ubuntu from 171.88.165.165 port 53110 ssh2 ...	2020-08-20 17:42:56
121.32.26.105	attackspam	$f2bV_matches	2020-08-20 17:12:20
62.234.124.104	attackspambots	Invalid user wwwdata from 62.234.124.104 port 30161	2020-08-20 17:45:07
200.194.6.214	attackbots	Automatic report - Port Scan Attack	2020-08-20 17:21:54
220.136.147.189	attack	Aug 20 11:23:31 ns382633 sshd\[3379\]: Invalid user testftp from 220.136.147.189 port 52420 Aug 20 11:23:31 ns382633 sshd\[3379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.136.147.189 Aug 20 11:23:33 ns382633 sshd\[3379\]: Failed password for invalid user testftp from 220.136.147.189 port 52420 ssh2 Aug 20 11:29:17 ns382633 sshd\[4445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.136.147.189 user=root Aug 20 11:29:19 ns382633 sshd\[4445\]: Failed password for root from 220.136.147.189 port 47046 ssh2	2020-08-20 17:38:30
45.7.138.40	attack	Invalid user port from 45.7.138.40 port 55261	2020-08-20 17:10:52
51.210.181.54	attack	SSH auth scanning - multiple failed logins	2020-08-20 17:24:59
165.22.251.76	attackbots	Lines containing failures of 165.22.251.76 (max 1000) Aug 18 13:01:28 efa3 sshd[32279]: Invalid user erica from 165.22.251.76 port 59910 Aug 18 13:01:28 efa3 sshd[32279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.251.76 Aug 18 13:01:29 efa3 sshd[32279]: Failed password for invalid user erica from 165.22.251.76 port 59910 ssh2 Aug 18 13:01:30 efa3 sshd[32279]: Received disconnect from 165.22.251.76 port 59910:11: Bye Bye [preauth] Aug 18 13:01:30 efa3 sshd[32279]: Disconnected from 165.22.251.76 port 59910 [preauth] Aug 18 13:14:35 efa3 sshd[1805]: Invalid user oracle from 165.22.251.76 port 46234 Aug 18 13:14:35 efa3 sshd[1805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.251.76 Aug 18 13:14:37 efa3 sshd[1805]: Failed password for invalid user oracle from 165.22.251.76 port 46234 ssh2 Aug 18 13:14:37 efa3 sshd[1805]: Received disconnect from 165.22.251.76 port 46234:11........ ------------------------------	2020-08-20 17:33:56
45.143.223.143	attack	Email spam message	2020-08-20 17:48:15
103.145.12.14	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-08-20 17:31:47
13.82.66.91	attackspam	[2020-08-20 05:20:41] NOTICE[1185][C-00003a9a] chan_sip.c: Call from '' (13.82.66.91:49906) to extension '+972595806547' rejected because extension not found in context 'public'. [2020-08-20 05:20:41] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-20T05:20:41.798-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="+972595806547",SessionID="0x7f10c43f67a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/13.82.66.91/49906",ACLName="no_extension_match" [2020-08-20 05:23:16] NOTICE[1185][C-00003a9e] chan_sip.c: Call from '' (13.82.66.91:62918) to extension '810972595806547' rejected because extension not found in context 'public'. [2020-08-20 05:23:16] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-20T05:23:16.799-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="810972595806547",SessionID="0x7f10c4245bd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/13.82.66.9 ...	2020-08-20 17:49:23
192.99.135.113	attack	2020-08-20T19:03:38.922943luisaranguren sshd[1644902]: Invalid user andromahi from 192.99.135.113 port 61236 2020-08-20T19:03:41.680409luisaranguren sshd[1644902]: Failed password for invalid user andromahi from 192.99.135.113 port 61236 ssh2 ...	2020-08-20 17:11:54
213.154.45.95	attack	Aug 20 06:26:24 vmd17057 sshd[18574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.154.45.95 Aug 20 06:26:26 vmd17057 sshd[18574]: Failed password for invalid user elle from 213.154.45.95 port 45382 ssh2 ...	2020-08-20 17:36:05
72.167.224.135	attackbots	Aug 20 08:44:17 kh-dev-server sshd[32558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.167.224.135 ...	2020-08-20 17:19:03
114.119.161.100	attackspam	[N10.H1.VM1] SPAM Detected Blocked by UFW	2020-08-20 17:15:45

Recently Reported IPs

82.50.185.30	161.35.130.199	45.35.221.55	57.240.162.185
164.163.111.143	131.210.200.123	46.88.138.177	156.130.17.191
45.56.137.137	94.103.84.76	1.83.125.12	85.112.113.222
248.250.254.199	69.234.64.222	85.105.147.134	187.162.242.235
144.217.199.136	64.229.11.191	60.12.184.226	122.142.181.13