118.166.133.242

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port Scan: TCP/23	2019-08-05 08:49:13

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.166.133.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13292
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;118.166.133.242.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 05 08:49:08 CST 2019
;; MSG SIZE  rcvd: 119

Host info

242.133.166.118.in-addr.arpa domain name pointer 118-166-133-242.dynamic-ip.hinet.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
242.133.166.118.in-addr.arpa	name = 118-166-133-242.dynamic-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.168.125.226	attackspam	"Unauthorized connection attempt on SSHD detected"	2020-04-28 13:25:01
27.150.184.25	attack	sshd	2020-04-28 13:48:11
178.128.21.38	attack	Invalid user loja from 178.128.21.38 port 59092	2020-04-28 13:16:35
64.111.105.222	attackbots	trying to access non-authorized port	2020-04-28 13:56:11
51.178.52.185	attack	Apr 28 06:05:48 mail sshd[10196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.52.185 user=root Apr 28 06:05:50 mail sshd[10196]: Failed password for root from 51.178.52.185 port 49369 ssh2 Apr 28 06:07:25 mail sshd[10461]: Invalid user opal from 51.178.52.185 ...	2020-04-28 13:44:26
92.246.76.177	attackspam	(sshd) Failed SSH login from 92.246.76.177 (RU/Russia/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 28 07:47:11 ubnt-55d23 sshd[27481]: Invalid user HHaannjewygbwerybv from 92.246.76.177 port 57921 Apr 28 07:47:13 ubnt-55d23 sshd[27481]: Failed password for invalid user HHaannjewygbwerybv from 92.246.76.177 port 57921 ssh2	2020-04-28 13:51:32
119.29.187.218	attackbots	Invalid user ondrea from 119.29.187.218 port 58745	2020-04-28 13:49:01
192.144.164.229	attackspam	(sshd) Failed SSH login from 192.144.164.229 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 28 06:41:32 srv sshd[21833]: Invalid user aiken from 192.144.164.229 port 52886 Apr 28 06:41:34 srv sshd[21833]: Failed password for invalid user aiken from 192.144.164.229 port 52886 ssh2 Apr 28 06:49:16 srv sshd[21993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.164.229 user=root Apr 28 06:49:18 srv sshd[21993]: Failed password for root from 192.144.164.229 port 46162 ssh2 Apr 28 06:53:08 srv sshd[22051]: Invalid user nagios from 192.144.164.229 port 36472	2020-04-28 13:38:51
94.191.85.216	attack	Apr 27 19:00:19 wbs sshd\[10550\]: Invalid user teste1 from 94.191.85.216 Apr 27 19:00:19 wbs sshd\[10550\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.85.216 Apr 27 19:00:22 wbs sshd\[10550\]: Failed password for invalid user teste1 from 94.191.85.216 port 47166 ssh2 Apr 27 19:05:46 wbs sshd\[10985\]: Invalid user juan from 94.191.85.216 Apr 27 19:05:46 wbs sshd\[10985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.85.216	2020-04-28 13:16:48
184.105.247.196	attack	Port 445 (MS DS) access denied	2020-04-28 13:31:40
5.135.48.50	attackbotsspam	Apr 28 06:48:08 mout sshd[22713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.48.50 user=root Apr 28 06:48:10 mout sshd[22713]: Failed password for root from 5.135.48.50 port 56784 ssh2	2020-04-28 13:21:49
128.199.185.112	attackbotsspam	Apr 28 06:56:55 OPSO sshd\[3648\]: Invalid user teamspeak from 128.199.185.112 port 62013 Apr 28 06:56:55 OPSO sshd\[3648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.185.112 Apr 28 06:56:57 OPSO sshd\[3648\]: Failed password for invalid user teamspeak from 128.199.185.112 port 62013 ssh2 Apr 28 07:05:10 OPSO sshd\[6681\]: Invalid user jboss from 128.199.185.112 port 45935 Apr 28 07:05:10 OPSO sshd\[6681\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.185.112	2020-04-28 13:25:41
5.196.70.107	attackbots	2020-04-27T23:28:52.2667981495-001 sshd[47349]: Invalid user sandy from 5.196.70.107 port 53304 2020-04-27T23:28:54.5136481495-001 sshd[47349]: Failed password for invalid user sandy from 5.196.70.107 port 53304 ssh2 2020-04-27T23:36:30.7572111495-001 sshd[47681]: Invalid user ari from 5.196.70.107 port 33546 2020-04-27T23:36:30.7609291495-001 sshd[47681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns379769.ip-5-196-70.eu 2020-04-27T23:36:30.7572111495-001 sshd[47681]: Invalid user ari from 5.196.70.107 port 33546 2020-04-27T23:36:33.2055441495-001 sshd[47681]: Failed password for invalid user ari from 5.196.70.107 port 33546 ssh2 ...	2020-04-28 13:43:18
157.245.83.8	attackspam	Fail2Ban - SSH Bruteforce Attempt	2020-04-28 13:18:21
113.141.70.199	attackbots	Apr 28 03:52:49 *** sshd[13992]: User root from 113.141.70.199 not allowed because not listed in AllowUsers	2020-04-28 13:51:18

Recently Reported IPs

42.117.24.232	40.133.111.162	37.6.109.86	36.234.150.62
36.226.254.69	36.224.233.143	23.240.8.111	12.178.7.163
12.11.98.210	219.73.53.129	213.8.24.30	212.119.77.232
211.103.212.98	208.123.130.60	208.85.7.138	205.236.155.5
202.185.196.72	200.78.203.198	197.55.177.93	197.50.30.115