118.254.140.139

Basic Info

City: Huangpu

Region: Shanghai

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.254.140.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6313
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;118.254.140.139.		IN	A

;; AUTHORITY SECTION:
.			577	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031102 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 12 08:08:04 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 139.140.254.118.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.140.254.118.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.156.190.219	attackbots	Automatic report - Port Scan Attack	2020-08-26 18:38:09
185.147.215.12	attackspambots	[2020-08-26 06:39:31] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.215.12:55144' - Wrong password [2020-08-26 06:39:31] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-26T06:39:31.160-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6098",SessionID="0x7f10c42b6218",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.12/55144",Challenge="37cb5a24",ReceivedChallenge="37cb5a24",ReceivedHash="c7d7d298c7828cbf9e05fa5466a51255" [2020-08-26 06:39:52] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.215.12:50769' - Wrong password [2020-08-26 06:39:52] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-26T06:39:52.769-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9602",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.21 ...	2020-08-26 18:58:37
171.235.51.59	attackbots	ssh brute force, possible password spraying	2020-08-26 19:00:58
222.179.205.14	attack	Aug 26 10:12:27 jumpserver sshd[46849]: Invalid user zqe from 222.179.205.14 port 37318 Aug 26 10:12:30 jumpserver sshd[46849]: Failed password for invalid user zqe from 222.179.205.14 port 37318 ssh2 Aug 26 10:17:23 jumpserver sshd[46872]: Invalid user tushar from 222.179.205.14 port 60907 ...	2020-08-26 18:53:05
35.204.167.87	attackspam	Port scan denied	2020-08-26 19:00:04
51.15.16.71	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-26T10:15:13Z and 2020-08-26T10:15:15Z	2020-08-26 18:29:47
186.226.216.104	attackbotsspam	srvr2: (mod_security) mod_security (id:920350) triggered by 186.226.216.104 (BR/-/static-104-216-226-186.8bit.net.br): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/26 05:50:19 [error] 125640#0: 142698 [client 186.226.216.104] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159841381924.516445"] [ref "o0,15v21,15"], client: 186.226.216.104, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-26 18:42:08
185.142.239.16	attackspambots	Port probe and connect to SMTP:25. IP blocked.	2020-08-26 18:50:40
104.236.134.112	attackbotsspam	TCP port : 1329	2020-08-26 18:19:25
110.78.23.220	attackspam	SSH Brute Force	2020-08-26 18:43:42
111.202.4.3	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-26 18:18:50
195.54.167.93	attackspambots	TCP (SYN) 195.54.167.93:52264 -> port 12483, len 44	2020-08-26 18:44:40
195.54.160.183	attack	[MK-VM6] SSH login failed	2020-08-26 18:39:16
59.72.122.148	attack	Aug 26 03:40:52 NPSTNNYC01T sshd[15772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Aug 26 03:40:54 NPSTNNYC01T sshd[15772]: Failed password for invalid user 123456 from 59.72.122.148 port 43014 ssh2 Aug 26 03:44:25 NPSTNNYC01T sshd[16164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 ...	2020-08-26 18:39:46
122.116.232.83	attack	1598413846 - 08/26/2020 05:50:46 Host: 122.116.232.83/122.116.232.83 Port: 23 TCP Blocked ...	2020-08-26 18:25:29

Recently Reported IPs

118.254.140.136	118.254.140.142	118.254.140.144	118.254.140.148
118.254.140.154	118.254.140.158	118.254.140.160	118.254.140.163
118.254.140.164	118.254.140.166	118.254.140.172	118.254.140.176
118.254.140.18	118.254.140.181	118.254.140.183	118.254.140.188
0.34.215.194	118.254.140.190	118.254.140.200	118.254.140.209