42.118.18.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.118.180.109	attack	Attempted connection to port 445.	2020-08-30 17:27:31
42.118.183.180	attackspambots	Icarus honeypot on github	2020-07-30 17:55:10
42.118.182.100	attackbots	Honeypot attack, port: 81, PTR: PTR record not found	2020-05-12 19:51:51
42.118.186.61	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-14 13:31:16
42.118.184.95	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-12 19:21:50,136 INFO [shellcode_manager] (42.118.184.95) no match, writing hexdump (efedcdbe0364d42206f97abfeba4cee1 :1977010) - MS17010 (EternalBlue)	2019-07-13 09:03:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.118.18.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7292
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.118.18.74.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021601 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 13:20:48 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 74.18.118.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.18.118.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.114.26	attackbots	Sep 25 08:57:06 vps691689 sshd[19615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.26 Sep 25 08:57:07 vps691689 sshd[19615]: Failed password for invalid user oracle from 106.12.114.26 port 34116 ssh2 Sep 25 09:02:00 vps691689 sshd[19664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.26 ...	2019-09-25 15:18:25
182.184.44.6	attack	Sep 24 19:46:15 web1 sshd\[10091\]: Invalid user nagiosadmin from 182.184.44.6 Sep 24 19:46:15 web1 sshd\[10091\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.184.44.6 Sep 24 19:46:17 web1 sshd\[10091\]: Failed password for invalid user nagiosadmin from 182.184.44.6 port 46480 ssh2 Sep 24 19:52:48 web1 sshd\[10740\]: Invalid user adventure from 182.184.44.6 Sep 24 19:52:48 web1 sshd\[10740\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.184.44.6	2019-09-25 15:17:50
222.186.31.144	attackbots	2019-09-25T07:29:14.086205abusebot-8.cloudsearch.cf sshd\[26469\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.144 user=root	2019-09-25 15:33:22
49.83.1.110	attackspam	Sep 25 07:22:53 nginx sshd[51700]: error: maximum authentication attempts exceeded for root from 49.83.1.110 port 44765 ssh2 [preauth] Sep 25 07:22:53 nginx sshd[51700]: Disconnecting: Too many authentication failures [preauth]	2019-09-25 15:11:26
106.12.90.250	attackspam	Sep 25 07:05:29 SilenceServices sshd[23475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.90.250 Sep 25 07:05:31 SilenceServices sshd[23475]: Failed password for invalid user 1 from 106.12.90.250 port 49062 ssh2 Sep 25 07:08:41 SilenceServices sshd[24324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.90.250	2019-09-25 15:21:34
45.55.145.31	attack	Sep 25 08:28:55 MK-Soft-VM6 sshd[30349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.145.31 Sep 25 08:28:57 MK-Soft-VM6 sshd[30349]: Failed password for invalid user bjbnet from 45.55.145.31 port 33211 ssh2 ...	2019-09-25 15:25:35
144.217.42.212	attackspambots	Sep 25 09:10:31 s64-1 sshd[19638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.42.212 Sep 25 09:10:32 s64-1 sshd[19638]: Failed password for invalid user testftp from 144.217.42.212 port 44077 ssh2 Sep 25 09:14:57 s64-1 sshd[19709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.42.212 ...	2019-09-25 15:31:38
5.135.232.8	attack	Sep 25 08:50:30 s64-1 sshd[19097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.232.8 Sep 25 08:50:32 s64-1 sshd[19097]: Failed password for invalid user ftpuser from 5.135.232.8 port 54240 ssh2 Sep 25 08:54:41 s64-1 sshd[19194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.232.8 ...	2019-09-25 15:27:29
209.17.97.10	attackbots	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-25 15:19:42
200.196.249.170	attack	Sep 25 09:22:18 dedicated sshd[3717]: Invalid user openvpn_as from 200.196.249.170 port 44220	2019-09-25 15:27:59
51.68.178.85	attackbots	Sep 25 09:09:28 localhost sshd\[28134\]: Invalid user apache from 51.68.178.85 port 34646 Sep 25 09:09:28 localhost sshd\[28134\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.178.85 Sep 25 09:09:30 localhost sshd\[28134\]: Failed password for invalid user apache from 51.68.178.85 port 34646 ssh2	2019-09-25 15:10:21
221.0.232.118	attackspambots	v+mailserver-auth-bruteforce	2019-09-25 15:29:46
79.137.87.44	attackspam	Sep 25 06:55:32 microserver sshd[41594]: Invalid user admin from 79.137.87.44 port 52412 Sep 25 06:55:32 microserver sshd[41594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.87.44 Sep 25 06:55:34 microserver sshd[41594]: Failed password for invalid user admin from 79.137.87.44 port 52412 ssh2 Sep 25 06:59:51 microserver sshd[41801]: Invalid user yy from 79.137.87.44 port 44789 Sep 25 06:59:51 microserver sshd[41801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.87.44 Sep 25 07:12:57 microserver sshd[43689]: Invalid user ask from 79.137.87.44 port 50158 Sep 25 07:12:57 microserver sshd[43689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.87.44 Sep 25 07:12:59 microserver sshd[43689]: Failed password for invalid user ask from 79.137.87.44 port 50158 ssh2 Sep 25 07:17:27 microserver sshd[44294]: Invalid user kei from 79.137.87.44 port 42535 Sep 25 07:17:27 microse	2019-09-25 15:15:28
219.124.144.179	attackbotsspam	Unauthorised access (Sep 25) SRC=219.124.144.179 LEN=40 PREC=0x20 TTL=39 ID=53888 TCP DPT=8080 WINDOW=34628 SYN Unauthorised access (Sep 25) SRC=219.124.144.179 LEN=40 PREC=0x20 TTL=39 ID=42296 TCP DPT=8080 WINDOW=34628 SYN Unauthorised access (Sep 25) SRC=219.124.144.179 LEN=40 PREC=0x20 TTL=39 ID=42983 TCP DPT=8080 WINDOW=34628 SYN Unauthorised access (Sep 25) SRC=219.124.144.179 LEN=40 PREC=0x20 TTL=39 ID=48972 TCP DPT=8080 WINDOW=34628 SYN Unauthorised access (Sep 24) SRC=219.124.144.179 LEN=40 PREC=0x20 TTL=39 ID=62657 TCP DPT=8080 WINDOW=34628 SYN Unauthorised access (Sep 23) SRC=219.124.144.179 LEN=40 PREC=0x20 TTL=39 ID=21585 TCP DPT=8080 WINDOW=34628 SYN Unauthorised access (Sep 23) SRC=219.124.144.179 LEN=40 PREC=0x20 TTL=39 ID=32306 TCP DPT=8080 WINDOW=34628 SYN	2019-09-25 15:32:25
221.214.55.82	attack	25/09/2019 8:54 high 221.214.55.82 CHN 62748 / tcp 80 (http) / tcp Unknown (Unknown) 0 SERVER-APACHE Apache Struts remote code execution attempt (1:49376:1) Attempted Administrator Privilege Gain 25/09/2019 8:54 high 221.214.55.82 CHN 62298 / tcp 80 (http) / tcp Unknown (Unknown) 0 SERVER-APACHE Apache Struts remote code execution attempt (1:41819:2) Attempted Administrator Privilege Gain 25/09/2019 8:54 high 221.214.55.82 CHN 62298 / tcp 80 (http) / tcp Unknown (Unknown) 0 SERVER-APACHE Apache Struts remote code execution attempt (1:41818:3) Attempted Administrator Privilege Gain 25/09/2019 8:52 high 221.214.55.82 CHN 59847 / tcp 80 (http) / tcp Unknown (Unknown) 0 SERVER-APACHE Apache Struts remote code execution attempt (1:49376:1) Attempted Administrator Privilege Gain	2019-09-25 15:20:49

Recently Reported IPs

223.136.211.242	139.159.16.62	172.71.6.157	67.175.54.144
193.116.229.201	22.108.214.198	104.49.226.67	221.9.23.70
162.178.80.94	81.86.1.254	249.49.117.169	242.43.164.141
197.226.34.208	23.18.25.231	247.144.90.152	120.213.45.186
238.218.154.120	248.99.28.46	213.255.201.219	14.235.51.11