118.200.116.18

基本信息:

城市(city): Singapore

省份(region): unknown

国家(country): Singapore

运营商(isp): SingNet Pte Ltd

主机名(hostname): unknown

机构(organization): Singtel Fibre Broadband

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	445/tcp 445/tcp 445/tcp... [2019-06-17/07-10]4pkt,1pt.(tcp)	2019-07-10 22:24:35

相同子网IP讨论:

IP	类型	评论内容	时间
118.200.116.76	attackspambots	445/tcp [2020-01-24]1pkt	2020-01-24 23:22:03

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.200.116.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27243
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;118.200.116.18.			IN	A

;; AUTHORITY SECTION:
.			2350	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062100 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 21 14:47:58 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

18.116.200.118.in-addr.arpa domain name pointer bb118-200-116-18.singnet.com.sg.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
18.116.200.118.in-addr.arpa	name = bb118-200-116-18.singnet.com.sg.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.212.88.25	attack	Chat Spam	2019-10-26 00:02:57
36.237.212.200	attack	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-25 23:37:08
95.154.131.139	attackspam	Unauthorised access (Oct 25) SRC=95.154.131.139 LEN=52 TTL=119 ID=28787 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-25 23:32:16
45.142.195.5	attack	Oct 25 14:18:38 mail postfix/smtpd\[8078\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 25 14:19:18 mail postfix/smtpd\[7582\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 25 14:20:02 mail postfix/smtpd\[8078\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 25 14:50:07 mail postfix/smtpd\[9323\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-10-26 00:11:40
106.13.65.18	attack	Oct 25 09:01:22 firewall sshd[13554]: Invalid user com from 106.13.65.18 Oct 25 09:01:24 firewall sshd[13554]: Failed password for invalid user com from 106.13.65.18 port 49000 ssh2 Oct 25 09:06:43 firewall sshd[13706]: Invalid user $liFENG032099$ from 106.13.65.18 ...	2019-10-25 23:29:12
113.22.244.209	attack	Automatic report - Port Scan Attack	2019-10-25 23:50:07
103.62.239.77	attack	Oct 25 16:06:42 v22018076622670303 sshd\[17266\]: Invalid user qazqaz123 from 103.62.239.77 port 55874 Oct 25 16:06:42 v22018076622670303 sshd\[17266\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.62.239.77 Oct 25 16:06:45 v22018076622670303 sshd\[17266\]: Failed password for invalid user qazqaz123 from 103.62.239.77 port 55874 ssh2 ...	2019-10-25 23:39:07
80.211.56.173	attack	Lines containing failures of 80.211.56.173 Oct 24 15:39:42 shared12 sshd[15832]: Invalid user gesi from 80.211.56.173 port 48722 Oct 24 15:39:42 shared12 sshd[15832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.56.173 Oct 24 15:39:43 shared12 sshd[15832]: Failed password for invalid user gesi from 80.211.56.173 port 48722 ssh2 Oct 24 15:39:44 shared12 sshd[15832]: Received disconnect from 80.211.56.173 port 48722:11: Bye Bye [preauth] Oct 24 15:39:44 shared12 sshd[15832]: Disconnected from invalid user gesi 80.211.56.173 port 48722 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=80.211.56.173	2019-10-25 23:31:48
78.157.181.26	attack	Unauthorised access (Oct 25) SRC=78.157.181.26 LEN=40 TTL=55 ID=41211 TCP DPT=23 WINDOW=11812 SYN Unauthorised access (Oct 25) SRC=78.157.181.26 LEN=40 TTL=55 ID=12403 TCP DPT=23 WINDOW=11812 SYN Unauthorised access (Oct 25) SRC=78.157.181.26 LEN=40 TTL=55 ID=59062 TCP DPT=23 WINDOW=11812 SYN	2019-10-25 23:56:06
112.217.225.61	attackspam	Oct 25 05:12:30 hanapaa sshd\[13927\]: Invalid user nevergetroot from 112.217.225.61 Oct 25 05:12:30 hanapaa sshd\[13927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.225.61 Oct 25 05:12:32 hanapaa sshd\[13927\]: Failed password for invalid user nevergetroot from 112.217.225.61 port 56556 ssh2 Oct 25 05:17:11 hanapaa sshd\[14330\]: Invalid user zhangjinai from 112.217.225.61 Oct 25 05:17:11 hanapaa sshd\[14330\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.225.61	2019-10-25 23:34:26
106.13.130.66	attackbots	2019-10-25T17:40:39.869537scmdmz1 sshd\[28029\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 user=root 2019-10-25T17:40:42.304598scmdmz1 sshd\[28029\]: Failed password for root from 106.13.130.66 port 36316 ssh2 2019-10-25T17:45:12.229585scmdmz1 sshd\[28386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66 user=root ...	2019-10-25 23:55:10
103.110.17.69	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-25 23:53:37
2a0a:7d80:1:7::110	attack	xmlrpc attack	2019-10-25 23:33:34
197.114.64.94	attackspambots	Oct 25 14:01:13 mxgate1 postfix/postscreen[20152]: CONNECT from [197.114.64.94]:40457 to [176.31.12.44]:25 Oct 25 14:01:13 mxgate1 postfix/dnsblog[20677]: addr 197.114.64.94 listed by domain zen.spamhaus.org as 127.0.0.11 Oct 25 14:01:19 mxgate1 postfix/postscreen[20152]: DNSBL rank 2 for [197.114.64.94]:40457 Oct x@x Oct 25 14:01:19 mxgate1 postfix/postscreen[20152]: HANGUP after 0.86 from [197.114.64.94]:40457 in tests after SMTP handshake Oct 25 14:01:19 mxgate1 postfix/postscreen[20152]: DISCONNECT [197.114.64.94]:40457 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=197.114.64.94	2019-10-26 00:14:37
106.13.183.92	attackbots	Oct 24 23:17:53 xb0 sshd[32542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.183.92 user=r.r Oct 24 23:17:55 xb0 sshd[32542]: Failed password for r.r from 106.13.183.92 port 50168 ssh2 Oct 24 23:17:55 xb0 sshd[32542]: Received disconnect from 106.13.183.92: 11: Bye Bye [preauth] Oct 24 23:35:55 xb0 sshd[30396]: Failed password for invalid user oracle from 106.13.183.92 port 53412 ssh2 Oct 24 23:35:56 xb0 sshd[30396]: Received disconnect from 106.13.183.92: 11: Bye Bye [preauth] Oct 24 23:40:09 xb0 sshd[18354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.183.92 user=r.r Oct 24 23:40:11 xb0 sshd[18354]: Failed password for r.r from 106.13.183.92 port 34930 ssh2 Oct 24 23:40:11 xb0 sshd[18354]: Received disconnect from 106.13.183.92: 11: Bye Bye [preauth] Oct 24 23:44:20 xb0 sshd[8774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rho........ -------------------------------	2019-10-25 23:40:26

最近上报的IP列表

203.20.165.197	8.117.133.75	113.188.69.76	49.167.183.50
80.88.90.35	128.231.99.86	112.249.195.97	119.60.134.161
68.132.14.195	103.112.13.193	144.176.175.250	116.107.157.134
44.174.162.1	38.140.226.72	24.37.234.186	27.0.247.34
146.172.89.186	222.175.243.82	192.250.8.197	163.46.48.211