18.201.138.116

基本信息:

城市(city): Dublin

省份(region): Leinster

国家(country): Ireland

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       18.32.0.0 - 18.255.255.255
CIDR:           18.32.0.0/11, 18.64.0.0/10, 18.128.0.0/9
NetName:        AT-88-Z
NetHandle:      NET-18-32-0-0-1
Parent:         NET18 (NET-18-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Amazon Technologies Inc. (AT-88-Z)
RegDate:        2019-10-07
Updated:        2021-02-10
Ref:            https://rdap.arin.net/registry/ip/18.32.0.0



OrgName:        Amazon Technologies Inc.
OrgId:          AT-88-Z
Address:        410 Terry Ave N.
City:           Seattle
StateProv:      WA
PostalCode:     98109
Country:        US
RegDate:        2011-12-08
Updated:        2024-01-24
Comment:        All abuse reports MUST include:
Comment:        * src IP
Comment:        * dest IP (your IP)
Comment:        * dest port
Comment:        * Accurate date/timestamp and timezone of activity
Comment:        * Intensity/frequency (short log extracts)
Comment:        * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref:            https://rdap.arin.net/registry/entity/AT-88-Z


OrgRoutingHandle: ARMP-ARIN
OrgRoutingName:   AWS RPKI Management POC
OrgRoutingPhone:  +1-206-555-0000 
OrgRoutingEmail:  aws-rpki-routing-poc@amazon.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/ARMP-ARIN

OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName:   IP Routing
OrgRoutingPhone:  +1-206-555-0000 
OrgRoutingEmail:  aws-routing-poc@amazon.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/IPROU3-ARIN

OrgNOCHandle: AANO1-ARIN
OrgNOCName:   Amazon AWS Network Operations
OrgNOCPhone:  +1-206-555-0000 
OrgNOCEmail:  amzn-noc-contact@amazon.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/AANO1-ARIN

OrgTechHandle: ANO24-ARIN
OrgTechName:   Amazon EC2 Network Operations
OrgTechPhone:  +1-206-555-0000 
OrgTechEmail:  amzn-noc-contact@amazon.com
OrgTechRef:    https://rdap.arin.net/registry/entity/ANO24-ARIN

OrgAbuseHandle: AEA8-ARIN
OrgAbuseName:   Amazon EC2 Abuse
OrgAbusePhone:  +1-206-555-0000 
OrgAbuseEmail:  trustandsafety@support.aws.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/AEA8-ARIN

# end


# start

NetRange:       18.201.0.0 - 18.201.255.255
CIDR:           18.201.0.0/16
NetName:        AMAZON-DUB
NetHandle:      NET-18-201-0-0-1
Parent:         AT-88-Z (NET-18-32-0-0-1)
NetType:        Reallocated
OriginAS:       
Organization:   Amazon Data Services Ireland Limited (ADSIL-1)
RegDate:        2018-04-19
Updated:        2021-02-10
Ref:            https://rdap.arin.net/registry/ip/18.201.0.0



OrgName:        Amazon Data Services Ireland Limited
OrgId:          ADSIL-1
Address:        Unit 4033, Citywest Avenue Citywest Business Park
City:           Dublin
StateProv:      D24
PostalCode:     
Country:        IE
RegDate:        2014-07-18
Updated:        2014-07-18
Ref:            https://rdap.arin.net/registry/entity/ADSIL-1


OrgNOCHandle: AANO1-ARIN
OrgNOCName:   Amazon AWS Network Operations
OrgNOCPhone:  +1-206-555-0000 
OrgNOCEmail:  amzn-noc-contact@amazon.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/AANO1-ARIN

OrgAbuseHandle: AEA8-ARIN
OrgAbuseName:   Amazon EC2 Abuse
OrgAbusePhone:  +1-206-555-0000 
OrgAbuseEmail:  trustandsafety@support.aws.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/AEA8-ARIN

OrgTechHandle: ANO24-ARIN
OrgTechName:   Amazon EC2 Network Operations
OrgTechPhone:  +1-206-555-0000 
OrgTechEmail:  amzn-noc-contact@amazon.com
OrgTechRef:    https://rdap.arin.net/registry/entity/ANO24-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.201.138.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49054
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;18.201.138.116.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025101201 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 13 10:00:56 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

b'116.138.201.18.in-addr.arpa domain name pointer ec2-18-201-138-116.eu-west-1.compute.amazonaws.com.
'

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
116.138.201.18.in-addr.arpa	name = ec2-18-201-138-116.eu-west-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
165.227.157.168	attackspambots	Dec 4 09:38:20 tdfoods sshd\[30392\]: Invalid user aminudin from 165.227.157.168 Dec 4 09:38:20 tdfoods sshd\[30392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.157.168 Dec 4 09:38:21 tdfoods sshd\[30392\]: Failed password for invalid user aminudin from 165.227.157.168 port 41292 ssh2 Dec 4 09:43:47 tdfoods sshd\[31034\]: Invalid user mylinux from 165.227.157.168 Dec 4 09:43:47 tdfoods sshd\[31034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.157.168	2019-12-05 03:55:03
35.229.92.83	attack	Dec 4 20:21:54 eventyay sshd[26372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.229.92.83 Dec 4 20:21:56 eventyay sshd[26372]: Failed password for invalid user drageset from 35.229.92.83 port 47076 ssh2 Dec 4 20:28:17 eventyay sshd[26698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.229.92.83 ...	2019-12-05 03:34:20
41.80.35.78	attackbotsspam	Dec 2 11:59:26 newdogma sshd[2267]: Invalid user zebra from 41.80.35.78 port 36400 Dec 2 11:59:26 newdogma sshd[2267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.80.35.78 Dec 2 11:59:28 newdogma sshd[2267]: Failed password for invalid user zebra from 41.80.35.78 port 36400 ssh2 Dec 2 11:59:28 newdogma sshd[2267]: Received disconnect from 41.80.35.78 port 36400:11: Bye Bye [preauth] Dec 2 11:59:28 newdogma sshd[2267]: Disconnected from 41.80.35.78 port 36400 [preauth] Dec 2 12:11:36 newdogma sshd[2455]: Invalid user endah from 41.80.35.78 port 55098 Dec 2 12:11:36 newdogma sshd[2455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.80.35.78 Dec 2 12:11:38 newdogma sshd[2455]: Failed password for invalid user endah from 41.80.35.78 port 55098 ssh2 Dec 2 12:11:38 newdogma sshd[2455]: Received disconnect from 41.80.35.78 port 55098:11: Bye Bye [preauth] Dec 2 12:11:38 newdog........ -------------------------------	2019-12-05 03:30:39
182.254.184.247	attack	Repeated brute force against a port	2019-12-05 03:24:44
112.85.42.176	attack	Dec 4 19:58:44 localhost sshd\[71752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root Dec 4 19:58:47 localhost sshd\[71752\]: Failed password for root from 112.85.42.176 port 21894 ssh2 Dec 4 19:58:50 localhost sshd\[71752\]: Failed password for root from 112.85.42.176 port 21894 ssh2 Dec 4 19:58:53 localhost sshd\[71752\]: Failed password for root from 112.85.42.176 port 21894 ssh2 Dec 4 19:58:56 localhost sshd\[71752\]: Failed password for root from 112.85.42.176 port 21894 ssh2 ...	2019-12-05 04:00:19
103.50.37.55	attackspambots	Dec 4 20:40:24 vps647732 sshd[4676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.50.37.55 Dec 4 20:40:26 vps647732 sshd[4676]: Failed password for invalid user cosmo from 103.50.37.55 port 30713 ssh2 ...	2019-12-05 03:45:24
187.190.236.88	attackbots	Dec 4 12:00:43 work-partkepr sshd\[2264\]: Invalid user yoyo from 187.190.236.88 port 42176 Dec 4 12:00:43 work-partkepr sshd\[2264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.190.236.88 ...	2019-12-05 03:22:36
94.191.58.157	attackbots	Dec 4 06:10:03 kapalua sshd\[24578\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.58.157 user=root Dec 4 06:10:05 kapalua sshd\[24578\]: Failed password for root from 94.191.58.157 port 49892 ssh2 Dec 4 06:18:33 kapalua sshd\[25295\]: Invalid user yoyo from 94.191.58.157 Dec 4 06:18:33 kapalua sshd\[25295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.58.157 Dec 4 06:18:35 kapalua sshd\[25295\]: Failed password for invalid user yoyo from 94.191.58.157 port 58300 ssh2	2019-12-05 03:23:07
110.49.71.249	attackbotsspam	Dec 4 12:13:43 MK-Soft-VM8 sshd[6069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.249 Dec 4 12:13:46 MK-Soft-VM8 sshd[6069]: Failed password for invalid user vink from 110.49.71.249 port 42682 ssh2 ...	2019-12-05 03:25:02
109.136.242.203	attack	Dec 4 12:13:52 mailserver dovecot: auth-worker(41141): sql([hidden],109.136.242.203,): unknown user Dec 4 12:13:54 mailserver dovecot: imap-login: Aborted login (auth failed, 1 attempts in 2 secs): user=<[hidden]>, method=PLAIN, rip=109.136.242.203, lip=[hidden], TLS, session= Dec 4 12:13:58 mailserver dovecot: auth-worker(41141): sql([hidden],109.136.242.203,): unknown user Dec 4 12:14:00 mailserver dovecot: imap-login: Aborted login (auth failed, 1 attempts in 6 secs): user=<[hidden]>, method=PLAIN, rip=109.136.242.203, lip=[hidden], TLS, session= Dec 4 12:14:04 mailserver dovecot: auth-worker(41141): sql([hidden],109.136.242.203,): unknown user Dec 4 12:14:06 mailserver dovecot: imap-login: Aborted login (auth failed, 1 attempts in 6 secs): user=<[hidden]>, method=PLAIN, rip=109.136.242.203, lip=[hidden], TLS, session= Dec 4 15:05:18 mailserver dovecot: auth-worker(43210): sql([hidden],109.136	2019-12-05 03:21:51
122.51.140.164	attackspam	Lines containing failures of 122.51.140.164 Dec 3 09:37:19 myhost sshd[19470]: Invalid user cussey from 122.51.140.164 port 55846 Dec 3 09:37:19 myhost sshd[19470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.140.164 Dec 3 09:37:21 myhost sshd[19470]: Failed password for invalid user cussey from 122.51.140.164 port 55846 ssh2 Dec 3 09:37:21 myhost sshd[19470]: Received disconnect from 122.51.140.164 port 55846:11: Bye Bye [preauth] Dec 3 09:37:21 myhost sshd[19470]: Disconnected from invalid user cussey 122.51.140.164 port 55846 [preauth] Dec 3 09:51:23 myhost sshd[19544]: User r.r from 122.51.140.164 not allowed because not listed in AllowUsers Dec 3 09:51:23 myhost sshd[19544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.140.164 user=r.r Dec 3 09:51:25 myhost sshd[19544]: Failed password for invalid user r.r from 122.51.140.164 port 46762 ssh2 Dec 3 09:51:25 ........ ------------------------------	2019-12-05 03:29:01
202.215.36.230	attack	Dec 4 20:12:07 markkoudstaal sshd[522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.215.36.230 Dec 4 20:12:08 markkoudstaal sshd[522]: Failed password for invalid user oyao from 202.215.36.230 port 55950 ssh2 Dec 4 20:18:57 markkoudstaal sshd[1245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.215.36.230	2019-12-05 03:26:29
91.134.242.199	attackbots	F2B jail: sshd. Time: 2019-12-04 20:12:48, Reported by: VKReport	2019-12-05 03:21:26
120.89.64.8	attack	Dec 4 20:20:59 OPSO sshd\[20083\]: Invalid user pertti from 120.89.64.8 port 52646 Dec 4 20:20:59 OPSO sshd\[20083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.89.64.8 Dec 4 20:21:00 OPSO sshd\[20083\]: Failed password for invalid user pertti from 120.89.64.8 port 52646 ssh2 Dec 4 20:28:04 OPSO sshd\[21884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.89.64.8 user=root Dec 4 20:28:06 OPSO sshd\[21884\]: Failed password for root from 120.89.64.8 port 60698 ssh2	2019-12-05 03:46:12
222.186.173.180	attackspambots	Dec 4 14:55:48 TORMINT sshd\[25381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Dec 4 14:55:50 TORMINT sshd\[25381\]: Failed password for root from 222.186.173.180 port 49346 ssh2 Dec 4 14:56:06 TORMINT sshd\[25383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root ...	2019-12-05 03:59:58

最近上报的IP列表

8.219.231.66	8.219.246.23	10.30.9.188	3.252.240.65
1.0.252.79	87.120.191.104	110.45.57.215	105.253.69.54
54.220.65.236	35.90.128.170	111.170.14.34	34.247.173.158
3.101.132.86	249.218.192.18	43.162.110.150	162.216.149.45
10.199.254.231	192.168.89.129	146.146.146.146	200.1.1.1