218.21.131.118

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 218.21.131.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29884
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;218.21.131.118.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091302 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Sep 14 05:53:20 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 118.131.21.218.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 118.131.21.218.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.154.253.20	attack	2019-09-27 12:01:21,675 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 198.154.253.20 2019-09-27 12:35:14,165 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 198.154.253.20 2019-09-27 13:07:15,628 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 198.154.253.20 2019-09-27 13:39:28,555 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 198.154.253.20 2019-09-27 14:11:55,419 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 198.154.253.20 ...	2019-09-27 23:29:14
119.10.177.94	attackspam	postfix (unknown user, SPF fail or relay access denied)	2019-09-27 23:24:38
134.73.76.95	attackspambots	Postfix DNSBL listed. Trying to send SPAM.	2019-09-27 23:42:02
112.13.91.29	attackbots	Sep 27 17:30:31 nextcloud sshd\[23504\]: Invalid user rosa from 112.13.91.29 Sep 27 17:30:31 nextcloud sshd\[23504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.13.91.29 Sep 27 17:30:33 nextcloud sshd\[23504\]: Failed password for invalid user rosa from 112.13.91.29 port 3548 ssh2 ...	2019-09-28 00:08:38
140.143.90.154	attack	Sep 27 22:26:04 webhost01 sshd[22519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.90.154 Sep 27 22:26:06 webhost01 sshd[22519]: Failed password for invalid user ts2 from 140.143.90.154 port 50618 ssh2 ...	2019-09-27 23:55:08
134.175.153.238	attackspam	Sep 27 17:41:49 OPSO sshd\[32301\]: Invalid user nexus from 134.175.153.238 port 36654 Sep 27 17:41:49 OPSO sshd\[32301\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.153.238 Sep 27 17:41:51 OPSO sshd\[32301\]: Failed password for invalid user nexus from 134.175.153.238 port 36654 ssh2 Sep 27 17:46:58 OPSO sshd\[964\]: Invalid user oracle from 134.175.153.238 port 45196 Sep 27 17:46:58 OPSO sshd\[964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.153.238	2019-09-27 23:53:39
112.161.203.170	attackspam	Sep 27 15:34:08 venus sshd\[20942\]: Invalid user ying from 112.161.203.170 port 40340 Sep 27 15:34:08 venus sshd\[20942\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.161.203.170 Sep 27 15:34:10 venus sshd\[20942\]: Failed password for invalid user ying from 112.161.203.170 port 40340 ssh2 ...	2019-09-27 23:52:59
103.40.235.215	attackspam	Sep 27 14:27:41 sshgateway sshd\[21772\]: Invalid user gaynor from 103.40.235.215 Sep 27 14:27:41 sshgateway sshd\[21772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.40.235.215 Sep 27 14:27:43 sshgateway sshd\[21772\]: Failed password for invalid user gaynor from 103.40.235.215 port 35760 ssh2	2019-09-27 23:45:16
46.38.144.146	attackspam	Sep 27 17:08:09 webserver postfix/smtpd\[5817\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 17:10:00 webserver postfix/smtpd\[6707\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 17:11:51 webserver postfix/smtpd\[5817\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 17:13:38 webserver postfix/smtpd\[5817\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 17:15:33 webserver postfix/smtpd\[5817\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-27 23:33:18
89.189.176.17	attackspam	postfix (unknown user, SPF fail or relay access denied)	2019-09-27 23:33:01
77.247.110.227	attackbots	\[2019-09-27 17:12:34\] SECURITY\[1715\] res_security_log.c: SecurityEvent="InvalidAccountID",EventTV="2019-09-27T17:12:34.921+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="corporates",SessionID="615104606-869836112-1615285695",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/77.247.110.227/55335" \[2019-09-27 17:12:36\] SECURITY\[1715\] res_security_log.c: SecurityEvent="InvalidAccountID",EventTV="2019-09-27T17:12:36.671+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="corporates",SessionID="365056738-1423117577-459524344",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/77.247.110.227/58972" \[2019-09-27 17:12:39\] SECURITY\[1715\] res_security_log.c: SecurityEvent="InvalidAccountID",EventTV="2019-09-27T17:12:39.635+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="corporates",SessionID="1275864300-1953858748-1854672768",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/77.247.110.227/62747" \[20	2019-09-27 23:26:34
52.64.168.0	attack	langenachtfulda.de 52.64.168.0 \[27/Sep/2019:14:12:08 +0200\] "POST /wp-login.php HTTP/1.1" 200 6029 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" langenachtfulda.de 52.64.168.0 \[27/Sep/2019:14:12:11 +0200\] "POST /wp-login.php HTTP/1.1" 200 5992 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-09-27 23:24:09
192.162.193.243	attack	postfix	2019-09-27 23:56:35
34.234.178.106	attackbots	SSH brutforce	2019-09-27 23:39:50
66.186.181.47	attack	RDP Bruteforce	2019-09-28 00:04:37

Recently Reported IPs

201.55.126.57	185.166.131.147	135.197.108.74	184.119.192.27
79.56.223.60	163.242.118.232	222.186.180.19	180.126.1.39
146.151.174.194	100.67.234.177	180.58.5.254	32.251.228.52
19.9.91.166	19.146.117.229	53.46.215.10	245.217.254.28
74.93.86.194	209.20.154.146	186.40.249.162	204.64.83.209