城市(city): unknown
省份(region): unknown
国家(country): Italy
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 128.66.59.2 | spamattack | 攻击性,垃圾软件 |
2026-02-28 14:35:27 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 128.66.0.0 - 128.66.255.255
CIDR: 128.66.0.0/16
NetName: RIPE-ERX-128-66-0-0
NetHandle: NET-128-66-0-0-1
Parent: NET128 (NET-128-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2010-11-03
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/128.66.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.66.59.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20865
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;128.66.59.195. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026022801 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 28 14:35:48 CST 2026
;; MSG SIZE rcvd: 106Host 195.59.66.128.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 195.59.66.128.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 49.88.112.68 | attack | Apr 10 08:15:17 eventyay sshd[22831]: Failed password for root from 49.88.112.68 port 13389 ssh2 Apr 10 08:15:59 eventyay sshd[22844]: Failed password for root from 49.88.112.68 port 58298 ssh2 ... |
2020-04-10 14:28:04 |
| 185.175.93.23 | attackspambots | Apr 10 08:22:50 debian-2gb-nbg1-2 kernel: \[8758779.258275\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.23 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=21094 PROTO=TCP SPT=54647 DPT=5927 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-10 14:32:27 |
| 91.134.142.57 | attack | 91.134.142.57 - - [10/Apr/2020:08:35:36 +0200] "POST /wp-login.php HTTP/1.0" 200 2195 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.134.142.57 - - [10/Apr/2020:08:35:36 +0200] "POST /wp-login.php HTTP/1.0" 200 2173 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-04-10 14:53:47 |
| 82.131.207.234 | attackspam | Apr 10 05:56:27 debian-2gb-nbg1-2 kernel: \[8749996.345499\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=82.131.207.234 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=51 ID=22597 PROTO=TCP SPT=38968 DPT=8089 WINDOW=26563 RES=0x00 SYN URGP=0 |
2020-04-10 14:34:03 |
| 116.196.70.88 | attackspambots | Apr 10 07:50:52 * sshd[7194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.70.88 Apr 10 07:50:54 * sshd[7194]: Failed password for invalid user postgres from 116.196.70.88 port 61285 ssh2 |
2020-04-10 14:30:45 |
| 111.229.143.161 | attackbotsspam | Apr 10 07:21:00 v22018086721571380 sshd[13049]: Failed password for invalid user year from 111.229.143.161 port 44992 ssh2 |
2020-04-10 14:12:26 |
| 45.55.219.114 | attackspambots | Apr 10 07:38:57 mail1 sshd\[11736\]: Invalid user peter from 45.55.219.114 port 41732 Apr 10 07:38:57 mail1 sshd\[11736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.219.114 Apr 10 07:38:59 mail1 sshd\[11736\]: Failed password for invalid user peter from 45.55.219.114 port 41732 ssh2 Apr 10 07:45:43 mail1 sshd\[14623\]: Invalid user vagrant1 from 45.55.219.114 port 44148 Apr 10 07:45:43 mail1 sshd\[14623\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.219.114 ... |
2020-04-10 14:53:07 |
| 173.89.163.88 | attackspambots | ssh brute force |
2020-04-10 14:39:06 |
| 95.143.218.78 | attackbotsspam | Unauthorized access detected from black listed ip! |
2020-04-10 14:36:06 |
| 148.70.209.112 | attackspam | Apr 10 08:16:10 host sshd[58605]: Invalid user admin from 148.70.209.112 port 38644 ... |
2020-04-10 14:28:24 |
| 37.139.1.197 | attackspam | Apr 10 08:17:58 mailserver sshd\[23564\]: Invalid user ubuntu from 37.139.1.197 ... |
2020-04-10 14:23:44 |
| 80.38.165.87 | attack | Apr 10 05:23:48 server sshd[29685]: Failed password for invalid user hadoop from 80.38.165.87 port 47502 ssh2 Apr 10 05:48:15 server sshd[2732]: Failed password for root from 80.38.165.87 port 48905 ssh2 Apr 10 05:56:29 server sshd[4861]: Failed password for invalid user deploy from 80.38.165.87 port 49387 ssh2 |
2020-04-10 14:31:01 |
| 139.59.161.78 | attack | Apr 10 04:20:49 localhost sshd[81451]: Invalid user jurlenis from 139.59.161.78 port 15239 Apr 10 04:20:49 localhost sshd[81451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.161.78 Apr 10 04:20:49 localhost sshd[81451]: Invalid user jurlenis from 139.59.161.78 port 15239 Apr 10 04:20:50 localhost sshd[81451]: Failed password for invalid user jurlenis from 139.59.161.78 port 15239 ssh2 Apr 10 04:24:15 localhost sshd[81848]: Invalid user castis from 139.59.161.78 port 25786 ... |
2020-04-10 14:31:49 |
| 117.48.208.43 | attackspambots | Apr 10 05:56:47 haigwepa sshd[11141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.208.43 Apr 10 05:56:49 haigwepa sshd[11141]: Failed password for invalid user oracle from 117.48.208.43 port 52268 ssh2 ... |
2020-04-10 14:14:48 |
| 158.69.195.175 | attack | Brute-force attempt banned |
2020-04-10 14:54:56 |