城市(city): Los Angeles
省份(region): California
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 138.198.0.0 - 138.199.95.255
CIDR: 138.199.0.0/18, 138.199.64.0/19, 138.198.0.0/16
NetName: RIPE-ERX-138-198-0-0
NetHandle: NET-138-198-0-0-1
Parent: NET138 (NET-138-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2003-12-11
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/138.198.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.199.35.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2966
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;138.199.35.5. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025101001 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 11 03:30:03 CST 2025
;; MSG SIZE rcvd: 1055.35.199.138.in-addr.arpa domain name pointer unn-138-199-35-5.datapacket.com.
b'5.35.199.138.in-addr.arpa name = unn-138-199-35-5.datapacket.com.
Authoritative answers can be found from:
'| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 40.118.226.96 | attackbots | Ssh brute force |
2020-10-06 12:59:40 |
| 213.227.182.93 | attackbots | Email spam message |
2020-10-06 12:57:20 |
| 185.202.2.130 | attackspambots | RDP Brute-Force (honeypot 2) |
2020-10-06 12:35:50 |
| 106.54.202.131 | attackbotsspam | Oct 6 04:47:12 melroy-server sshd[9438]: Failed password for root from 106.54.202.131 port 36568 ssh2 ... |
2020-10-06 12:48:15 |
| 189.240.3.169 | attackbots | Repeated RDP login failures. Last user: administrator |
2020-10-06 12:35:33 |
| 188.27.241.253 | attackbotsspam | Automatic report - Banned IP Access |
2020-10-06 12:29:41 |
| 81.71.83.135 | attackbots | Ssh brute force |
2020-10-06 13:03:41 |
| 191.5.182.251 | attackspambots | port scan and connect, tcp 23 (telnet) |
2020-10-06 12:24:25 |
| 61.240.148.110 | attackspambots | Port Scan ... |
2020-10-06 12:58:32 |
| 193.169.254.37 | attackspambots | Repeated RDP login failures. Last user: wwzy |
2020-10-06 12:37:57 |
| 45.146.165.80 | attackbotsspam | 2020-10-06T00:12:02Z - RDP login failed multiple times. (45.146.165.80) |
2020-10-06 12:36:58 |
| 203.159.249.215 | attack | Oct 6 04:31:30 server sshd[8254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.159.249.215 user=root Oct 6 04:31:31 server sshd[8254]: Failed password for invalid user root from 203.159.249.215 port 53336 ssh2 Oct 6 04:39:22 server sshd[8853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.159.249.215 user=root Oct 6 04:39:24 server sshd[8853]: Failed password for invalid user root from 203.159.249.215 port 56698 ssh2 |
2020-10-06 12:33:01 |
| 118.89.30.90 | attackbotsspam | $f2bV_matches |
2020-10-06 12:26:48 |
| 180.165.229.187 | attackbots | Oct 6 03:45:24 jumpserver sshd[516932]: Failed password for root from 180.165.229.187 port 60184 ssh2 Oct 6 03:49:08 jumpserver sshd[516974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.165.229.187 user=root Oct 6 03:49:11 jumpserver sshd[516974]: Failed password for root from 180.165.229.187 port 52900 ssh2 ... |
2020-10-06 13:00:43 |
| 118.99.104.151 | attack | Oct 6 06:09:43 plg sshd[1711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.99.104.151 user=root Oct 6 06:09:44 plg sshd[1711]: Failed password for invalid user root from 118.99.104.151 port 35878 ssh2 Oct 6 06:10:56 plg sshd[1736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.99.104.151 user=root Oct 6 06:10:58 plg sshd[1736]: Failed password for invalid user root from 118.99.104.151 port 50764 ssh2 Oct 6 06:12:14 plg sshd[1753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.99.104.151 user=root Oct 6 06:12:16 plg sshd[1753]: Failed password for invalid user root from 118.99.104.151 port 37418 ssh2 Oct 6 06:13:31 plg sshd[1773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.99.104.151 user=root ... |
2020-10-06 12:42:47 |