城市(city): Köln
省份(region): Nordrhein-Westfalen
国家(country): Germany
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 139.6.0.0 - 139.8.255.255
CIDR: 139.8.0.0/16, 139.6.0.0/15
NetName: RIPE-ERX-139-6-0-0
NetHandle: NET-139-6-0-0-1
Parent: NET139 (NET-139-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2015-09-04
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/139.6.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.6.182.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61992
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.6.182.57. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026031900 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 19 22:37:15 CST 2026
;; MSG SIZE rcvd: 10557.182.6.139.in-addr.arpa domain name pointer f03-itmk-434-01.f03-itmk.FH-Koeln.DE.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
57.182.6.139.in-addr.arpa name = f03-itmk-434-01.f03-itmk.FH-Koeln.DE.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 59.46.199.227 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-02-05 05:32:26 |
| 222.186.15.166 | attack | $f2bV_matches |
2020-02-05 04:56:33 |
| 200.207.143.17 | attackbotsspam | 02/04/2020-15:20:29.615861 200.207.143.17 Protocol: 1 GPL SCAN PING NMAP |
2020-02-05 05:05:24 |
| 95.25.2.225 | attackbots | port scan and connect, tcp 23 (telnet) |
2020-02-05 04:56:46 |
| 89.248.168.41 | attack | Port 1804 scan denied |
2020-02-05 05:35:47 |
| 200.91.225.60 | attack | Honeypot attack, port: 445, PTR: 60.225.91.200.static.host.ifxnetworks.com. |
2020-02-05 04:54:26 |
| 113.172.11.87 | attackbotsspam | Brute force attempt |
2020-02-05 05:01:05 |
| 221.13.9.50 | attack | $f2bV_matches |
2020-02-05 05:09:05 |
| 45.143.222.132 | attack | Feb 4 21:13:52 mxgate1 postfix/postscreen[19461]: CONNECT from [45.143.222.132]:53442 to [176.31.12.44]:25 Feb 4 21:13:52 mxgate1 postfix/dnsblog[19463]: addr 45.143.222.132 listed by domain zen.spamhaus.org as 127.0.0.4 Feb 4 21:13:52 mxgate1 postfix/dnsblog[19463]: addr 45.143.222.132 listed by domain zen.spamhaus.org as 127.0.0.3 Feb 4 21:13:52 mxgate1 postfix/dnsblog[19464]: addr 45.143.222.132 listed by domain cbl.abuseat.org as 127.0.0.2 Feb 4 21:13:58 mxgate1 postfix/postscreen[19461]: DNSBL rank 3 for [45.143.222.132]:53442 Feb x@x Feb 4 21:13:59 mxgate1 postfix/postscreen[19461]: DISCONNECT [45.143.222.132]:53442 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.143.222.132 |
2020-02-05 05:02:13 |
| 91.195.136.56 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 04-02-2020 20:20:17. |
2020-02-05 05:21:33 |
| 139.59.43.98 | attackbotsspam | Feb 4 21:12:44 MK-Soft-VM3 sshd[29454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.43.98 Feb 4 21:12:44 MK-Soft-VM3 sshd[29454]: Failed password for invalid user butter from 139.59.43.98 port 43172 ssh2 ... |
2020-02-05 05:31:33 |
| 144.217.170.235 | attackspam | Feb 4 22:09:26 Ubuntu-1404-trusty-64-minimal sshd\[6371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.170.235 user=root Feb 4 22:09:28 Ubuntu-1404-trusty-64-minimal sshd\[6371\]: Failed password for root from 144.217.170.235 port 49160 ssh2 Feb 4 22:10:53 Ubuntu-1404-trusty-64-minimal sshd\[7941\]: Invalid user nwes from 144.217.170.235 Feb 4 22:10:53 Ubuntu-1404-trusty-64-minimal sshd\[7941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.170.235 Feb 4 22:10:55 Ubuntu-1404-trusty-64-minimal sshd\[7941\]: Failed password for invalid user nwes from 144.217.170.235 port 35096 ssh2 |
2020-02-05 05:12:11 |
| 41.139.171.139 | attack | Brute force attempt |
2020-02-05 05:06:59 |
| 191.31.20.17 | attack | Lines containing failures of 191.31.20.17 Feb 4 20:55:31 nexus sshd[7889]: Invalid user css from 191.31.20.17 port 49878 Feb 4 20:55:31 nexus sshd[7889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.31.20.17 Feb 4 20:55:33 nexus sshd[7889]: Failed password for invalid user css from 191.31.20.17 port 49878 ssh2 Feb 4 20:55:33 nexus sshd[7889]: Received disconnect from 191.31.20.17 port 49878:11: Bye Bye [preauth] Feb 4 20:55:33 nexus sshd[7889]: Disconnected from 191.31.20.17 port 49878 [preauth] Feb 4 21:14:59 nexus sshd[11845]: Invalid user felins from 191.31.20.17 port 44332 Feb 4 21:14:59 nexus sshd[11845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.31.20.17 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=191.31.20.17 |
2020-02-05 05:05:54 |
| 200.129.246.10 | attackbotsspam | Feb 4 14:54:17 newdogma sshd[26645]: Invalid user rypdal from 200.129.246.10 port 24373 Feb 4 14:54:17 newdogma sshd[26645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.129.246.10 Feb 4 14:54:19 newdogma sshd[26645]: Failed password for invalid user rypdal from 200.129.246.10 port 24373 ssh2 Feb 4 14:54:19 newdogma sshd[26645]: Received disconnect from 200.129.246.10 port 24373:11: Bye Bye [preauth] Feb 4 14:54:19 newdogma sshd[26645]: Disconnected from 200.129.246.10 port 24373 [preauth] Feb 4 15:12:18 newdogma sshd[26986]: Invalid user bushujeva from 200.129.246.10 port 4740 Feb 4 15:12:18 newdogma sshd[26986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.129.246.10 Feb 4 15:12:20 newdogma sshd[26986]: Failed password for invalid user bushujeva from 200.129.246.10 port 4740 ssh2 Feb 4 15:12:20 newdogma sshd[26986]: Received disconnect from 200.129.246.10 port 4740:1........ ------------------------------- |
2020-02-05 05:14:24 |