城市(city): unknown
省份(region): unknown
国家(country): United Kingdom
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 149.191.0.0 - 149.197.255.255
CIDR: 149.196.0.0/15, 149.191.0.0/16, 149.192.0.0/14
NetName: RIPE-ERX-149-177-0-0
NetHandle: NET-149-191-0-0-1
Parent: NET149 (NET-149-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2003-10-15
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/149.191.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.194.130.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58298
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;149.194.130.148. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026040300 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 03 16:19:54 CST 2026
;; MSG SIZE rcvd: 108Host 148.130.194.149.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 148.130.194.149.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 79.124.62.51 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 63 - port: 4245 proto: TCP cat: Misc Attack |
2020-03-20 23:58:59 |
| 185.156.73.67 | attack | 03/20/2020-11:36:50.197221 185.156.73.67 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-03-20 23:37:56 |
| 185.176.27.166 | attackbots | Mar 20 16:22:48 debian-2gb-nbg1-2 kernel: \[6976870.602787\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.166 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=6991 PROTO=TCP SPT=55956 DPT=62410 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-20 23:30:22 |
| 222.186.15.91 | attack | Mar 20 13:02:26 firewall sshd[30879]: Failed password for root from 222.186.15.91 port 27748 ssh2 Mar 20 13:02:29 firewall sshd[30879]: Failed password for root from 222.186.15.91 port 27748 ssh2 Mar 20 13:02:32 firewall sshd[30879]: Failed password for root from 222.186.15.91 port 27748 ssh2 ... |
2020-03-21 00:08:46 |
| 124.156.50.96 | attackspam | Unauthorized connection attempt detected from IP address 124.156.50.96 to port 8443 |
2020-03-21 00:17:17 |
| 87.251.74.9 | attack | 03/20/2020-09:58:27.934320 87.251.74.9 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-03-20 23:50:56 |
| 94.102.56.181 | attack | firewall-block, port(s): 3726/tcp |
2020-03-20 23:45:20 |
| 185.158.250.78 | attackbotsspam | Port 22 Scan, PTR: None |
2020-03-21 00:09:04 |
| 49.88.112.55 | attackspam | Mar 20 16:50:06 SilenceServices sshd[6678]: Failed password for root from 49.88.112.55 port 55560 ssh2 Mar 20 16:50:18 SilenceServices sshd[6678]: Failed password for root from 49.88.112.55 port 55560 ssh2 Mar 20 16:50:22 SilenceServices sshd[6678]: Failed password for root from 49.88.112.55 port 55560 ssh2 Mar 20 16:50:22 SilenceServices sshd[6678]: error: maximum authentication attempts exceeded for root from 49.88.112.55 port 55560 ssh2 [preauth] |
2020-03-21 00:09:55 |
| 46.64.167.233 | attackbots | Automatic report - Port Scan Attack |
2020-03-21 00:30:12 |
| 222.186.175.215 | attackspam | Mar 20 16:27:37 localhost sshd[118044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Mar 20 16:27:39 localhost sshd[118044]: Failed password for root from 222.186.175.215 port 14932 ssh2 Mar 20 16:27:42 localhost sshd[118044]: Failed password for root from 222.186.175.215 port 14932 ssh2 Mar 20 16:27:37 localhost sshd[118044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Mar 20 16:27:39 localhost sshd[118044]: Failed password for root from 222.186.175.215 port 14932 ssh2 Mar 20 16:27:42 localhost sshd[118044]: Failed password for root from 222.186.175.215 port 14932 ssh2 Mar 20 16:27:37 localhost sshd[118044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Mar 20 16:27:39 localhost sshd[118044]: Failed password for root from 222.186.175.215 port 14932 ssh2 Mar 20 16:27:42 localhost ... |
2020-03-21 00:28:25 |
| 95.188.80.36 | attackbots | DATE:2020-03-20 14:09:04, IP:95.188.80.36, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq) |
2020-03-21 00:21:59 |
| 144.91.80.253 | attackbots | 22/tcp [2020-03-20]1pkt |
2020-03-21 00:21:02 |
| 84.52.108.218 | attack | proto=tcp . spt=48509 . dpt=25 . Listed on MailSpike (spam wave plus L3-L5) also truncate-gbudb and unsubscore (273) |
2020-03-21 00:33:09 |
| 51.255.132.213 | attackbots | Mar 20 16:09:52 DAAP sshd[348]: Invalid user maysoft from 51.255.132.213 port 43522 Mar 20 16:09:52 DAAP sshd[348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.132.213 Mar 20 16:09:52 DAAP sshd[348]: Invalid user maysoft from 51.255.132.213 port 43522 Mar 20 16:09:54 DAAP sshd[348]: Failed password for invalid user maysoft from 51.255.132.213 port 43522 ssh2 Mar 20 16:17:01 DAAP sshd[441]: Invalid user dev from 51.255.132.213 port 40366 ... |
2020-03-21 00:38:27 |