城市(city): New York City
省份(region): New York
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 158.94.0.0 - 158.94.255.255
CIDR: 158.94.0.0/16
NetName: RIPE-ERX-158-94-0-0
NetHandle: NET-158-94-0-0-1
Parent: NET158 (NET-158-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2003-10-15
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/158.94.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.94.211.101
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28577
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;158.94.211.101. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026012602 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 27 13:30:28 CST 2026
;; MSG SIZE rcvd: 107Host 101.211.94.158.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 101.211.94.158.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 192.35.169.20 | attackspam | 587/tcp 27017/tcp 16993/tcp... [2020-07-06/09-06]314pkt,64pt.(tcp),8pt.(udp) |
2020-09-06 17:38:43 |
| 199.76.38.123 | attack | $f2bV_matches |
2020-09-06 17:16:57 |
| 72.210.252.135 | attackbotsspam | (imapd) Failed IMAP login from 72.210.252.135 (US/United States/-): 1 in the last 3600 secs |
2020-09-06 17:27:22 |
| 190.217.68.7 | attack | Unauthorized connection attempt from IP address 190.217.68.7 on Port 445(SMB) |
2020-09-06 17:10:45 |
| 200.122.224.200 | attackspam | Unauthorized connection attempt from IP address 200.122.224.200 on Port 445(SMB) |
2020-09-06 17:43:42 |
| 122.228.19.80 | attackbots | Port Scan: TCP/1026 |
2020-09-06 17:34:20 |
| 218.92.0.246 | attack | Sep 6 11:16:23 sso sshd[31116]: Failed password for root from 218.92.0.246 port 28725 ssh2 Sep 6 11:16:33 sso sshd[31116]: Failed password for root from 218.92.0.246 port 28725 ssh2 ... |
2020-09-06 17:21:10 |
| 220.134.66.62 | attackspambots | " " |
2020-09-06 17:46:01 |
| 87.190.16.229 | attack | ... |
2020-09-06 17:38:25 |
| 61.153.14.115 | attackbotsspam | Sep 6 06:44:27 vm1 sshd[25575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.153.14.115 Sep 6 06:44:29 vm1 sshd[25575]: Failed password for invalid user norberto from 61.153.14.115 port 57822 ssh2 ... |
2020-09-06 17:48:25 |
| 180.177.79.69 | attack | Honeypot attack, port: 5555, PTR: 180-177-79-69.dynamic.kbronet.com.tw. |
2020-09-06 17:52:21 |
| 160.153.153.30 | attack | BURG,WP GET /wordpress/wp-includes/wlwmanifest.xml |
2020-09-06 17:46:29 |
| 192.3.73.154 | attack | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: 192-3-73-154-host.colocrossing.com. |
2020-09-06 17:16:17 |
| 106.12.252.212 | attackbotsspam | Honeypot attack, port: 445, PTR: PTR record not found |
2020-09-06 17:24:33 |
| 37.187.20.60 | attack | Lines containing failures of 37.187.20.60 Sep 3 18:14:49 kmh-wmh-002-nbg03 sshd[18544]: Invalid user amin from 37.187.20.60 port 50110 Sep 3 18:14:49 kmh-wmh-002-nbg03 sshd[18544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.20.60 Sep 3 18:14:51 kmh-wmh-002-nbg03 sshd[18544]: Failed password for invalid user amin from 37.187.20.60 port 50110 ssh2 Sep 3 18:14:52 kmh-wmh-002-nbg03 sshd[18544]: Received disconnect from 37.187.20.60 port 50110:11: Bye Bye [preauth] Sep 3 18:14:52 kmh-wmh-002-nbg03 sshd[18544]: Disconnected from invalid user amin 37.187.20.60 port 50110 [preauth] Sep 3 18:20:41 kmh-wmh-002-nbg03 sshd[19172]: Invalid user boris from 37.187.20.60 port 49864 Sep 3 18:20:41 kmh-wmh-002-nbg03 sshd[19172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.20.60 Sep 3 18:20:44 kmh-wmh-002-nbg03 sshd[19172]: Failed password for invalid user boris from 37.187.20.6........ ------------------------------ |
2020-09-06 17:37:24 |