158.97.29.115 - IPInfo

基本信息:

城市(city): Ensenada

省份(region): Baja California

国家(country): Mexico

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       158.97.0.0 - 158.97.255.255
CIDR:           158.97.0.0/16
NetName:        LACNIC-ERX-158-97-0-0
NetHandle:      NET-158-97-0-0-1
Parent:         NET158 (NET-158-0-0-0-0)
NetType:        Transferred to LACNIC
OriginAS:       
Organization:   Latin American and Caribbean IP address Regional Registry (LACNIC)
RegDate:        2003-10-15
Updated:        2007-12-17
Comment:        This IP address range is under LACNIC responsibility
Comment:        for further allocations to users in LACNIC region.
Comment:        Please see http://www.lacnic.net/ for further details,
Comment:        or check the WHOIS server located at http://whois.lacnic.net
Ref:            https://rdap.arin.net/registry/ip/158.97.0.0

ResourceLink:  http://lacnic.net/cgi-bin/lacnic/whois
ResourceLink:  whois.lacnic.net


OrgName:        Latin American and Caribbean IP address Regional Registry
OrgId:          LACNIC
Address:        Rambla Republica de Mexico 6125
City:           Montevideo
StateProv:      
PostalCode:     11400
Country:        UY
RegDate:        2002-07-27
Updated:        2018-03-15
Ref:            https://rdap.arin.net/registry/entity/LACNIC

ReferralServer:  whois://whois.lacnic.net
ResourceLink:  http://lacnic.net/cgi-bin/lacnic/whois

OrgTechHandle: LACNIC-ARIN
OrgTechName:   LACNIC Whois Info
OrgTechPhone:  +598-2604-2222 
OrgTechEmail:  whois-contact@lacnic.net
OrgTechRef:    https://rdap.arin.net/registry/entity/LACNIC-ARIN

OrgAbuseHandle: LWI100-ARIN
OrgAbuseName:   LACNIC Whois Info
OrgAbusePhone:  +598-2604-2222 
OrgAbuseEmail:  abuse@lacnic.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/LWI100-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.lacnic.net.

% IP Client: 124.223.158.242
 
% Joint Whois - whois.lacnic.net
%  This server accepts single ASN, IPv4 or IPv6 queries

% LACNIC resource: whois.lacnic.net


% Copyright LACNIC lacnic.net
%  The data below is provided for information purposes
%  and to assist persons in obtaining information about or
%  related to AS and IP numbers registrations
%  By submitting a whois query, you agree to use this data
%  only for lawful purposes.
%  2026-04-26 13:47:40 (-03 -03:00)

inetnum:     158.97.0.0/16
status:      assigned
aut-num:     N/A
owner:       C I C E S E
ownerid:     MX-CICE-LACNIC
responsible: David Covarrubias Rosales
address:     Km. 107, Carretera Tijuana-Ensenada, 3918, Zona Playitas
address:     22860 - Ensenada - BC
country:     MX
phone:       +52  6461750500
owner-c:     EDM126
tech-c:      NOH13
abuse-c:     EDM126
inetrev:     158.97.0.0/16
nserver:     ZEUS.CICESE.MX
nsstat:      20260426 AA
nslastaa:    20260426
created:     19920220
changed:     20250620

nic-hdl:     EDM126
person:      Edwin Martinez
e-mail:      jefred@cicese.edu.mx
address:     Carretera Ensenada - Tijuana, 3918, Zona Playitas
address:     22860 - Ensenada - BC
country:     MX
phone:       +52  6461750586
created:     20210819
changed:     20250124

nic-hdl:     NOH13
person:      Norma Herrera
e-mail:      heespi@cicese.mx
address:     Carretera Ensenada Tijuana, 3918, Zona Playitas
address:     22860 - Ensenada - BC
country:     MX
phone:       +52  6461750500 [23222]
created:     20250508
changed:     20250508

% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.97.29.115
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31329
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;158.97.29.115.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026042600 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 27 00:47:40 CST 2026
;; MSG SIZE  rcvd: 106

HOST信息:

Host 115.29.97.158.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 115.29.97.158.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
183.134.90.250	attackbots	May 6 20:55:33 firewall sshd[13019]: Invalid user fld from 183.134.90.250 May 6 20:55:34 firewall sshd[13019]: Failed password for invalid user fld from 183.134.90.250 port 36294 ssh2 May 6 20:59:18 firewall sshd[13092]: Invalid user ubuntu from 183.134.90.250 ...	2020-05-07 08:38:33
219.250.188.41	attackbotsspam	May 6 01:02:53 XXX sshd[24827]: Invalid user test from 219.250.188.41 port 43482	2020-05-07 08:54:02
142.93.211.44	attackbotsspam	May 6 02:21:33 XXX sshd[52445]: Invalid user mysql from 142.93.211.44 port 43788	2020-05-07 08:46:16
175.198.83.204	attack	$f2bV_matches	2020-05-07 12:11:30
218.92.0.138	attack	May 7 05:57:35 inter-technics sshd[8647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root May 7 05:57:37 inter-technics sshd[8647]: Failed password for root from 218.92.0.138 port 3757 ssh2 May 7 05:57:41 inter-technics sshd[8647]: Failed password for root from 218.92.0.138 port 3757 ssh2 May 7 05:57:35 inter-technics sshd[8647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root May 7 05:57:37 inter-technics sshd[8647]: Failed password for root from 218.92.0.138 port 3757 ssh2 May 7 05:57:41 inter-technics sshd[8647]: Failed password for root from 218.92.0.138 port 3757 ssh2 May 7 05:57:35 inter-technics sshd[8647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root May 7 05:57:37 inter-technics sshd[8647]: Failed password for root from 218.92.0.138 port 3757 ssh2 May 7 05:57:41 inter-technics ...	2020-05-07 12:09:51
159.89.83.151	attack	May 6 03:50:53 XXX sshd[23723]: Invalid user sharad from 159.89.83.151 port 49402	2020-05-07 08:34:51
60.167.135.83	attack	Brute force attempt	2020-05-07 12:14:33
14.175.34.180	attackspam	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-05-07 12:07:32
210.12.130.219	attackspam	SSH invalid-user multiple login attempts	2020-05-07 12:03:06
129.28.188.115	attackbots	May 7 01:56:11 v22019038103785759 sshd\[5284\]: Invalid user demon from 129.28.188.115 port 51196 May 7 01:56:11 v22019038103785759 sshd\[5284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.188.115 May 7 01:56:13 v22019038103785759 sshd\[5284\]: Failed password for invalid user demon from 129.28.188.115 port 51196 ssh2 May 7 02:00:17 v22019038103785759 sshd\[5558\]: Invalid user centos from 129.28.188.115 port 38118 May 7 02:00:17 v22019038103785759 sshd\[5558\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.188.115 ...	2020-05-07 08:36:48
201.235.19.122	attackbots	May 7 02:14:16 OPSO sshd\[20912\]: Invalid user mario from 201.235.19.122 port 46695 May 7 02:14:16 OPSO sshd\[20912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.235.19.122 May 7 02:14:17 OPSO sshd\[20912\]: Failed password for invalid user mario from 201.235.19.122 port 46695 ssh2 May 7 02:18:53 OPSO sshd\[23488\]: Invalid user mcadmin from 201.235.19.122 port 51344 May 7 02:18:53 OPSO sshd\[23488\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.235.19.122	2020-05-07 08:33:02
190.2.42.45	attack	DATE:2020-05-07 05:57:43, IP:190.2.42.45, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-05-07 12:11:06
164.163.23.19	attack	May 6 03:51:09 XXX sshd[23731]: Invalid user admin from 164.163.23.19 port 45942	2020-05-07 08:34:27
41.93.32.87	attack	SSH Brute Force	2020-05-07 08:37:17
103.136.182.184	attack	May 7 02:26:04 ArkNodeAT sshd\[20341\]: Invalid user sc from 103.136.182.184 May 7 02:26:04 ArkNodeAT sshd\[20341\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.136.182.184 May 7 02:26:07 ArkNodeAT sshd\[20341\]: Failed password for invalid user sc from 103.136.182.184 port 38620 ssh2	2020-05-07 08:39:06

最近上报的IP列表

103.25.103.252	175.150.7.80	20.111.57.15	203.88.204.212
38.248.95.254	104.236.111.168	2606:4700:10::6814:7181	66.132.172.34
66.132.195.32	2606:4700:10::6816:4323	64.89.160.132	165.227.34.92
64.83.37.245	49.128.204.83	2606:4700:10::6814:7134	211.63.128.185
147.185.132.110	2606:4700:10::6814:9191	107.120.35.147	142.181.200.48