城市(city): Chicago
省份(region): Illinois
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 164.155.0.0 - 164.155.255.255
CIDR: 164.155.0.0/16
NetName: AFRINIC-164-155-0-0
NetHandle: NET-164-155-0-0-1
Parent: NET164 (NET-164-0-0-0-0)
NetType: Transferred to AfriNIC
OriginAS:
Organization: African Network Information Center (AFRINIC)
RegDate: 2005-02-21
Updated: 2005-02-21
Comment: This IP address range is under AFRINIC responsibility.
Comment: Please see http://www.afrinic.net/ for further details,
Comment: or check the WHOIS server located at whois.afrinic.net.
Ref: https://rdap.arin.net/registry/ip/164.155.0.0
ResourceLink: http://afrinic.net/en/services/whois-query
ResourceLink: whois.afrinic.net
OrgName: African Network Information Center
OrgId: AFRINIC
Address: Level 11ABC
Address: Raffles Tower
Address: Lot 19, Cybercity
City: Ebene
StateProv:
PostalCode:
Country: MU
RegDate: 2004-05-17
Updated: 2015-05-04
Comment: AfriNIC - http://www.afrinic.net
Comment: The African & Indian Ocean Internet Registry
Ref: https://rdap.arin.net/registry/entity/AFRINIC
ReferralServer: whois://whois.afrinic.net
ResourceLink: http://afrinic.net/en/services/whois-query
OrgAbuseHandle: GENER11-ARIN
OrgAbuseName: Generic POC
OrgAbusePhone: +230 4666616
OrgAbuseEmail: abusepoc@afrinic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/GENER11-ARIN
OrgTechHandle: GENER11-ARIN
OrgTechName: Generic POC
OrgTechPhone: +230 4666616
OrgTechEmail: abusepoc@afrinic.net
OrgTechRef: https://rdap.arin.net/registry/entity/GENER11-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.afrinic.net.
% This is the AfriNIC Whois server.
% The AFRINIC whois database is subject to the following terms of Use. See https://afrinic.net/whois/terms
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '164.155.0.0 - 164.155.255.255'
% No abuse contact registered for 164.155.0.0 - 164.155.255.255
inetnum: 164.155.0.0 - 164.155.255.255
netname: SENTRACHEM
descr: Sentrachem Limited
descr: PO BOX 781811
descr: Sandton, 2146
country: ZA
org: ORG-SL72-AFRINIC
admin-c: ALH1-AFRINIC
tech-c: ALH1-AFRINIC
status: ASSIGNED PI
remarks: ============REMARK===================
remarks: The custodianship of this IP prefix is presently
remarks: deemed to be in dispute. Consequently,
remarks: no change request pertaining to this particular
remarks: prefix will be entertained by AFRINIC until the
remarks: issue is finally resolved between the disputants
remarks: themselves or by a competent authority.
remarks: Further, whilst the current holder of the said prefix
remarks: continues to hold same, AFRINIC shall bear no
remarks: responsibility whatsoever in relation thereto and
remarks: disputants are encouraged to resolve the said
remarks: dispute expeditiously.
remarks: ============REMARK====================
mnt-by: AFRINIC-HM-MNT
mnt-lower: AFRINIC-LH-MNT
source: AFRINIC # Filtered
parent: 0.0.0.0 - 255.255.255.255
organisation: ORG-SL72-AFRINIC
org-name: Sentrachem Limited
org-type: EU-PI
country: ZA
address: PO BOX 781811
address: Sandton, 2146
address: Johannesburg
phone: tel:+230-403-5100
admin-c: ALH1-AFRINIC
tech-c: ALH1-AFRINIC
mnt-ref: AFRINIC-HM-MNT
mnt-ref: AFRINIC-LH-MNT
mnt-by: AFRINIC-HM-MNT
source: AFRINIC # Filtered
role: AFRINIC LH HOSTMASTERS
address: 11th Floor, Standard Chartered Tower
address: 19, Cybercity
address: Ebène, Mauritius
admin-c: JC17-AFRINIC
tech-c: JC17-AFRINIC
tech-c: NMB1-AFRINIC
nic-hdl: ALH1-AFRINIC
mnt-by: AFRINIC-LH-MNT
source: AFRINIC # Filtered; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.155.74.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53326
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;164.155.74.111. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026041101 1800 900 604800 86400
;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 12 02:06:53 CST 2026
;; MSG SIZE rcvd: 107b'Host 111.74.155.164.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 164.155.74.111.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 137.74.206.80 | attackspambots | 137.74.206.80 - - [13/May/2020:05:50:43 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 137.74.206.80 - - [13/May/2020:05:50:44 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 137.74.206.80 - - [13/May/2020:05:50:44 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 137.74.206.80 - - [13/May/2020:05:50:44 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 137.74.206.80 - - [13/May/2020:05:50:44 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 137.74.206.80 - - [13/May/2020:05:50:44 +0200] "POST /wp-login.php HTTP/1.1" 200 2009 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Fir ... |
2020-05-13 19:06:37 |
| 89.176.9.98 | attack | 5x Failed Password |
2020-05-13 18:59:54 |
| 220.135.50.162 | attackbotsspam | firewall-block, port(s): 8000/tcp |
2020-05-13 19:10:48 |
| 1.179.151.174 | attackspambots | DATE:2020-05-13 05:51:12, IP:1.179.151.174, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc) |
2020-05-13 18:44:30 |
| 188.166.5.84 | attack | firewall-block, port(s): 21564/tcp |
2020-05-13 19:13:19 |
| 171.244.129.66 | attackspam | May 13 05:51:13 wordpress wordpress(www.ruhnke.cloud)[61776]: Blocked authentication attempt for admin from ::ffff:171.244.129.66 |
2020-05-13 18:42:12 |
| 195.54.167.76 | attack | May 13 12:28:11 debian-2gb-nbg1-2 kernel: \[11624549.943418\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.167.76 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=18129 PROTO=TCP SPT=47775 DPT=33609 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-05-13 18:51:32 |
| 151.80.83.249 | attackbots | May 13 10:34:46 roki-contabo sshd\[21802\]: Invalid user cychen from 151.80.83.249 May 13 10:34:46 roki-contabo sshd\[21802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.83.249 May 13 10:34:48 roki-contabo sshd\[21802\]: Failed password for invalid user cychen from 151.80.83.249 port 42640 ssh2 May 13 10:42:16 roki-contabo sshd\[21984\]: Invalid user ovidio from 151.80.83.249 May 13 10:42:16 roki-contabo sshd\[21984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.83.249 ... |
2020-05-13 19:10:29 |
| 91.121.175.138 | attackbots | SSH brute-force: detected 25 distinct usernames within a 24-hour window. |
2020-05-13 18:41:39 |
| 47.184.26.86 | attackspam | May 13 10:03:54 debian64 sshd[20029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.184.26.86 May 13 10:03:56 debian64 sshd[20029]: Failed password for invalid user vyatta from 47.184.26.86 port 37784 ssh2 ... |
2020-05-13 18:29:23 |
| 195.54.167.14 | attackbotsspam | May 13 12:32:41 debian-2gb-nbg1-2 kernel: \[11624819.968037\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.167.14 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=34236 PROTO=TCP SPT=49107 DPT=15922 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-05-13 18:53:51 |
| 221.182.36.41 | attack | SSH/22 MH Probe, BF, Hack - |
2020-05-13 18:38:50 |
| 152.136.157.34 | attackbotsspam | May 13 12:31:24 legacy sshd[29254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.157.34 May 13 12:31:25 legacy sshd[29254]: Failed password for invalid user zope from 152.136.157.34 port 38968 ssh2 May 13 12:37:16 legacy sshd[29552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.157.34 ... |
2020-05-13 18:44:12 |
| 120.92.164.236 | attackbotsspam | May 13 08:51:29 gw1 sshd[15625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.164.236 May 13 08:51:30 gw1 sshd[15625]: Failed password for invalid user user from 120.92.164.236 port 2687 ssh2 ... |
2020-05-13 18:32:41 |
| 193.112.143.141 | attackspambots | 2020-05-13T10:56:16.863881ns386461 sshd\[10754\]: Invalid user qh from 193.112.143.141 port 43768 2020-05-13T10:56:16.868411ns386461 sshd\[10754\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.143.141 2020-05-13T10:56:19.004902ns386461 sshd\[10754\]: Failed password for invalid user qh from 193.112.143.141 port 43768 ssh2 2020-05-13T11:04:44.827457ns386461 sshd\[18664\]: Invalid user info from 193.112.143.141 port 47852 2020-05-13T11:04:44.832126ns386461 sshd\[18664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.143.141 ... |
2020-05-13 19:01:54 |