城市(city): unknown
省份(region): unknown
国家(country): United Kingdom
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '195.96.139.0 - 195.96.139.255'
% Abuse contact for '195.96.139.0 - 195.96.139.255' is 'network-abuse@driftnet.io'
inetnum: 195.96.139.0 - 195.96.139.255
netname: UK-DRIFTNET-20260127
remarks: +-----------------------------------------------------------
remarks: | This IP range is not attacking your network.
remarks: | Visit https://internet-measurement.com for more details.
remarks: | View data collected at https://driftnet.io.
remarks: +-----------------------------------------------------------
country: GB
org: ORG-DL595-RIPE
admin-c: DH9005-RIPE
tech-c: DH9005-RIPE
status: ALLOCATED PA
mnt-by: lir-uk-driftnet-1-MNT
mnt-by: RIPE-NCC-HM-MNT
created: 2026-01-27T15:37:46Z
last-modified: 2026-05-12T14:16:48Z
source: RIPE
organisation: ORG-DL595-RIPE
org-name: Driftnet Ltd
remarks: +-----------------------------------------------------------
remarks: | We are not attacking your network.
remarks: | Visit https://internet-measurement.com for more details.
remarks: | View data collected at https://driftnet.io.
remarks: +-----------------------------------------------------------
country: GB
reg-nr: 15588031
org-type: LIR
address: 1140 Avenue of the Americas, 19th Floor
address: 10036
address: New York
address: UNITED STATES
phone: +442037450350
admin-c: DH9005-RIPE
tech-c: DH9005-RIPE
abuse-c: AR77106-RIPE
mnt-ref: lir-uk-driftnet-1-MNT
mnt-by: RIPE-NCC-HM-MNT
mnt-by: lir-uk-driftnet-1-MNT
created: 2024-10-30T18:00:20Z
last-modified: 2026-06-02T10:02:58Z
source: RIPE # Filtered
role: Driftnet Hostmaster
remarks: +-----------------------------------------------------------
remarks: | We are not attacking your network.
remarks: | Visit https://internet-measurement.com for more details.
remarks: | View data collected at https://driftnet.io.
remarks: +-----------------------------------------------------------
address: 1140 Avenue of the Americas, 19th Floor
address: New York, NY 10036
address: UNITED STATES
phone: +442037450350
abuse-mailbox: network-abuse@driftnet.io
nic-hdl: DH9005-RIPE
mnt-by: lir-uk-driftnet-1-MNT
created: 2024-10-30T18:00:18Z
last-modified: 2026-06-02T10:04:23Z
source: RIPE # Filtered
% Information related to '195.96.139.0/24AS211298'
route: 195.96.139.0/24
origin: AS211298
created: 2026-05-12T14:06:44Z
last-modified: 2026-05-12T14:06:44Z
source: RIPE
mnt-by: lir-uk-driftnet-1-MNT
% This query was served by the RIPE Database Query Service version 1.122.1 (DEXTER); <<>> DiG 9.10.3-P4-Ubuntu <<>> 195.96.139.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28478
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;195.96.139.196. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026061100 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 11 22:31:49 CST 2026
;; MSG SIZE rcvd: 107196.139.96.195.in-addr.arpa domain name pointer r5-196-c4.monitoring.internet-measurement.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
196.139.96.195.in-addr.arpa name = r5-196-c4.monitoring.internet-measurement.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 92.222.33.4 | attack | detected by Fail2Ban |
2019-08-15 06:09:31 |
| 103.35.57.121 | attack | Aug 14 14:57:56 vps sshd[9469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.35.57.121 Aug 14 14:57:58 vps sshd[9469]: Failed password for invalid user sys_admin from 103.35.57.121 port 39276 ssh2 Aug 14 15:04:38 vps sshd[9746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.35.57.121 ... |
2019-08-15 06:08:58 |
| 85.216.49.226 | attackspam | 85.216.49.226 - - [14/Aug/2019:15:03:59 +0200] "GET /mysql/admin/index.php?lang=en HTTP/1.1" 404 394 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" 85.216.49.226 - - [14/Aug/2019:15:03:59 +0200] "GET /mysql/dbadmin/index.php?lang=en HTTP/1.1" 404 396 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" 85.216.49.226 - - [14/Aug/2019:15:04:00 +0200] "GET /mysql/sqlmanager/index.php?lang=en HTTP/1.1" 404 399 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" 85.216.49.226 - - [14/Aug/2019:15:04:01 +0200] "GET /mysql/mysqlmanager/index.php?lang=en HTTP/1.1" 404 401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/53 ... |
2019-08-15 06:41:15 |
| 111.198.54.173 | attack | $f2bV_matches |
2019-08-15 06:25:44 |
| 121.157.82.210 | attackbots | Invalid user madison from 121.157.82.210 port 48724 |
2019-08-15 06:04:44 |
| 195.136.95.21 | attack | Aug 14 08:04:16 mailman postfix/smtpd[17201]: warning: unknown[195.136.95.21]: SASL PLAIN authentication failed: authentication failure |
2019-08-15 06:29:00 |
| 213.97.245.39 | attackbots | Invalid user abraham from 213.97.245.39 port 46510 |
2019-08-15 06:40:10 |
| 134.175.123.16 | attack | Invalid user deploy from 134.175.123.16 port 29314 |
2019-08-15 06:16:59 |
| 222.186.42.94 | attack | Fail2Ban Ban Triggered |
2019-08-15 06:28:31 |
| 13.75.95.112 | attack | Aug 14 20:30:45 XXX sshd[25090]: Invalid user gz from 13.75.95.112 port 51068 |
2019-08-15 06:17:44 |
| 2.236.77.217 | attack | Aug 14 23:05:03 ubuntu-2gb-nbg1-dc3-1 sshd[21865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.236.77.217 Aug 14 23:05:05 ubuntu-2gb-nbg1-dc3-1 sshd[21865]: Failed password for invalid user cyril from 2.236.77.217 port 52128 ssh2 ... |
2019-08-15 06:11:54 |
| 37.232.98.14 | attack | port scan and connect, tcp 23 (telnet) |
2019-08-15 06:23:03 |
| 68.48.240.245 | attack | Aug 15 00:23:47 hosting sshd[24442]: Invalid user photo from 68.48.240.245 port 57048 Aug 15 00:23:47 hosting sshd[24442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-68-48-240-245.hsd1.mi.comcast.net Aug 15 00:23:47 hosting sshd[24442]: Invalid user photo from 68.48.240.245 port 57048 Aug 15 00:23:50 hosting sshd[24442]: Failed password for invalid user photo from 68.48.240.245 port 57048 ssh2 Aug 15 00:33:48 hosting sshd[25059]: Invalid user php from 68.48.240.245 port 43574 ... |
2019-08-15 06:00:14 |
| 66.45.245.146 | attack | Sql/code injection probe |
2019-08-15 06:30:03 |
| 69.181.231.202 | attackbots | Aug 14 20:08:21 XXX sshd[24649]: Invalid user trash from 69.181.231.202 port 60178 |
2019-08-15 06:26:37 |