城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
# start
NetRange: 216.180.240.0 - 216.180.247.255
CIDR: 216.180.240.0/21
NetName: NTHL
NetHandle: NET-216-180-240-0-1
Parent: NET216 (NET-216-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: NETWORK TRANSIT HOLDINGS LLC (NTHL)
RegDate: 2002-06-19
Updated: 2023-11-13
Ref: https://rdap.arin.net/registry/ip/216.180.240.0
OrgName: NETWORK TRANSIT HOLDINGS LLC
OrgId: NTHL
Address: 2626 Spring Cypress Road
City: Spring
StateProv: TX
PostalCode: 77388
Country: US
RegDate: 2016-07-01
Updated: 2026-01-07
Comment: All DMCA requests must be mailed to:
Comment:
Comment: Network Transit Holdings LLC
Comment: 2626 Spring Cypress Road
Comment: Spring, TX 77388
Ref: https://rdap.arin.net/registry/entity/NTHL
OrgAbuseHandle: ABUSE5641-ARIN
OrgAbuseName: Abuse Department
OrgAbusePhone: +1-281-942-2800
OrgAbuseEmail: abuse@networktransit.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5641-ARIN
OrgTechHandle: PROST1-ARIN
OrgTechName: Proston, Serg
OrgTechPhone: +1-844-252-5683
OrgTechEmail: sprotsun@networktransit.net
OrgTechRef: https://rdap.arin.net/registry/entity/PROST1-ARIN
OrgNOCHandle: NETWO7681-ARIN
OrgNOCName: Network Operations
OrgNOCPhone: +1-844-252-5683
OrgNOCEmail: noc@networktransit.net
OrgNOCRef: https://rdap.arin.net/registry/entity/NETWO7681-ARIN
OrgTechHandle: NETWO7681-ARIN
OrgTechName: Network Operations
OrgTechPhone: +1-844-252-5683
OrgTechEmail: noc@networktransit.net
OrgTechRef: https://rdap.arin.net/registry/entity/NETWO7681-ARIN
RNOCHandle: NETWO7681-ARIN
RNOCName: Network Operations
RNOCPhone: +1-844-252-5683
RNOCEmail: noc@networktransit.net
RNOCRef: https://rdap.arin.net/registry/entity/NETWO7681-ARIN
RTechHandle: NETWO7681-ARIN
RTechName: Network Operations
RTechPhone: +1-844-252-5683
RTechEmail: noc@networktransit.net
RTechRef: https://rdap.arin.net/registry/entity/NETWO7681-ARIN
RAbuseHandle: ABUSE5641-ARIN
RAbuseName: Abuse Department
RAbusePhone: +1-281-942-2800
RAbuseEmail: abuse@networktransit.net
RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5641-ARIN
# end
# start
NetRange: 216.180.246.0 - 216.180.246.255
CIDR: 216.180.246.0/24
NetName: NET-216-180-246-0-24
NetHandle: NET-216-180-246-0-1
Parent: NTHL (NET-216-180-240-0-1)
NetType: Reallocated
OriginAS:
Organization: IPXO LLC (IL-845)
RegDate: 2024-07-15
Updated: 2024-07-15
Ref: https://rdap.arin.net/registry/ip/216.180.246.0
OrgName: IPXO LLC
OrgId: IL-845
Address: 3132 State Street
City: Dallas
StateProv: TX
PostalCode: 75204-3500
Country: US
RegDate: 2021-03-25
Updated: 2025-09-10
Comment: Geofeed https://geofeed.ipxo.com/geofeed.txt
Ref: https://rdap.arin.net/registry/entity/IL-845
OrgTechHandle: IST36-ARIN
OrgTechName: IPXO Support Team
OrgTechPhone: +1 (650) 564-3425
OrgTechEmail: support@ipxo.com
OrgTechRef: https://rdap.arin.net/registry/entity/IST36-ARIN
OrgAbuseHandle: IAMT1-ARIN
OrgAbuseName: IPXO Abuse Management Team
OrgAbusePhone: +1 (650) 934-1667
OrgAbuseEmail: abuse@ipxo.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/IAMT1-ARIN
OrgDNSHandle: IST36-ARIN
OrgDNSName: IPXO Support Team
OrgDNSPhone: +1 (650) 564-3425
OrgDNSEmail: support@ipxo.com
OrgDNSRef: https://rdap.arin.net/registry/entity/IST36-ARIN
# end
# start
NetRange: 216.180.246.0 - 216.180.246.255
CIDR: 216.180.246.0/24
NetName: NETUTILS
NetHandle: NET-216-180-246-0-2
Parent: NET-216-180-246-0-24 (NET-216-180-246-0-1)
NetType: Reallocated
OriginAS:
Organization: Internet Utilities NA LLC (DCL-577)
RegDate: 2025-01-07
Updated: 2025-01-07
Ref: https://rdap.arin.net/registry/ip/216.180.246.0
OrgName: Internet Utilities NA LLC
OrgId: DCL-577
Address: 2711 Centerville Road
City: Wilmington
StateProv: DE
PostalCode: 19808
Country: US
RegDate: 2015-11-18
Updated: 2024-08-23
Ref: https://rdap.arin.net/registry/entity/DCL-577
OrgAbuseHandle: IUA-ARIN
OrgAbuseName: Internet Utilities Abuse
OrgAbusePhone: +1-650-934-1667
OrgAbuseEmail: report@abuseradar.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/IUA-ARIN
OrgTechHandle: IUS-ARIN
OrgTechName: Internet Utilities Support
OrgTechPhone: +1-650-564-3425
OrgTechEmail: support@netutils.io
OrgTechRef: https://rdap.arin.net/registry/entity/IUS-ARIN
# end
# start
NetRange: 216.180.246.0 - 216.180.246.255
CIDR: 216.180.246.0/24
NetName: NET-216-180-246-0-24
NetHandle: NET-216-180-246-0-3
Parent: NETUTILS (NET-216-180-246-0-2)
NetType: Reassigned
OriginAS:
Customer: Private Customer (C11319774)
RegDate: 2025-08-18
Updated: 2025-08-18
Comment: report@abuseradar.com
Comment: Geofeed https://geofeed.ipxo.com/geofeed.txt
Ref: https://rdap.arin.net/registry/ip/216.180.246.0
CustName: Private Customer
Address: Private Residence
City: Massy
StateProv:
PostalCode: 91300
Country: FR
RegDate: 2025-08-18
Updated: 2025-08-18
Ref: https://rdap.arin.net/registry/entity/C11319774
OrgAbuseHandle: IUA-ARIN
OrgAbuseName: Internet Utilities Abuse
OrgAbusePhone: +1-650-934-1667
OrgAbuseEmail: report@abuseradar.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/IUA-ARIN
OrgTechHandle: IUS-ARIN
OrgTechName: Internet Utilities Support
OrgTechPhone: +1-650-564-3425
OrgTechEmail: support@netutils.io
OrgTechRef: https://rdap.arin.net/registry/entity/IUS-ARIN
# end
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 216.180.246.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57307
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;216.180.246.54. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026060600 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 06 21:01:16 CST 2026
;; MSG SIZE rcvd: 10754.246.180.216.in-addr.arpa domain name pointer crawler054.deepfield.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
54.246.180.216.in-addr.arpa name = crawler054.deepfield.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 123.206.190.82 | attack | $f2bV_matches |
2019-11-08 16:41:54 |
| 196.200.176.68 | attackbots | 2019-11-08T08:06:35.385492shield sshd\[11038\]: Invalid user testsfts from 196.200.176.68 port 50004 2019-11-08T08:06:35.389990shield sshd\[11038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.200.176.68 2019-11-08T08:06:37.043110shield sshd\[11038\]: Failed password for invalid user testsfts from 196.200.176.68 port 50004 ssh2 2019-11-08T08:10:30.909167shield sshd\[11534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.200.176.68 user=root 2019-11-08T08:10:32.823280shield sshd\[11534\]: Failed password for root from 196.200.176.68 port 40716 ssh2 |
2019-11-08 16:26:00 |
| 140.143.69.34 | attack | Nov 8 07:50:42 ms-srv sshd[6391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.69.34 user=root Nov 8 07:50:44 ms-srv sshd[6391]: Failed password for invalid user root from 140.143.69.34 port 29173 ssh2 |
2019-11-08 16:29:34 |
| 61.1.231.235 | attackspam | Unauthorised access (Nov 8) SRC=61.1.231.235 LEN=52 PREC=0x20 TTL=112 ID=8411 DF TCP DPT=445 WINDOW=8192 SYN |
2019-11-08 16:37:58 |
| 58.87.120.53 | attackbots | Nov 8 09:07:00 SilenceServices sshd[14937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.120.53 Nov 8 09:07:02 SilenceServices sshd[14937]: Failed password for invalid user snowbal from 58.87.120.53 port 44148 ssh2 Nov 8 09:12:05 SilenceServices sshd[16439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.120.53 |
2019-11-08 16:30:52 |
| 222.186.173.154 | attackspambots | Nov 8 09:31:16 [host] sshd[31853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root Nov 8 09:31:18 [host] sshd[31853]: Failed password for root from 222.186.173.154 port 52424 ssh2 Nov 8 09:31:44 [host] sshd[31862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root |
2019-11-08 16:32:39 |
| 180.96.14.98 | attackbotsspam | 2019-11-08T07:54:50.909491shield sshd\[9405\]: Invalid user Qwe123123 from 180.96.14.98 port 49917 2019-11-08T07:54:50.914155shield sshd\[9405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.96.14.98 2019-11-08T07:54:52.783213shield sshd\[9405\]: Failed password for invalid user Qwe123123 from 180.96.14.98 port 49917 ssh2 2019-11-08T07:59:06.538092shield sshd\[9964\]: Invalid user haida from 180.96.14.98 port 21628 2019-11-08T07:59:06.543516shield sshd\[9964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.96.14.98 |
2019-11-08 16:11:33 |
| 45.125.66.31 | attackbotsspam | \[2019-11-08 03:02:20\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-08T03:02:20.022-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="795501148178599002",SessionID="0x7fdf2c8a8ab8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.31/63490",ACLName="no_extension_match" \[2019-11-08 03:02:35\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-08T03:02:35.357-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="125001148163072004",SessionID="0x7fdf2c3f5928",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.31/62554",ACLName="no_extension_match" \[2019-11-08 03:02:57\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-08T03:02:57.544-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="471401148483829004",SessionID="0x7fdf2c8a8ab8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.31/59007",ACLName=" |
2019-11-08 16:22:49 |
| 157.245.44.200 | attackbotsspam | POST /wp-login.php HTTP/1.1 200 1827 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0 |
2019-11-08 16:14:02 |
| 152.231.240.4 | attackbotsspam | port scan and connect, tcp 5432 (postgresql) |
2019-11-08 16:31:45 |
| 222.186.175.161 | attackbots | Nov 8 13:51:59 vibhu-HP-Z238-Microtower-Workstation sshd\[30251\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Nov 8 13:52:02 vibhu-HP-Z238-Microtower-Workstation sshd\[30251\]: Failed password for root from 222.186.175.161 port 37740 ssh2 Nov 8 13:52:30 vibhu-HP-Z238-Microtower-Workstation sshd\[30272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Nov 8 13:52:32 vibhu-HP-Z238-Microtower-Workstation sshd\[30272\]: Failed password for root from 222.186.175.161 port 35572 ssh2 Nov 8 13:52:46 vibhu-HP-Z238-Microtower-Workstation sshd\[30272\]: Failed password for root from 222.186.175.161 port 35572 ssh2 ... |
2019-11-08 16:28:37 |
| 202.69.191.85 | attack | Nov 4 16:51:11 nexus sshd[26343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.69.191.85 user=r.r Nov 4 16:51:13 nexus sshd[26343]: Failed password for r.r from 202.69.191.85 port 56568 ssh2 Nov 4 16:51:13 nexus sshd[26343]: Received disconnect from 202.69.191.85 port 56568:11: Bye Bye [preauth] Nov 4 16:51:13 nexus sshd[26343]: Disconnected from 202.69.191.85 port 56568 [preauth] Nov 4 16:57:51 nexus sshd[27666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.69.191.85 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=202.69.191.85 |
2019-11-08 16:12:55 |
| 93.119.178.174 | attackspambots | Nov 8 02:49:33 ny01 sshd[9989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.119.178.174 Nov 8 02:49:34 ny01 sshd[9989]: Failed password for invalid user pt3client from 93.119.178.174 port 44838 ssh2 Nov 8 02:53:40 ny01 sshd[10387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.119.178.174 |
2019-11-08 16:35:08 |
| 165.227.97.108 | attackbots | $f2bV_matches |
2019-11-08 16:40:19 |
| 115.84.76.5 | attackspam | Nov 8 07:28:50 cvbnet sshd[21137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.84.76.5 Nov 8 07:28:51 cvbnet sshd[21137]: Failed password for invalid user admin from 115.84.76.5 port 56584 ssh2 ... |
2019-11-08 16:24:29 |