城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 66.132.172.0 - 66.132.172.255
CIDR: 66.132.172.0/24
NetName: CENSY
NetHandle: NET-66-132-172-0-1
Parent: NET66 (NET-66-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Censys, Inc. (CENSY)
RegDate: 2024-05-14
Updated: 2024-05-14
Ref: https://rdap.arin.net/registry/ip/66.132.172.0
OrgName: Censys, Inc.
OrgId: CENSY
Address: 116 1/2 S Main Street
City: Ann Arbor
StateProv: MI
PostalCode: 48104
Country: US
RegDate: 2018-08-06
Updated: 2019-08-03
Comment: https://censys.io
Ref: https://rdap.arin.net/registry/entity/CENSY
OrgAbuseHandle: CAT20-ARIN
OrgAbuseName: Censys Abuse Team
OrgAbusePhone: +1-248-629-0125
OrgAbuseEmail: scan-abuse@censys.io
OrgAbuseRef: https://rdap.arin.net/registry/entity/CAT20-ARIN
OrgTechHandle: COT12-ARIN
OrgTechName: Censys Operations Team
OrgTechPhone: +1-248-629-0125
OrgTechEmail: ops@censys.com
OrgTechRef: https://rdap.arin.net/registry/entity/COT12-ARIN
OrgNOCHandle: COT12-ARIN
OrgNOCName: Censys Operations Team
OrgNOCPhone: +1-248-629-0125
OrgNOCEmail: ops@censys.com
OrgNOCRef: https://rdap.arin.net/registry/entity/COT12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.132.172.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34678
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;66.132.172.34. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026042600 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 27 00:01:05 CST 2026
;; MSG SIZE rcvd: 10634.172.132.66.in-addr.arpa domain name pointer 34.172.132.66.censys-scanner.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
34.172.132.66.in-addr.arpa name = 34.172.132.66.censys-scanner.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 27.128.162.183 | attack | DATE:2020-06-15 12:59:34, IP:27.128.162.183, PORT:ssh SSH brute force auth (docker-dc) |
2020-06-15 20:07:40 |
| 45.134.179.102 | attack | scans 92 times in preceeding hours on the ports (in chronological order) 5454 20202 3330 5489 9906 9140 9395 5790 36420 3416 9189 2626 3490 4984 18001 9079 2835 8193 24922 8606 54404 2390 60606 33392 63389 12166 9580 4462 12210 7247 5099 59999 2064 7672 3444 9527 12965 3306 2936 2231 5453 64646 8284 4172 9867 9100 4532 1900 3314 6013 61901 9251 3531 1886 2930 1975 5702 6329 14115 52567 52643 5487 10702 8571 3452 9667 21078 28382 1349 1065 9302 13900 2016 9395 32480 1952 4170 3108 3786 2700 55667 30157 5251 3337 2205 2429 10806 8141 2099 1647 5784 28878 resulting in total of 174 scans from 45.134.179.0/24 block. |
2020-06-15 20:08:20 |
| 46.101.81.132 | attackbots | 46.101.81.132 - - [15/Jun/2020:06:06:36 +0200] "GET /wp-login.php HTTP/1.1" 200 5861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.81.132 - - [15/Jun/2020:06:06:38 +0200] "POST /wp-login.php HTTP/1.1" 200 6112 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.81.132 - - [15/Jun/2020:06:06:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-06-15 20:10:07 |
| 62.4.18.67 | attackspam | 20 attempts against mh-ssh on cloud |
2020-06-15 19:49:03 |
| 212.64.14.185 | attackbots | Jun 15 02:02:10 ny01 sshd[31122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.14.185 Jun 15 02:02:12 ny01 sshd[31122]: Failed password for invalid user test from 212.64.14.185 port 33459 ssh2 Jun 15 02:06:06 ny01 sshd[31596]: Failed password for root from 212.64.14.185 port 53776 ssh2 |
2020-06-15 20:06:00 |
| 192.185.130.230 | attackspam | $f2bV_matches |
2020-06-15 20:14:12 |
| 185.110.95.5 | attackspam | Jun 15 13:10:24 lnxmysql61 sshd[7882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.110.95.5 |
2020-06-15 19:59:28 |
| 117.157.98.211 | attackbotsspam | Jun 15 06:11:00 meumeu sshd[534798]: Invalid user alice from 117.157.98.211 port 22974 Jun 15 06:11:00 meumeu sshd[534798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.157.98.211 Jun 15 06:11:00 meumeu sshd[534798]: Invalid user alice from 117.157.98.211 port 22974 Jun 15 06:11:01 meumeu sshd[534798]: Failed password for invalid user alice from 117.157.98.211 port 22974 ssh2 Jun 15 06:14:22 meumeu sshd[534989]: Invalid user jcm from 117.157.98.211 port 22975 Jun 15 06:14:22 meumeu sshd[534989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.157.98.211 Jun 15 06:14:22 meumeu sshd[534989]: Invalid user jcm from 117.157.98.211 port 22975 Jun 15 06:14:24 meumeu sshd[534989]: Failed password for invalid user jcm from 117.157.98.211 port 22975 ssh2 Jun 15 06:17:52 meumeu sshd[536880]: Invalid user postgres from 117.157.98.211 port 22977 ... |
2020-06-15 19:41:02 |
| 95.91.74.120 | attack | 20 attempts against mh-misbehave-ban on wave |
2020-06-15 20:00:37 |
| 195.54.160.228 | attackbots | TCP ports : 3391 / 3394 / 3397 / 4444 / 9999 / 33985 |
2020-06-15 19:58:15 |
| 94.102.51.7 | attackbotsspam | Jun 15 14:16:20 ns3042688 courier-pop3d: LOGIN FAILED, user=info@makita-dolmar.net, ip=\[::ffff:94.102.51.7\] ... |
2020-06-15 20:19:10 |
| 159.100.241.252 | attack | Failed password for invalid user bot from 159.100.241.252 port 50040 ssh2 |
2020-06-15 19:53:40 |
| 103.58.16.254 | attackspam | DATE:2020-06-15 05:47:29, IP:103.58.16.254, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq) |
2020-06-15 20:10:33 |
| 173.212.247.160 | attackspam | $f2bV_matches |
2020-06-15 19:56:43 |
| 200.84.124.226 | attack | IP 200.84.124.226 attacked honeypot on port: 139 at 6/15/2020 4:47:20 AM |
2020-06-15 20:03:44 |