City: unknown
Region: unknown
Country: Iran
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '109.162.128.0 - 109.162.255.255'
% Abuse contact for '109.162.128.0 - 109.162.255.255' is 'ripe@datak.ir'
inetnum: 109.162.128.0 - 109.162.255.255
netname: IR-DATAK-20100325
country: IR
org: ORG-DIEI1-RIPE
admin-c: EB8923-RIPE
tech-c: EB8923-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-by: TA59784-MNT
mnt-lower: TA59784-MNT
mnt-routes: TA59784-MNT
created: 2010-03-25T07:35:19Z
last-modified: 2022-07-03T10:22:22Z
source: RIPE # Filtered
organisation: ORG-DIEI1-RIPE
org-name: Datak Company LLC
country: IR
org-type: LIR
address: No. 14, Ibn Yamin St., North Sohrevardi St., Tehran, Iran
address: 1556835311
address: Tehran
address: IRAN, ISLAMIC REPUBLIC OF
phone: +982181681000
fax-no: +982188512650
admin-c: RT6724-RIPE
abuse-c: RA8422-RIPE
mnt-ref: RIPE-NCC-HM-MNT
mnt-ref: TA59784-MNT
mnt-by: RIPE-NCC-HM-MNT
mnt-by: TA59784-MNT
created: 2004-04-17T11:28:05Z
last-modified: 2026-02-09T07:11:50Z
source: RIPE # Filtered
person: RighTel Co
address: 9th floor, Chooka Building, No 8 , west Armaghan Street, Vali-e-Asr Street (After Niayesh Highway), Tehran, Iran
org: ORG-ETSN1-RIPE
phone: + 982127654530
nic-hdl: EB8923-RIPE
mnt-by: TA59784-MNT
created: 2013-01-31T09:24:40Z
last-modified: 2019-01-13T08:30:41Z
source: RIPE # Filtered
% Information related to '109.162.251.0/24AS39650'
route: 109.162.251.0/24
origin: AS39650
mnt-by: MNT-RasouliTaher
mnt-by: MNT-DATAK
mnt-by: TA59784-MNT
created: 2023-05-02T09:18:58Z
last-modified: 2023-05-02T09:18:58Z
source: RIPE
% This query was served by the RIPE Database Query Service version 1.121.2 (BUSA); <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.162.251.227
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44868
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;109.162.251.227. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026040501 1800 900 604800 86400
;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 06 02:03:31 CST 2026
;; MSG SIZE rcvd: 108Host 227.251.162.109.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 227.251.162.109.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.248.225.22 | attackbots | 104.248.225.22 - - [15/Sep/2020:08:31:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.225.22 - - [15/Sep/2020:08:31:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.225.22 - - [15/Sep/2020:08:31:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2400 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-09-15 17:49:52 |
| 61.1.217.120 | attack | Unauthorised access (Sep 14) SRC=61.1.217.120 LEN=52 TTL=111 ID=18201 DF TCP DPT=445 WINDOW=8192 SYN |
2020-09-15 18:05:04 |
| 104.248.123.197 | attack | [SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically. |
2020-09-15 18:20:22 |
| 49.36.143.131 | attackspambots | Port Scan: TCP/443 |
2020-09-15 18:07:58 |
| 178.79.134.51 | attack |
|
2020-09-15 17:56:25 |
| 95.85.28.125 | attackbots | Sep 15 10:32:07 vm0 sshd[12891]: Failed password for root from 95.85.28.125 port 48562 ssh2 ... |
2020-09-15 18:11:03 |
| 144.91.68.240 | attackbotsspam | Sep 14 18:43:30 root sshd[26736]: Failed password for root from 144.91.68.240 port 60610 ssh2 Sep 14 18:53:41 root sshd[28264]: Failed password for root from 144.91.68.240 port 55566 ssh2 ... |
2020-09-15 18:25:40 |
| 104.238.116.152 | attackbots | 104.238.116.152 - - [15/Sep/2020:10:29:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.238.116.152 - - [15/Sep/2020:10:30:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2059 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.238.116.152 - - [15/Sep/2020:10:30:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2062 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-09-15 17:54:23 |
| 162.243.130.93 | attack | Brute force attack stopped by firewall |
2020-09-15 18:03:31 |
| 161.35.99.173 | attack | 2020-09-14T19:53:11.197265morrigan.ad5gb.com sshd[2098447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.99.173 user=root 2020-09-14T19:53:13.096503morrigan.ad5gb.com sshd[2098447]: Failed password for root from 161.35.99.173 port 40410 ssh2 |
2020-09-15 17:53:57 |
| 68.183.234.57 | attackspam | 2020-09-15T08:54:17.734137randservbullet-proofcloud-66.localdomain sshd[31300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.234.57 user=root 2020-09-15T08:54:19.099109randservbullet-proofcloud-66.localdomain sshd[31300]: Failed password for root from 68.183.234.57 port 14340 ssh2 2020-09-15T08:58:08.296182randservbullet-proofcloud-66.localdomain sshd[31314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.234.57 user=root 2020-09-15T08:58:10.709458randservbullet-proofcloud-66.localdomain sshd[31314]: Failed password for root from 68.183.234.57 port 59230 ssh2 ... |
2020-09-15 18:21:14 |
| 178.128.14.102 | attackspambots | 2020-09-15T07:39:24.378582lavrinenko.info sshd[19947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.14.102 2020-09-15T07:39:24.368778lavrinenko.info sshd[19947]: Invalid user carson from 178.128.14.102 port 60298 2020-09-15T07:39:26.282153lavrinenko.info sshd[19947]: Failed password for invalid user carson from 178.128.14.102 port 60298 ssh2 2020-09-15T07:42:11.470214lavrinenko.info sshd[20005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.14.102 user=root 2020-09-15T07:42:13.634561lavrinenko.info sshd[20005]: Failed password for root from 178.128.14.102 port 51504 ssh2 ... |
2020-09-15 18:01:07 |
| 195.97.75.174 | attack | Sep 15 11:02:18 rocket sshd[7675]: Failed password for root from 195.97.75.174 port 36222 ssh2 Sep 15 11:06:10 rocket sshd[8308]: Failed password for root from 195.97.75.174 port 53824 ssh2 ... |
2020-09-15 18:08:46 |
| 128.199.107.111 | attackspam | Invalid user kabincha from 128.199.107.111 port 51830 |
2020-09-15 18:06:32 |
| 213.32.31.108 | attack | 2020-09-15T07:51:26.970457randservbullet-proofcloud-66.localdomain sshd[30950]: Invalid user sxl from 213.32.31.108 port 35274 2020-09-15T07:51:26.974723randservbullet-proofcloud-66.localdomain sshd[30950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.31.108 2020-09-15T07:51:26.970457randservbullet-proofcloud-66.localdomain sshd[30950]: Invalid user sxl from 213.32.31.108 port 35274 2020-09-15T07:51:28.646242randservbullet-proofcloud-66.localdomain sshd[30950]: Failed password for invalid user sxl from 213.32.31.108 port 35274 ssh2 ... |
2020-09-15 18:16:17 |