Mysterious IP Address [closed]

Question

Mysterious IP Address [closed]

#1 da (4 voti)

0

Spesso ho bisogno di identificare gli indirizzi IP. Mi piace eseguire whois.exe sulla riga di comando. Non hai trovato un sito con le informazioni whois per questo indirizzo IP:

164.45.207.200

Inoltre, sono stato in grado di ottenere la ricerca inversa, ma nessuna informazione chiara sulle informazioni restituite.

c8.cf.2da9.ip4.static.sl-reverse.com

ip whois

posta Campo 10.08.2017 - 18:05

fonte

1 risposta

Leggi altre domande sui tag ip whois

Wireshark - Non riesco a vedere il traffico di altri computer sulla stessa rete in modalità promiscua Il mio computer era controllato da remoto da qualcuno. Impossibile trovare virus

score 4 · Answer 1

Per gli indirizzi IP è necessario utilizzare il server whois del registro Internet regionale appropriato. Potete vedere che l'ho fatto in seguito aggiungendo "-h whois.arin.net" alla linea di comando whois (Linux). Generalmente, si inizia con ARIN e si muove come indicato. In questo caso, l'IP che hai identificato rientra nella giurisdizione di ARIN ed è di proprietà del DoD / DNIC / DISA. Un ulteriore sondaggio di questo indirizzo è ... non raccomandato.

$ whois -h whois.arin.net 164.45.207.200

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# The following results may also be obtained via:
# https://whois.arin.net/rest/nets;q=164.45.207.200?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#

NetRange:       164.45.0.0 - 164.45.255.255
CIDR:           164.45.0.0/16
NetName:        DNIC-RNET-164-045
NetHandle:      NET-164-45-0-0-1
Parent:         NET164 (NET-164-0-0-0-0)
NetType:        Direct Assignment
OriginAS:
Organization:   DoD Network Information Center (DNIC)
RegDate:        1992-11-16
Updated:        2012-02-28
Ref:            https://whois.arin.net/rest/net/NET-164-45-0-0-1



OrgName:        DoD Network Information Center
OrgId:          DNIC
Address:        3990 E. Broad Street
City:           Columbus
StateProv:      OH
PostalCode:     43218
Country:        US
RegDate:
Updated:        2011-08-17
Ref:            https://whois.arin.net/rest/org/DNIC


OrgAbuseHandle: REGIS10-ARIN
OrgAbuseName:   Registration
OrgAbusePhone:  +1-844-347-2457
OrgAbuseEmail:  [email protected]
OrgAbuseRef:    https://whois.arin.net/rest/poc/REGIS10-ARIN

OrgTechHandle: MIL-HSTMST-ARIN
OrgTechName:   Network DoD
OrgTechPhone:  +1-614-692-6337
OrgTechEmail:  [email protected]
OrgTechRef:    https://whois.arin.net/rest/poc/MIL-HSTMST-ARIN

OrgTechHandle: REGIS10-ARIN
OrgTechName:   Registration
OrgTechPhone:  +1-844-347-2457
OrgTechEmail:  [email protected]
OrgTechRef:    https://whois.arin.net/rest/poc/REGIS10-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#

$

A seconda del tuo client whois, può seguire automaticamente i riferimenti attraverso altri registri regionali (RIPE, APNIC, ecc.) come mostrato di seguito. Anche se così non fosse, la parte più importante delle informazioni è abbastanza esplicita su dove andare per avere più risposte, permettendoti di fare da solo la seconda query.

$ whois -h whois.arin.net 212.27.48.10

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# The following results may also be obtained via:
# https://whois.arin.net/rest/nets;q=212.27.48.10?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#

NetRange:       212.0.0.0 - 212.255.255.255
CIDR:           212.0.0.0/8
NetName:        RIPE-NCC-212
NetHandle:      NET-212-0-0-0-1
Parent:          ()
NetType:        Allocated to RIPE NCC
OriginAS:
Organization:   RIPE Network Coordination Centre (RIPE)
RegDate:        1997-11-14
Updated:        2009-03-25
Comment:        These addresses have been further assigned to users in
Comment:        the RIPE NCC region. Contact information can be found in
Comment:        the RIPE database at http://www.ripe.net/whois
Ref:            https://whois.arin.net/rest/net/NET-212-0-0-0-1

ResourceLink:  https://apps.db.ripe.net/search/query.html
ResourceLink:  whois.ripe.net

OrgName:        RIPE Network Coordination Centre
OrgId:          RIPE
Address:        P.O. Box 10096
City:           Amsterdam
StateProv:
PostalCode:     1001EB
Country:        NL
RegDate:
Updated:        2013-07-29
Ref:            https://whois.arin.net/rest/org/RIPE

ReferralServer:  whois://whois.ripe.net
ResourceLink:  https://apps.db.ripe.net/search/query.html

OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName:   Abuse Contact
OrgAbusePhone:  +31205354444
OrgAbuseEmail:  [email protected]
OrgAbuseRef:    https://whois.arin.net/rest/poc/ABUSE3850-ARIN

OrgTechHandle: RNO29-ARIN
OrgTechName:   RIPE NCC Operations
OrgTechPhone:  +31 20 535 4444
OrgTechEmail:  [email protected]
OrgTechRef:    https://whois.arin.net/rest/poc/RNO29-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#



Found a referral to whois.ripe.net.

% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '212.27.48.0 - 212.27.48.255'

% Abuse contact for '212.27.48.0 - 212.27.48.255' is '[email protected]'

inetnum:        212.27.48.0 - 212.27.48.255
netname:        FR-PROXAD
descr:          Proxad / Free SAS
descr:          Server internal infrastructure (SLB)
descr:          Bezons, France
country:        FR
admin-c:        ACP23-RIPE
tech-c:         TCP8-RIPE
status:         ASSIGNED PA
mnt-by:         PROXAD-MNT
created:        2005-09-05T15:24:55Z
last-modified:  2005-09-05T15:24:55Z
source:         RIPE
remarks:        INFRA-AW

role:           Administrative Contact for ProXad
address:        Free SAS / ProXad
address:        8, rue de la Ville L'Eveque
address:        75008 Paris
phone:          +33 1 73 50 20 00
fax-no:         +33 1 73 92 25 69
remarks:        trouble:      Information: http://www.proxad.net/
remarks:        trouble:      Spam/Abuse requests: mailto:[email protected]
admin-c:        APfP1-RIPE
tech-c:         TPfP1-RIPE
nic-hdl:        ACP23-RIPE
mnt-by:         PROXAD-MNT
abuse-mailbox:  [email protected]
created:        2002-06-26T12:46:56Z
last-modified:  2013-08-01T12:16:00Z
source:         RIPE # Filtered

role:           Technical Contact for ProXad
address:        Free SAS / ProXad
address:        8, rue de la Ville L'Eveque
address:        75008 Paris
phone:          +33 1 73 50 20 00
fax-no:         +33 1 73 92 25 69
remarks:        trouble:      Information: http://www.proxad.net/
remarks:        trouble:      Spam/Abuse requests: mailto:[email protected]
admin-c:        APfP1-RIPE
tech-c:         TPfP1-RIPE
nic-hdl:        TCP8-RIPE
mnt-by:         PROXAD-MNT
created:        2002-06-26T12:29:10Z
last-modified:  2011-06-14T09:03:07Z
source:         RIPE # Filtered
abuse-mailbox:  [email protected]

% Information related to '212.27.32.0/19AS12322'

route:          212.27.32.0/19
descr:          ProXad network / Free SA
descr:          Paris, France
origin:         AS12322
mnt-by:         PROXAD-MNT
created:        1970-01-01T00:00:00Z
last-modified:  2001-09-22T09:31:43Z
source:         RIPE # Filtered

% This query was served by the RIPE Database Query Service version 1.89.2 (HEREFORD)


$