城市(city): unknown
省份(region): unknown
国家(country): Hong Kong
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 156.245.0.0 - 156.245.255.255
CIDR: 156.245.0.0/16
NetName: AFRINIC-ERX-156-245-0-0
NetHandle: NET-156-245-0-0-1
Parent: NET156 (NET-156-0-0-0-0)
NetType: Transferred to AfriNIC
OriginAS:
Organization: African Network Information Center (AFRINIC)
RegDate: 2010-11-03
Updated: 2010-11-17
Comment: This IP address range is under AFRINIC responsibility.
Comment: Please see http://www.afrinic.net/ for further details,
Comment: or check the WHOIS server located at whois.afrinic.net.
Ref: https://rdap.arin.net/registry/ip/156.245.0.0
ResourceLink: http://afrinic.net/en/services/whois-query
ResourceLink: whois.afrinic.net
OrgName: African Network Information Center
OrgId: AFRINIC
Address: Level 11ABC
Address: Raffles Tower
Address: Lot 19, Cybercity
City: Ebene
StateProv:
PostalCode:
Country: MU
RegDate: 2004-05-17
Updated: 2015-05-04
Comment: AfriNIC - http://www.afrinic.net
Comment: The African & Indian Ocean Internet Registry
Ref: https://rdap.arin.net/registry/entity/AFRINIC
ReferralServer: whois://whois.afrinic.net
ResourceLink: http://afrinic.net/en/services/whois-query
OrgAbuseHandle: GENER11-ARIN
OrgAbuseName: Generic POC
OrgAbusePhone: +230 4666616
OrgAbuseEmail: abusepoc@afrinic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/GENER11-ARIN
OrgTechHandle: GENER11-ARIN
OrgTechName: Generic POC
OrgTechPhone: +230 4666616
OrgTechEmail: abusepoc@afrinic.net
OrgTechRef: https://rdap.arin.net/registry/entity/GENER11-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.afrinic.net.
% This is the AfriNIC Whois server.
% The AFRINIC whois database is subject to the following terms of Use. See https://afrinic.net/whois/terms
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '156.245.207.0 - 156.245.207.255'
% No abuse contact registered for 156.245.207.0 - 156.245.207.255
inetnum: 156.245.207.0 - 156.245.207.255
netname: Zillion_Network_Inc
descr: Zillion Network Inc.
country: HK
admin-c: CIS1-AFRINIC
tech-c: CIS1-AFRINIC
status: ASSIGNED PA
mnt-by: CIL1-MNT
mnt-by: LARUS-SERVICE-MNT
source: AFRINIC # Filtered
parent: 156.224.0.0 - 156.255.255.255
person: Cloud Innovation Support
address: Ebene
address: MU
address: Mahe
address: Seychelles
phone: tel:+248-4-610-795
nic-hdl: CIS1-AFRINIC
abuse-mailbox: abuse@cloudinnovation.org
mnt-by: CIL1-MNT
source: AFRINIC # Filtered
% Information related to '156.245.204.0/22AS54801'
route: 156.245.204.0/22
origin: AS54801
descr: Hong Kong megalayer
mnt-by: LARUS-SERVICE-MNT
source: AFRINIC # Filtered; <<>> DiG 9.10.3-P4-Ubuntu <<>> 156.245.207.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5599
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;156.245.207.80. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026052200 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 22 22:31:47 CST 2026
;; MSG SIZE rcvd: 107Host 80.207.245.156.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 80.207.245.156.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 190.0.54.218 | attack | Unauthorized connection attempt from IP address 190.0.54.218 on Port 445(SMB) |
2020-09-16 21:40:39 |
| 185.100.87.206 | attack | (sshd) Failed SSH login from 185.100.87.206 (RO/Romania/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 16 09:45:37 server5 sshd[13442]: Failed password for root from 185.100.87.206 port 36953 ssh2 Sep 16 09:45:39 server5 sshd[13442]: Failed password for root from 185.100.87.206 port 36953 ssh2 Sep 16 09:45:42 server5 sshd[13442]: Failed password for root from 185.100.87.206 port 36953 ssh2 Sep 16 09:45:44 server5 sshd[13442]: Failed password for root from 185.100.87.206 port 36953 ssh2 Sep 16 09:45:46 server5 sshd[13442]: Failed password for root from 185.100.87.206 port 36953 ssh2 |
2020-09-16 21:48:16 |
| 113.31.107.34 | attackbots | (sshd) Failed SSH login from 113.31.107.34 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 16 06:23:14 server2 sshd[13229]: Invalid user guest3 from 113.31.107.34 Sep 16 06:23:14 server2 sshd[13229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.31.107.34 Sep 16 06:23:16 server2 sshd[13229]: Failed password for invalid user guest3 from 113.31.107.34 port 50552 ssh2 Sep 16 06:43:29 server2 sshd[27176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.31.107.34 user=root Sep 16 06:43:31 server2 sshd[27176]: Failed password for root from 113.31.107.34 port 43250 ssh2 |
2020-09-16 21:38:56 |
| 104.140.188.22 | attackspam | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-09-16 22:12:50 |
| 101.231.60.126 | attack | Sep 16 04:02:29 minden010 sshd[17574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.60.126 Sep 16 04:02:31 minden010 sshd[17574]: Failed password for invalid user admin from 101.231.60.126 port 5779 ssh2 Sep 16 04:06:45 minden010 sshd[18986]: Failed password for root from 101.231.60.126 port 26774 ssh2 ... |
2020-09-16 22:13:15 |
| 149.56.28.100 | attack | Port scan denied |
2020-09-16 22:03:52 |
| 61.84.196.50 | attackbots | Invalid user linux from 61.84.196.50 port 44964 |
2020-09-16 21:59:11 |
| 41.165.88.130 | attackbotsspam | Repeated RDP login failures. Last user: Adm |
2020-09-16 22:18:07 |
| 223.206.237.6 | attackbotsspam | Unauthorized connection attempt from IP address 223.206.237.6 on Port 445(SMB) |
2020-09-16 22:08:07 |
| 196.52.43.54 | attackspam | 8009/tcp 110/tcp 5904/tcp... [2020-07-16/09-16]86pkt,65pt.(tcp),6pt.(udp) |
2020-09-16 21:44:17 |
| 51.195.166.160 | attackspambots | (mod_security) mod_security (id:980001) triggered by 51.195.166.160 (FR/France/tor-exit-readme.stopmassspying.net): 5 in the last 14400 secs; ID: rub |
2020-09-16 21:53:23 |
| 180.244.105.148 | attack | RDP Bruteforce |
2020-09-16 22:13:56 |
| 218.212.73.83 | attackspam | Sep 16 01:10:56 vps639187 sshd\[8408\]: Invalid user support from 218.212.73.83 port 53427 Sep 16 01:10:57 vps639187 sshd\[8408\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.212.73.83 Sep 16 01:10:58 vps639187 sshd\[8408\]: Failed password for invalid user support from 218.212.73.83 port 53427 ssh2 ... |
2020-09-16 22:01:35 |
| 49.232.144.7 | attackspambots | Sep 16 16:01:53 nopemail auth.info sshd[20862]: Disconnected from authenticating user root 49.232.144.7 port 42894 [preauth] ... |
2020-09-16 22:05:38 |
| 203.129.218.76 | attack | Invalid user trainer from 203.129.218.76 port 45166 |
2020-09-16 21:47:53 |