城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '219.222.0.0 - 219.223.255.255'
% Abuse contact for '219.222.0.0 - 219.223.255.255' is 'abuse@cernet.edu.cn'
inetnum: 219.222.0.0 - 219.223.255.255
netname: CERNET-CN
descr: China Education and Research Network
descr: Guangzhou Regional Network
country: CN
admin-c: CER-AP
tech-c: CER-AP
abuse-c: AC1685-AP
status: ALLOCATED PORTABLE
remarks: origin AS4538
remarks: confederation
remarks: GZR-CERNET
mnt-by: APNIC-HM
mnt-lower: MAINT-CERNET-AP
mnt-routes: MAINT-CERNET-AP
mnt-irt: IRT-CERNET-AP
last-modified: 2020-10-20T00:56:52Z
source: APNIC
irt: IRT-CERNET-AP
address: Network Center,
address: FIT-3-220, Tsinghua Univ
address: Beijing 100084, China
phone: +86-10-62784301
fax-no: +86-10-62785933
e-mail: abuse@cernet.edu.cn
abuse-mailbox: abuse@cernet.edu.cn
admin-c: CER-AP
tech-c: CER-AP
auth: # Filtered
remarks: timezone GMT+8
remarks: abuse@cernet.edu.cn was validated on 2026-03-05
mnt-by: MAINT-CERNET-AP
last-modified: 2026-03-05T06:39:56Z
source: APNIC
role: ABUSE CERNETAP
country: ZZ
address: Network Center,
address: FIT-3-220, Tsinghua Univ
address: Beijing 100084, China
phone: +86-10-62784301
e-mail: abuse@cernet.edu.cn
admin-c: CER-AP
tech-c: CER-AP
nic-hdl: AC1685-AP
remarks: Generated from irt object IRT-CERNET-AP
remarks: abuse@cernet.edu.cn was validated on 2026-03-05
abuse-mailbox: abuse@cernet.edu.cn
mnt-by: APNIC-ABUSE
last-modified: 2026-03-05T06:40:20Z
source: APNIC
role: CERNET Helpdesk
address: CERNET Center
address: Beijing 100084, China
country: CN
phone: +86-10-6278-4049
fax-no: +86-10-6278-5933
e-mail: helpdesk@cernet.edu.cn
remarks: abuse@cernet.edu.cn
admin-c: XL1-CN
tech-c: SZ2-AP
nic-hdl: CER-AP
mnt-by: MAINT-CERNET-AP
last-modified: 2020-09-03T09:14:12Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.222.126.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17441
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;219.222.126.19. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026031400 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 14 15:27:11 CST 2026
;; MSG SIZE rcvd: 107Host 19.126.222.219.in-addr.arpa not found: 2(SERVFAIL)
server can't find 219.222.126.19.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 190.2.22.49 | attack | Unauthorised access (May 3) SRC=190.2.22.49 LEN=52 TTL=114 ID=8964 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Apr 29) SRC=190.2.22.49 LEN=52 TTL=114 ID=29317 DF TCP DPT=445 WINDOW=8192 SYN |
2020-05-04 07:14:00 |
| 106.13.40.65 | attack | May 4 00:52:33 server sshd[13068]: User postgres from 106.13.40.65 not allowed because not listed in AllowUsers May 4 00:52:35 server sshd[13068]: Failed password for invalid user postgres from 106.13.40.65 port 41388 ssh2 May 4 00:56:22 server sshd[15772]: Failed password for invalid user deploy from 106.13.40.65 port 39160 ssh2 |
2020-05-04 07:44:32 |
| 49.235.11.46 | attackspambots | SASL PLAIN auth failed: ruser=... |
2020-05-04 07:17:15 |
| 162.243.164.246 | attack | May 3 16:23:20 server1 sshd\[23971\]: Invalid user admin from 162.243.164.246 May 3 16:23:20 server1 sshd\[23971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.164.246 May 3 16:23:23 server1 sshd\[23971\]: Failed password for invalid user admin from 162.243.164.246 port 36196 ssh2 May 3 16:25:43 server1 sshd\[24574\]: Invalid user git from 162.243.164.246 May 3 16:25:43 server1 sshd\[24574\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.164.246 ... |
2020-05-04 07:45:02 |
| 134.122.72.221 | attackspambots | $f2bV_matches |
2020-05-04 07:26:42 |
| 202.165.193.68 | attackspam | Bruteforce detected by fail2ban |
2020-05-04 07:39:31 |
| 212.80.216.198 | attackbotsspam | DATE:2020-05-03 22:37:05, IP:212.80.216.198, PORT:5900 VNC brute force auth on honeypot server (honey-neo-dc) |
2020-05-04 07:35:02 |
| 112.85.42.172 | attackspambots | $f2bV_matches |
2020-05-04 07:18:33 |
| 61.133.232.249 | attackbotsspam | 2020-05-03T22:37:29.739890Z 0e48a8f2ec96 New connection: 61.133.232.249:58816 (172.17.0.5:2222) [session: 0e48a8f2ec96] 2020-05-03T23:12:12.869165Z 5d4149237884 New connection: 61.133.232.249:56330 (172.17.0.5:2222) [session: 5d4149237884] |
2020-05-04 07:31:49 |
| 59.46.19.83 | attackspam | port scan and connect, tcp 1433 (ms-sql-s) |
2020-05-04 07:19:34 |
| 178.128.118.192 | attackspam | May 4 00:43:54 jane sshd[30718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.118.192 May 4 00:43:56 jane sshd[30718]: Failed password for invalid user guest from 178.128.118.192 port 46682 ssh2 ... |
2020-05-04 07:26:28 |
| 139.199.45.83 | attackbots | May 3 20:36:54 localhost sshd\[15856\]: Invalid user mono from 139.199.45.83 port 54664 May 3 20:36:54 localhost sshd\[15856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.45.83 May 3 20:36:56 localhost sshd\[15856\]: Failed password for invalid user mono from 139.199.45.83 port 54664 ssh2 ... |
2020-05-04 07:38:45 |
| 51.15.118.15 | attack | May 3 23:18:10 piServer sshd[24632]: Failed password for root from 51.15.118.15 port 44566 ssh2 May 3 23:21:58 piServer sshd[25159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.118.15 May 3 23:21:59 piServer sshd[25159]: Failed password for invalid user hours from 51.15.118.15 port 55324 ssh2 ... |
2020-05-04 07:30:39 |
| 115.236.19.35 | attackspam | $f2bV_matches |
2020-05-04 07:08:01 |
| 115.75.223.65 | attackspam | Automatic report - Port Scan Attack |
2020-05-04 07:39:52 |