223.104.85.137

基本信息:

城市(city): Guangzhou

省份(region): Guangdong

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '223.64.0.0 - 223.117.255.255'

% Abuse contact for '223.64.0.0 - 223.117.255.255' is 'abuse@chinamobile.com'

inetnum:        223.64.0.0 - 223.117.255.255
netname:        CMNET
descr:          China Mobile Communications Corporation
descr:          Mobile Communications Network Operator in China
descr:          Internet Service Provider in China
country:        CN
org:            ORG-CM1-AP
admin-c:        HL1318-AP
tech-c:         HL1318-AP
abuse-c:        AC2006-AP
status:         ALLOCATED PORTABLE
remarks:        service provider
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CN-CMCC
mnt-routes:     MAINT-CN-CMCC
mnt-irt:        IRT-CHINAMOBILE-CN
last-modified:  2020-10-20T00:58:37Z
source:         APNIC

irt:            IRT-CHINAMOBILE-CN
address:        China Mobile Communications Corporation
address:        29, Jinrong Ave., Xicheng District, Beijing, 100032
e-mail:         abuse@chinamobile.com
abuse-mailbox:  abuse@chinamobile.com
admin-c:        CT74-AP
tech-c:         CT74-AP
auth:           # Filtered
remarks:        abuse@chinamobile.com was validated on 2025-09-15
mnt-by:         MAINT-CN-CMCC
last-modified:  2025-11-18T00:26:27Z
source:         APNIC

organisation:   ORG-CM1-AP
org-name:       China Mobile
org-type:       LIR
country:        CN
address:        29, Jinrong Ave.
phone:          +86-10-5268-6688
fax-no:         +86-10-5261-6187
e-mail:         hostmaster@chinamobile.com
mnt-ref:        APNIC-HM
mnt-by:         APNIC-HM
last-modified:  2023-09-05T02:14:48Z
source:         APNIC

role:           ABUSE CHINAMOBILECN
country:        ZZ
address:        China Mobile Communications Corporation
address:        29, Jinrong Ave., Xicheng District, Beijing, 100032
phone:          +000000000
e-mail:         abuse@chinamobile.com
admin-c:        CT74-AP
tech-c:         CT74-AP
nic-hdl:        AC2006-AP
remarks:        Generated from irt object IRT-CHINAMOBILE-CN
remarks:        abuse@chinamobile.com was validated on 2025-09-15
abuse-mailbox:  abuse@chinamobile.com
mnt-by:         APNIC-ABUSE
last-modified:  2025-09-15T02:20:13Z
source:         APNIC

person:         haijun li
nic-hdl:        HL1318-AP
e-mail:         hostmaster@chinamobile.com
address:        29,Jinrong Ave, Xicheng district,beijing,100032
phone:          +86 1052686688
fax-no:         +86 10 52616187
country:        CN
mnt-by:         MAINT-CN-CMCC
abuse-mailbox:  abuse@chinamobile.com
last-modified:  2016-11-29T09:38:38Z
source:         APNIC

% Information related to '223.96.0.0/12AS9808'

route:          223.96.0.0/12
descr:          China Mobile communications corporation
origin:         AS9808
mnt-by:         MAINT-CN-CMCC
last-modified:  2012-02-15T08:54:04Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4)

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 223.104.85.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4355
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;223.104.85.137.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026012801 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 29 10:08:57 CST 2026
;; MSG SIZE  rcvd: 107

HOST信息:

Host 137.85.104.223.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 137.85.104.223.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
129.204.44.231	attackbots	Jun 5 02:51:06 php1 sshd\[14670\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.44.231 user=root Jun 5 02:51:08 php1 sshd\[14670\]: Failed password for root from 129.204.44.231 port 49084 ssh2 Jun 5 02:54:48 php1 sshd\[14936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.44.231 user=root Jun 5 02:54:50 php1 sshd\[14936\]: Failed password for root from 129.204.44.231 port 33268 ssh2 Jun 5 02:58:28 php1 sshd\[15221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.44.231 user=root	2020-06-05 21:24:34
181.177.112.166	attackspam	[Fri Jun 05 19:02:29.321112 2020] [:error] [pid 4669:tid 140368953304832] [client 181.177.112.166:38988] [client 181.177.112.166] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "staklim-malang.info"] [uri "/"] [unique_id "Xto0VQdWaFgiQ2u6AHfSUQAAAOE"] ...	2020-06-05 21:41:57
51.91.56.133	attackbotsspam	Jun 5 17:51:21 gw1 sshd[19254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.56.133 Jun 5 17:51:23 gw1 sshd[19254]: Failed password for invalid user zhongguowangtong\r from 51.91.56.133 port 42512 ssh2 ...	2020-06-05 21:04:02
104.248.158.95	attack	CMS (WordPress or Joomla) login attempt.	2020-06-05 21:31:18
188.162.196.103	attackspambots	Email rejected due to spam filtering	2020-06-05 21:30:09
222.186.175.202	attackspam	$f2bV_matches	2020-06-05 21:34:39
27.221.97.3	attack	Jun 5 13:57:43 mail sshd\[31447\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.221.97.3 user=root Jun 5 13:57:46 mail sshd\[31447\]: Failed password for root from 27.221.97.3 port 48422 ssh2 Jun 5 14:02:36 mail sshd\[31657\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.221.97.3 user=root ...	2020-06-05 21:31:48
106.75.254.114	attack	Brute-force attempt banned	2020-06-05 21:11:39
49.228.187.136	attack	xmlrpc attack	2020-06-05 21:19:53
106.13.168.31	attackspambots	2020-06-05T13:42:39.416559ns386461 sshd\[13226\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.168.31 user=root 2020-06-05T13:42:40.991283ns386461 sshd\[13226\]: Failed password for root from 106.13.168.31 port 48164 ssh2 2020-06-05T13:58:40.367103ns386461 sshd\[28263\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.168.31 user=root 2020-06-05T13:58:41.872510ns386461 sshd\[28263\]: Failed password for root from 106.13.168.31 port 52444 ssh2 2020-06-05T14:02:52.128448ns386461 sshd\[31996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.168.31 user=root ...	2020-06-05 21:17:28
112.85.42.172	attack	Brute-force attempt banned	2020-06-05 21:30:52
144.91.118.135	attackbots	Brute-Force	2020-06-05 21:08:01
139.155.21.186	attackbotsspam	Jun 5 13:58:33 cloud sshd[18333]: Failed password for root from 139.155.21.186 port 40924 ssh2	2020-06-05 21:15:05
36.46.142.80	attackspambots	Jun 5 13:36:04 jumpserver sshd[83564]: Failed password for root from 36.46.142.80 port 41035 ssh2 Jun 5 13:39:38 jumpserver sshd[83581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.46.142.80 user=root Jun 5 13:39:40 jumpserver sshd[83581]: Failed password for root from 36.46.142.80 port 37934 ssh2 ...	2020-06-05 21:41:01
181.177.112.144	attackspambots	[Fri Jun 05 19:02:25.384594 2020] [:error] [pid 5117:tid 140368936519424] [client 181.177.112.144:58901] [client 181.177.112.144] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "staklim-malang.info"] [uri "/"] [unique_id "Xto0UYDumKE@PnEuEHXFTwAAAfE"] ...	2020-06-05 21:47:01

最近上报的IP列表

91.231.89.69	91.231.89.170	47.92.247.130	198.235.24.85
152.42.232.64	192.109.200.205	78.157.32.202	35.203.210.181
159.223.230.166	183.82.109.218	95.188.83.225	138.197.186.56
14.212.103.215	112.13.112.20	10.34.76.169	142.44.161.179
44.220.185.15	233.197.16.234	2408:8214:5b3a:5120:f491:8844:6715:d9d7	10.10.101.230