城市(city): Changchun
省份(region): Jilin
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '36.48.0.0 - 36.49.255.255'
% Abuse contact for '36.48.0.0 - 36.49.255.255' is '18943124057@189.cn'
inetnum: 36.48.0.0 - 36.49.255.255
netname: CHINANET-JL
descr: CHINANET Jilin province network
descr: Jilin Telecom Corporation
descr: No.2136,Dong-Nan-Hu Road,Changchun,130000,Jilin
country: CN
admin-c: YL1057-AP
tech-c: YL1057-AP
abuse-c: AC1933-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
notify: ipmgr@jltele.com
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JL
mnt-routes: MAINT-CHINANET-JL
mnt-irt: IRT-CHINANET-JL
last-modified: 2020-07-07T05:00:28Z
source: APNIC
irt: IRT-CHINANET-JL
address: No.2136,Dong-Nan-Hu Road,Changchun,130000,Jilin
e-mail: 18943124057@189.cn
abuse-mailbox: 18943124057@189.cn
admin-c: YL1057-AP
tech-c: YL1057-AP
auth: # Filtered
remarks: 18943124057@189.cn was validated on 2026-03-18
mnt-by: MAINT-CHINANET-JL
last-modified: 2026-03-18T00:37:12Z
source: APNIC
role: ABUSE CHINANETJL
country: ZZ
address: No.2136,Dong-Nan-Hu Road,Changchun,130000,Jilin
phone: +000000000
e-mail: 18943124057@189.cn
admin-c: YL1057-AP
tech-c: YL1057-AP
nic-hdl: AC1933-AP
remarks: Generated from irt object IRT-CHINANET-JL
remarks: 18943124057@189.cn was validated on 2026-03-18
abuse-mailbox: 18943124057@189.cn
mnt-by: APNIC-ABUSE
last-modified: 2026-03-18T00:37:38Z
source: APNIC
person: YI LU
nic-hdl: YL1057-AP
e-mail: 18943124057@189.cn
address: No.2136,Southeast lake Street,Changchun,130042,Jilin
phone: +86-431-85880000
fax-no: +86-431-5881234
country: CN
mnt-by: MAINT-CHINANET-JL
last-modified: 2019-11-13T03:31:49Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 36.48.108.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59596
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;36.48.108.172. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026061700 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 17 20:30:09 CST 2026
;; MSG SIZE rcvd: 106Host 172.108.48.36.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 172.108.48.36.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 85.93.20.149 | attack | Unauthorized connection attempt detected from IP address 85.93.20.149 to port 3306 |
2020-03-17 22:50:58 |
| 178.156.202.249 | attackbotsspam | [Tue Mar 17 19:32:25.317018 2020] [:error] [pid 14573:tid 139966170011392] [client 178.156.202.249:57011] [client 178.156.202.249] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XnDDWcB8j1IlAY50N7fx1AAAAKY"] ... |
2020-03-17 23:09:56 |
| 178.156.202.242 | attack | Unauthorized connection attempt detected from IP address 178.156.202.242 to port 81 |
2020-03-17 23:13:30 |
| 169.197.108.38 | attackspam | Unauthorized connection attempt detected from IP address 169.197.108.38 to port 143 |
2020-03-17 22:37:18 |
| 103.52.217.138 | attackspambots | Unauthorized connection attempt detected from IP address 103.52.217.138 to port 8129 |
2020-03-17 22:48:41 |
| 178.156.202.210 | attackspambots | Unauthorized connection attempt detected from IP address 178.156.202.210 to port 8085 |
2020-03-17 23:16:57 |
| 152.249.226.4 | attackspambots | Unauthorized connection attempt detected from IP address 152.249.226.4 to port 80 |
2020-03-17 22:41:03 |
| 187.155.164.144 | attackspam | Unauthorized connection attempt detected from IP address 187.155.164.144 to port 445 |
2020-03-17 23:07:50 |
| 178.156.202.205 | attackbotsspam | Unauthorized connection attempt detected from IP address 178.156.202.205 to port 443 |
2020-03-17 23:18:45 |
| 60.12.221.84 | attack | Mar 17 09:30:17 ACSRAD auth.info sshd[4082]: Invalid user test from 60.12.221.84 port 43142 Mar 17 09:30:17 ACSRAD auth.info sshd[4082]: Failed password for invalid user test from 60.12.221.84 port 43142 ssh2 Mar 17 09:30:17 ACSRAD auth.info sshd[4082]: Received disconnect from 60.12.221.84 port 43142:11: Bye Bye [preauth] Mar 17 09:30:17 ACSRAD auth.info sshd[4082]: Disconnected from 60.12.221.84 port 43142 [preauth] Mar 17 09:30:17 ACSRAD auth.notice sshguard[7014]: Attack from "60.12.221.84" on service 100 whostnameh danger 10. Mar 17 09:30:17 ACSRAD auth.notice sshguard[7014]: Attack from "60.12.221.84" on service 100 whostnameh danger 10. Mar 17 09:30:17 ACSRAD auth.notice sshguard[7014]: Attack from "60.12.221.84" on service 100 whostnameh danger 10. Mar 17 09:30:17 ACSRAD auth.warn sshguard[7014]: Blocking "60.12.221.84/32" forever (4 attacks in 223 secs, after 2 abuses over 3757 secs.) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=60.12.221.84 |
2020-03-17 22:55:43 |
| 178.156.202.214 | attackspambots | Unauthorized connection attempt detected from IP address 178.156.202.214 to port 8000 |
2020-03-17 23:16:18 |
| 112.201.89.164 | attackspam | Unauthorized connection attempt detected from IP address 112.201.89.164 to port 81 |
2020-03-17 22:45:22 |
| 103.13.90.148 | attack | Unauthorized connection attempt detected from IP address 103.13.90.148 to port 445 |
2020-03-17 22:49:08 |
| 190.104.229.218 | attack | Unauthorized connection attempt detected from IP address 190.104.229.218 to port 445 |
2020-03-17 23:06:29 |
| 82.221.105.6 | attackspambots | 82.221.105.6 was recorded 5 times by 4 hosts attempting to connect to the following ports: 175,8010,1521,21025,4949. Incident counter (4h, 24h, all-time): 5, 16, 2294 |
2020-03-17 22:52:00 |