城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '36.48.0.0 - 36.49.255.255'
% Abuse contact for '36.48.0.0 - 36.49.255.255' is '18943124057@189.cn'
inetnum: 36.48.0.0 - 36.49.255.255
netname: CHINANET-JL
descr: CHINANET Jilin province network
descr: Jilin Telecom Corporation
descr: No.2136,Dong-Nan-Hu Road,Changchun,130000,Jilin
country: CN
admin-c: YL1057-AP
tech-c: YL1057-AP
abuse-c: AC1933-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
notify: ipmgr@jltele.com
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JL
mnt-routes: MAINT-CHINANET-JL
mnt-irt: IRT-CHINANET-JL
last-modified: 2020-07-07T05:00:28Z
source: APNIC
irt: IRT-CHINANET-JL
address: No.2136,Dong-Nan-Hu Road,Changchun,130000,Jilin
e-mail: 18943124057@189.cn
abuse-mailbox: 18943124057@189.cn
admin-c: YL1057-AP
tech-c: YL1057-AP
auth: # Filtered
remarks: 18943124057@189.cn was validated on 2026-03-18
mnt-by: MAINT-CHINANET-JL
last-modified: 2026-03-18T00:37:12Z
source: APNIC
role: ABUSE CHINANETJL
country: ZZ
address: No.2136,Dong-Nan-Hu Road,Changchun,130000,Jilin
phone: +000000000
e-mail: 18943124057@189.cn
admin-c: YL1057-AP
tech-c: YL1057-AP
nic-hdl: AC1933-AP
remarks: Generated from irt object IRT-CHINANET-JL
remarks: 18943124057@189.cn was validated on 2026-03-18
abuse-mailbox: 18943124057@189.cn
mnt-by: APNIC-ABUSE
last-modified: 2026-03-18T00:37:38Z
source: APNIC
person: YI LU
nic-hdl: YL1057-AP
e-mail: 18943124057@189.cn
address: No.2136,Southeast lake Street,Changchun,130042,Jilin
phone: +86-431-85880000
fax-no: +86-431-5881234
country: CN
mnt-by: MAINT-CHINANET-JL
last-modified: 2019-11-13T03:31:49Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 36.49.28.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64860
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;36.49.28.22. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026042002 1800 900 604800 86400
;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 21 05:00:39 CST 2026
;; MSG SIZE rcvd: 104Host 22.28.49.36.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 22.28.49.36.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 103.60.126.80 | attack | Aug 1 06:50:55 server sshd\[3602\]: Invalid user jenkins from 103.60.126.80 port 40336 Aug 1 06:50:55 server sshd\[3602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.60.126.80 Aug 1 06:50:58 server sshd\[3602\]: Failed password for invalid user jenkins from 103.60.126.80 port 40336 ssh2 Aug 1 06:55:58 server sshd\[25435\]: Invalid user enzo from 103.60.126.80 port 35620 Aug 1 06:55:58 server sshd\[25435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.60.126.80 |
2019-08-01 14:10:37 |
| 222.173.81.22 | attack | Aug 1 05:11:59 MK-Soft-VM5 sshd\[1871\]: Invalid user sai from 222.173.81.22 port 3145 Aug 1 05:11:59 MK-Soft-VM5 sshd\[1871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.173.81.22 Aug 1 05:12:02 MK-Soft-VM5 sshd\[1871\]: Failed password for invalid user sai from 222.173.81.22 port 3145 ssh2 ... |
2019-08-01 13:46:42 |
| 134.175.8.243 | attackbotsspam | Aug 1 08:49:08 yabzik sshd[22976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.8.243 Aug 1 08:49:09 yabzik sshd[22976]: Failed password for invalid user administrador from 134.175.8.243 port 38710 ssh2 Aug 1 08:54:46 yabzik sshd[24618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.8.243 |
2019-08-01 13:57:34 |
| 185.220.101.46 | attackspambots | Aug 1 07:38:51 hosting sshd[17869]: Invalid user fwupgrade from 185.220.101.46 port 37935 Aug 1 07:38:51 hosting sshd[17869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.46 Aug 1 07:38:51 hosting sshd[17869]: Invalid user fwupgrade from 185.220.101.46 port 37935 Aug 1 07:38:53 hosting sshd[17869]: Failed password for invalid user fwupgrade from 185.220.101.46 port 37935 ssh2 ... |
2019-08-01 13:27:49 |
| 122.228.19.80 | attackbots | 01.08.2019 05:49:12 Connection to port 8649 blocked by firewall |
2019-08-01 14:14:27 |
| 80.211.66.44 | attack | 2019-08-01T05:32:16.612095centos sshd\[26173\]: Invalid user jenkins from 80.211.66.44 port 47743 2019-08-01T05:32:16.618241centos sshd\[26173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.66.44 2019-08-01T05:32:19.100829centos sshd\[26173\]: Failed password for invalid user jenkins from 80.211.66.44 port 47743 ssh2 |
2019-08-01 13:58:59 |
| 202.131.102.78 | attackbots | Aug 1 07:09:20 nandi sshd[12931]: Invalid user canna from 202.131.102.78 Aug 1 07:09:20 nandi sshd[12931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.131.102.78 Aug 1 07:09:22 nandi sshd[12931]: Failed password for invalid user canna from 202.131.102.78 port 51718 ssh2 Aug 1 07:09:22 nandi sshd[12931]: Received disconnect from 202.131.102.78: 11: Bye Bye [preauth] Aug 1 07:19:17 nandi sshd[17197]: Invalid user admin from 202.131.102.78 Aug 1 07:19:17 nandi sshd[17197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.131.102.78 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=202.131.102.78 |
2019-08-01 13:24:42 |
| 193.105.155.168 | attackbotsspam | Aug 1 05:31:35 [munged] sshd[7288]: Invalid user elly from 193.105.155.168 port 55554 Aug 1 05:31:35 [munged] sshd[7288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.105.155.168 |
2019-08-01 14:07:55 |
| 201.46.62.28 | attack | failed_logins |
2019-08-01 14:16:39 |
| 115.79.139.144 | attackspambots | Unauthorized connection attempt from IP address 115.79.139.144 on Port 445(SMB) |
2019-08-01 13:29:30 |
| 201.16.251.121 | attackbots | Automatic report - Banned IP Access |
2019-08-01 13:50:12 |
| 216.244.66.242 | attackbots | 20 attempts against mh-misbehave-ban on flame.magehost.pro |
2019-08-01 14:03:42 |
| 207.154.204.124 | attackbots | 2019-08-01T05:09:53.841587abusebot-7.cloudsearch.cf sshd\[3978\]: Invalid user teacher123 from 207.154.204.124 port 48610 |
2019-08-01 13:24:13 |
| 185.153.196.80 | attack | Aug 1 06:37:01 h2177944 kernel: \[2958165.272985\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.196.80 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=12433 PROTO=TCP SPT=43635 DPT=7021 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 1 06:40:51 h2177944 kernel: \[2958395.245738\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.196.80 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=46993 PROTO=TCP SPT=43635 DPT=6996 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 1 06:48:49 h2177944 kernel: \[2958872.970227\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.196.80 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=12478 PROTO=TCP SPT=43635 DPT=7247 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 1 06:54:47 h2177944 kernel: \[2959230.712152\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.196.80 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=5296 PROTO=TCP SPT=43635 DPT=7140 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 1 06:58:05 h2177944 kernel: \[2959428.688675\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.196.80 DST=85.214.1 |
2019-08-01 13:38:44 |
| 210.16.188.124 | attackbotsspam | Automatic report - Banned IP Access |
2019-08-01 13:55:19 |