城市(city): Beijing
省份(region): Beijing
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 47.92.213.61 | attackspam | Unauthorized connection attempt detected from IP address 47.92.213.61 to port 23 |
2020-06-13 07:03:18 |
| 47.92.213.61 | attackbots | Unauthorized connection attempt detected from IP address 47.92.213.61 to port 23 [T] |
2020-05-20 11:03:38 |
| 47.92.213.61 | attackbotsspam | Unauthorized connection attempt detected from IP address 47.92.213.61 to port 23 [T] |
2020-04-23 22:00:05 |
| 47.92.213.68 | attackspam | Unauthorized connection attempt detected from IP address 47.92.213.68 to port 167 [T] |
2020-01-07 00:15:17 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 47.92.0.0 - 47.97.255.255
CIDR: 47.92.0.0/14, 47.96.0.0/15
NetName: APNIC
NetHandle: NET-47-92-0-0-1
Parent: NET47 (NET-47-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2015-03-02
Updated: 2015-03-02
Ref: https://rdap.arin.net/registry/ip/47.92.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '47.92.0.0 - 47.95.255.255'
% Abuse contact for '47.92.0.0 - 47.95.255.255' is 'didong.jc@alibaba-inc.com'
inetnum: 47.92.0.0 - 47.95.255.255
netname: ALISOFT
descr: Aliyun Computing Co., LTD
descr: 5F, Builing D, the West Lake International Plaza of S&T
descr: No.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099
country: CN
admin-c: ZM1015-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
tech-c: ZM875-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-ALISOFT-CN
last-modified: 2023-11-28T00:58:17Z
source: APNIC
irt: IRT-ALISOFT-CN
address: No.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099
e-mail: didong.jc@alibaba-inc.com
abuse-mailbox: didong.jc@alibaba-inc.com
admin-c: ZM877-AP
tech-c: ZM877-AP
auth: # Filtered
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-18T00:35:07Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: Li Jia
address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
country: CN
phone: +86-0571-85022088
e-mail: jiali.jl@alibaba-inc.com
nic-hdl: ZM1015-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:12:42Z
source: APNIC
person: Guoxin Gao
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: anti-spam@list.alibaba-inc.com
nic-hdl: ZM875-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2014-07-30T01:56:01Z
source: APNIC
person: security trouble
e-mail: abuse@alibaba-inc.com
address: 5th,floor,Building D,the West Lake International Plaza of S&T,391#Wen??r Road
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
last-modified: 2025-07-01T07:06:11Z
source: APNIC
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: abuse@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:05:46Z
source: APNIC
% Information related to '47.92.0.0/14AS37963'
route: 47.92.0.0/14
descr: Hangzhou Alibaba Advertising Co.,Ltd.
country: CN
origin: AS37963
mnt-by: MAINT-CNNIC-AP
last-modified: 2019-08-07T23:28:06Z
source: APNIC
% Information related to '47.92.0.0/14AS45102'
route: 47.92.0.0/14
descr: Alibaba (US) Technology Co., Ltd.
country: CN
origin: AS45102
mnt-by: MAINT-CNNIC-AP
last-modified: 2019-08-07T23:28:04Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 47.92.213.101
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40219
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;47.92.213.101. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026030500 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 05 19:30:25 CST 2026
;; MSG SIZE rcvd: 106Host 101.213.92.47.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 101.213.92.47.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 122.224.175.218 | attackbotsspam | k+ssh-bruteforce |
2019-11-28 18:16:03 |
| 200.169.223.98 | attackbotsspam | Nov 28 07:18:10 game-panel sshd[16040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.169.223.98 Nov 28 07:18:12 game-panel sshd[16040]: Failed password for invalid user test from 200.169.223.98 port 36566 ssh2 Nov 28 07:25:24 game-panel sshd[16224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.169.223.98 |
2019-11-28 17:38:16 |
| 93.157.12.5 | attack | Unauthorised access (Nov 28) SRC=93.157.12.5 LEN=52 TTL=113 ID=15399 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 28) SRC=93.157.12.5 LEN=52 TTL=113 ID=1081 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 28) SRC=93.157.12.5 LEN=52 TTL=113 ID=28731 DF TCP DPT=445 WINDOW=8192 SYN |
2019-11-28 17:54:51 |
| 212.129.138.67 | attack | Nov 28 09:55:27 microserver sshd[57335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.67 user=root Nov 28 09:55:29 microserver sshd[57335]: Failed password for root from 212.129.138.67 port 44214 ssh2 Nov 28 10:03:06 microserver sshd[58185]: Invalid user deboer from 212.129.138.67 port 54964 Nov 28 10:03:06 microserver sshd[58185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.67 Nov 28 10:03:08 microserver sshd[58185]: Failed password for invalid user deboer from 212.129.138.67 port 54964 ssh2 Nov 28 10:18:24 microserver sshd[60241]: Invalid user gronnesby from 212.129.138.67 port 48232 Nov 28 10:18:24 microserver sshd[60241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.67 Nov 28 10:18:27 microserver sshd[60241]: Failed password for invalid user gronnesby from 212.129.138.67 port 48232 ssh2 Nov 28 10:26:01 microserver sshd[61494]: Invalid user h |
2019-11-28 17:57:08 |
| 211.232.39.8 | attackspambots | $f2bV_matches |
2019-11-28 17:39:21 |
| 23.24.251.39 | attack | Nov 28 07:25:48 dev sshd\[10766\]: Invalid user pi from 23.24.251.39 port 49878 Nov 28 07:25:48 dev sshd\[10767\]: Invalid user pi from 23.24.251.39 port 49880 Nov 28 07:25:49 dev sshd\[10767\]: Failed password for invalid user pi from 23.24.251.39 port 49880 ssh2 |
2019-11-28 18:02:12 |
| 151.80.61.70 | attackspambots | 2019-11-28T09:24:09.487576abusebot-2.cloudsearch.cf sshd\[3037\]: Invalid user ssh from 151.80.61.70 port 44486 |
2019-11-28 17:55:15 |
| 106.12.130.235 | attackbotsspam | Nov 27 23:19:57 hanapaa sshd\[15276\]: Invalid user dana from 106.12.130.235 Nov 27 23:19:57 hanapaa sshd\[15276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.235 Nov 27 23:19:59 hanapaa sshd\[15276\]: Failed password for invalid user dana from 106.12.130.235 port 34916 ssh2 Nov 27 23:27:42 hanapaa sshd\[15864\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.130.235 user=root Nov 27 23:27:44 hanapaa sshd\[15864\]: Failed password for root from 106.12.130.235 port 42282 ssh2 |
2019-11-28 17:43:08 |
| 188.166.226.209 | attackspambots | $f2bV_matches |
2019-11-28 17:41:38 |
| 37.59.8.84 | attack | Automatic report - Banned IP Access |
2019-11-28 18:07:45 |
| 50.63.197.102 | attack | Automatic report - XMLRPC Attack |
2019-11-28 17:55:46 |
| 222.186.175.181 | attackbotsspam | Nov 28 10:45:06 fr01 sshd[20305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.181 user=root Nov 28 10:45:08 fr01 sshd[20305]: Failed password for root from 222.186.175.181 port 49005 ssh2 ... |
2019-11-28 17:54:35 |
| 43.241.57.114 | attackbots | Automatic report - XMLRPC Attack |
2019-11-28 18:06:13 |
| 128.199.84.41 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-11-28 18:15:42 |
| 190.235.64.67 | attack | DATE:2019-11-28 07:25:40, IP:190.235.64.67, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc) |
2019-11-28 18:09:16 |