城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '49.152.0.0 - 49.155.255.255'
% Abuse contact for '49.152.0.0 - 49.155.255.255' is 'jsz_1981_10@sina.com'
inetnum: 49.152.0.0 - 49.155.255.255
netname: JSCNNET
descr: JIANGSU BROADCASTING DATA NETWORK CORPORATION LIMITED
descr: BUILDING NO.11 WINDOWS TO THE WORLD SOFTWARE PARK NO.12 DINGHUAIMEN,NANJING,CHINA
country: CN
admin-c: ML1838-AP
tech-c: BW690-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-JSCNNET-CN
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
last-modified: 2023-11-28T00:58:18Z
source: APNIC
irt: IRT-JSCNNET-CN
address: BUILDING NO.11 WINDOWS TO THE WORLD SOFTWARE PARK NO.12 DINGHUAIMEN,NANJING,CHINA
e-mail: jsz_1981_10@sina.com
abuse-mailbox: jsz_1981_10@sina.com
admin-c: ML1838-AP
tech-c: BW690-AP
auth: # Filtered
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-18T00:35:12Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: Wei Fan
address: BUILDING NO.11 WINDOWS TO THE WORLD SOFTWARE PARK NO.12 DINGHUAIMEN,NANJING,CHINA
country: CN
phone: +86-18662702968
e-mail: fanwei@jscndata.com
nic-hdl: BW690-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2013-01-05T02:12:01Z
source: APNIC
person: Ning Ji
address: BUILDING NO.11 WINDOWS TO THE WORLD SOFTWARE PARK NO.12 DINGHUAIMEN,NANJING,CHINA
country: CN
phone: +86-18651888996
e-mail: jsz_1981_10@sina.com
nic-hdl: ML1838-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2013-01-05T02:12:01Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.153.165.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61940
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;49.153.165.66. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026020504 1800 900 604800 86400
;; Query time: 30 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 06 12:09:55 CST 2026
;; MSG SIZE rcvd: 106Host 66.165.153.49.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 66.165.153.49.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 99.120.229.5 | attackspam | $f2bV_matches |
2020-07-06 13:00:55 |
| 222.186.52.39 | attackbotsspam | $f2bV_matches |
2020-07-06 12:33:52 |
| 111.72.198.74 | attack | Jul 6 07:03:06 srv01 postfix/smtpd\[32406\]: warning: unknown\[111.72.198.74\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 07:03:18 srv01 postfix/smtpd\[32406\]: warning: unknown\[111.72.198.74\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 07:03:35 srv01 postfix/smtpd\[32406\]: warning: unknown\[111.72.198.74\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 07:03:55 srv01 postfix/smtpd\[32406\]: warning: unknown\[111.72.198.74\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 07:04:08 srv01 postfix/smtpd\[32406\]: warning: unknown\[111.72.198.74\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-07-06 13:09:17 |
| 106.52.55.146 | attack | Brute force SMTP login attempted. ... |
2020-07-06 13:01:19 |
| 189.112.239.190 | attackbotsspam | Lines containing failures of 189.112.239.190 Jul 6 05:46:25 shared12 sshd[15548]: Invalid user 3.232.56.113 from 189.112.239.190 port 42233 Jul 6 05:46:25 shared12 sshd[15548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.112.239.190 Jul 6 05:46:27 shared12 sshd[15548]: Failed password for invalid user 3.232.56.113 from 189.112.239.190 port 42233 ssh2 Jul 6 05:46:27 shared12 sshd[15548]: Received disconnect from 189.112.239.190 port 42233:11: Bye Bye [preauth] Jul 6 05:46:27 shared12 sshd[15548]: Disconnected from invalid user 3.232.56.113 189.112.239.190 port 42233 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=189.112.239.190 |
2020-07-06 12:32:08 |
| 129.204.80.188 | attack | 2020-07-06T06:47:25.092975galaxy.wi.uni-potsdam.de sshd[13469]: Invalid user test from 129.204.80.188 port 46878 2020-07-06T06:47:25.094767galaxy.wi.uni-potsdam.de sshd[13469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.80.188 2020-07-06T06:47:25.092975galaxy.wi.uni-potsdam.de sshd[13469]: Invalid user test from 129.204.80.188 port 46878 2020-07-06T06:47:26.751394galaxy.wi.uni-potsdam.de sshd[13469]: Failed password for invalid user test from 129.204.80.188 port 46878 ssh2 2020-07-06T06:50:28.143095galaxy.wi.uni-potsdam.de sshd[13828]: Invalid user q2 from 129.204.80.188 port 53870 2020-07-06T06:50:28.145463galaxy.wi.uni-potsdam.de sshd[13828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.80.188 2020-07-06T06:50:28.143095galaxy.wi.uni-potsdam.de sshd[13828]: Invalid user q2 from 129.204.80.188 port 53870 2020-07-06T06:50:30.258653galaxy.wi.uni-potsdam.de sshd[13828]: Failed password ... |
2020-07-06 13:07:17 |
| 137.74.119.50 | attackspam | (sshd) Failed SSH login from 137.74.119.50 (FR/France/50.ip-137-74-119.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 6 05:45:16 elude sshd[6403]: Invalid user engineer from 137.74.119.50 port 41552 Jul 6 05:45:18 elude sshd[6403]: Failed password for invalid user engineer from 137.74.119.50 port 41552 ssh2 Jul 6 05:51:36 elude sshd[7378]: Invalid user user from 137.74.119.50 port 37456 Jul 6 05:51:38 elude sshd[7378]: Failed password for invalid user user from 137.74.119.50 port 37456 ssh2 Jul 6 05:54:54 elude sshd[7868]: Invalid user keith from 137.74.119.50 port 33456 |
2020-07-06 12:30:40 |
| 146.88.240.4 | attack | 146.88.240.4 was recorded 38 times by 6 hosts attempting to connect to the following ports: 123,1701,17,1194,5353,27960,111,19,1604,5683,623,1434. Incident counter (4h, 24h, all-time): 38, 106, 80682 |
2020-07-06 12:31:13 |
| 51.255.171.172 | attack | $f2bV_matches |
2020-07-06 13:03:33 |
| 222.186.175.23 | attack | Jul 6 06:44:37 v22018053744266470 sshd[4221]: Failed password for root from 222.186.175.23 port 14934 ssh2 Jul 6 06:44:47 v22018053744266470 sshd[4235]: Failed password for root from 222.186.175.23 port 47359 ssh2 ... |
2020-07-06 12:46:20 |
| 180.251.93.244 | attack | 20/7/5@23:54:25: FAIL: Alarm-Network address from=180.251.93.244 20/7/5@23:54:25: FAIL: Alarm-Network address from=180.251.93.244 ... |
2020-07-06 13:02:25 |
| 218.92.0.221 | attackbotsspam | Jul 6 06:30:02 piServer sshd[32510]: Failed password for root from 218.92.0.221 port 52476 ssh2 Jul 6 06:30:05 piServer sshd[32510]: Failed password for root from 218.92.0.221 port 52476 ssh2 Jul 6 06:30:09 piServer sshd[32510]: Failed password for root from 218.92.0.221 port 52476 ssh2 ... |
2020-07-06 12:30:24 |
| 124.238.113.126 | attack | Jul 6 05:47:15 nextcloud sshd\[3544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.238.113.126 user=root Jul 6 05:47:17 nextcloud sshd\[3544\]: Failed password for root from 124.238.113.126 port 39572 ssh2 Jul 6 05:54:42 nextcloud sshd\[10378\]: Invalid user juliano from 124.238.113.126 Jul 6 05:54:42 nextcloud sshd\[10378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.238.113.126 |
2020-07-06 12:44:33 |
| 1.52.192.140 | attackbotsspam | 1594007666 - 07/06/2020 05:54:26 Host: 1.52.192.140/1.52.192.140 Port: 445 TCP Blocked |
2020-07-06 13:01:44 |
| 138.197.129.253 | attack | $f2bV_matches |
2020-07-06 12:57:30 |