城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '49.64.0.0 - 49.95.255.255'
% Abuse contact for '49.64.0.0 - 49.95.255.255' is 'anti-spam@chinatelecom.cn'
inetnum: 49.64.0.0 - 49.95.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: 260 Zhongyang Road,Nanjing 210037
country: CN
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
abuse-c: AC1573-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
notify: jsipmanager@163.com
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
mnt-irt: IRT-CHINANET-CN
last-modified: 2022-04-26T07:40:27Z
source: APNIC
irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: anti-spam@chinatelecom.cn
abuse-mailbox: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
auth: # Filtered
remarks: anti-spam@chinatelecom.cn was validated on 2026-05-21
mnt-by: MAINT-CHINANET
last-modified: 2026-05-21T01:31:36Z
source: APNIC
role: ABUSE CHINANETCN
country: ZZ
address: No.31 ,jingrong street,beijing
address: 100032
phone: +000000000
e-mail: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
nic-hdl: AC1573-AP
remarks: Generated from irt object IRT-CHINANET-CN
remarks: anti-spam@chinatelecom.cn was validated on 2026-05-21
abuse-mailbox: anti-spam@chinatelecom.cn
mnt-by: APNIC-ABUSE
last-modified: 2026-05-21T01:32:00Z
source: APNIC
person: CHINANET-JS Hostmaster
nic-hdl: CH360-AP
e-mail: jsipmanager@163.com
address: Room 1001#, 260 Zhongyang Road, Nanjing,Jiangsu Province
phone: +86-25-87799222
country: CN
mnt-by: MAINT-CHINANET-JS
last-modified: 2026-03-17T06:28:18Z
source: APNIC
person: CHINANET-JS Network Operations
nic-hdl: CN142-AP
e-mail: jsipmanager@163.com
address: Room 1001#, 260 Zhongyang Road, Nanjing,Jiangsu Province
phone: +86-25-86588721
phone: +86-25-86788130
phone: +86-25-86788122
phone: +86-25-86588787
fax-no: +86-25-86588104
country: CN
mnt-by: MAINT-CHINANET-JS
last-modified: 2022-03-15T07:09:00Z
source: APNIC
person: CHINANET-JS Security Administrater
nic-hdl: CS306-AP
e-mail: jsipmanager@163.com
address: Room 1001#, 260 Zhongyang Road, Nanjing,Jiangsu Province
phone: +86-25-87799222
country: CN
mnt-by: MAINT-CHINANET-JS
last-modified: 2026-03-17T06:29:04Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.75.221.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53853
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;49.75.221.104. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026070300 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 03 16:40:38 CST 2026
;; MSG SIZE rcvd: 106
Host 104.221.75.49.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 104.221.75.49.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 112.168.11.170 | attack | postfix (unknown user, SPF fail or relay access denied) |
2019-10-13 02:28:37 |
| 116.7.176.146 | attack | Oct 12 14:11:18 sshgateway sshd\[4152\]: Invalid user Irene@321 from 116.7.176.146 Oct 12 14:11:18 sshgateway sshd\[4152\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.7.176.146 Oct 12 14:11:19 sshgateway sshd\[4152\]: Failed password for invalid user Irene@321 from 116.7.176.146 port 60334 ssh2 |
2019-10-13 02:56:31 |
| 202.152.15.12 | attack | Oct 8 07:05:56 rb06 sshd[10370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.15.12 user=r.r Oct 8 07:05:57 rb06 sshd[10370]: Failed password for r.r from 202.152.15.12 port 50538 ssh2 Oct 8 07:05:58 rb06 sshd[10370]: Received disconnect from 202.152.15.12: 11: Bye Bye [preauth] Oct 8 07:25:09 rb06 sshd[7112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.15.12 user=r.r Oct 8 07:25:11 rb06 sshd[7112]: Failed password for r.r from 202.152.15.12 port 44812 ssh2 Oct 8 07:25:11 rb06 sshd[7112]: Received disconnect from 202.152.15.12: 11: Bye Bye [preauth] Oct 8 07:29:44 rb06 sshd[30157]: Failed password for invalid user 321 from 202.152.15.12 port 54286 ssh2 Oct 8 07:29:44 rb06 sshd[30157]: Received disconnect from 202.152.15.12: 11: Bye Bye [preauth] Oct 8 07:34:21 rb06 sshd[1756]: Failed password for invalid user 123Outlook from 202.152.15.12 port 35542 ssh2 Oct........ ------------------------------- |
2019-10-13 02:27:13 |
| 101.89.216.223 | attack | Oct 12 11:32:11 web1 postfix/smtpd[13226]: warning: unknown[101.89.216.223]: SASL LOGIN authentication failed: authentication failure ... |
2019-10-13 02:37:10 |
| 112.64.32.118 | attack | Oct 12 20:06:24 localhost sshd\[18816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118 user=root Oct 12 20:06:27 localhost sshd\[18816\]: Failed password for root from 112.64.32.118 port 46730 ssh2 Oct 12 20:11:02 localhost sshd\[19287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118 user=root |
2019-10-13 02:34:23 |
| 23.129.64.193 | attack | Oct 12 20:15:52 vpn01 sshd[19646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.193 Oct 12 20:15:54 vpn01 sshd[19646]: Failed password for invalid user aerodynamik from 23.129.64.193 port 27091 ssh2 ... |
2019-10-13 02:32:50 |
| 51.77.157.2 | attackbots | Oct 12 11:22:12 home sshd[342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.157.2 user=root Oct 12 11:22:15 home sshd[342]: Failed password for root from 51.77.157.2 port 40082 ssh2 Oct 12 11:29:22 home sshd[424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.157.2 user=root Oct 12 11:29:24 home sshd[424]: Failed password for root from 51.77.157.2 port 51548 ssh2 Oct 12 11:32:48 home sshd[468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.157.2 user=root Oct 12 11:32:51 home sshd[468]: Failed password for root from 51.77.157.2 port 34670 ssh2 Oct 12 11:36:27 home sshd[486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.157.2 user=root Oct 12 11:36:30 home sshd[486]: Failed password for root from 51.77.157.2 port 46028 ssh2 Oct 12 11:39:51 home sshd[546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 |
2019-10-13 02:29:05 |
| 51.38.185.121 | attack | SSH brute-force: detected 33 distinct usernames within a 24-hour window. |
2019-10-13 02:55:51 |
| 120.92.153.47 | attackbots | Fail2Ban - SMTP Bruteforce Attempt |
2019-10-13 02:50:43 |
| 187.72.124.65 | attack | Oct 12 20:14:18 vps647732 sshd[4542]: Failed password for root from 187.72.124.65 port 4967 ssh2 ... |
2019-10-13 02:23:12 |
| 213.159.206.233 | attackspam | rdp brute-force attack |
2019-10-13 02:54:10 |
| 106.12.60.137 | attackbots | Oct 12 11:13:43 ny01 sshd[5304]: Failed password for root from 106.12.60.137 port 41020 ssh2 Oct 12 11:20:07 ny01 sshd[5885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.60.137 Oct 12 11:20:09 ny01 sshd[5885]: Failed password for invalid user 123 from 106.12.60.137 port 53534 ssh2 |
2019-10-13 02:36:22 |
| 52.178.142.12 | attackbotsspam | RDPBruteCAu24 |
2019-10-13 02:14:27 |
| 134.209.155.167 | attack | Oct 12 16:39:24 dedicated sshd[5924]: Invalid user P@$$@2020 from 134.209.155.167 port 33134 |
2019-10-13 02:17:28 |
| 51.75.52.195 | attackbotsspam | Oct 12 20:20:44 SilenceServices sshd[15368]: Failed password for root from 51.75.52.195 port 47588 ssh2 Oct 12 20:24:07 SilenceServices sshd[16268]: Failed password for root from 51.75.52.195 port 57954 ssh2 |
2019-10-13 02:37:52 |