城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '49.64.0.0 - 49.95.255.255'
% Abuse contact for '49.64.0.0 - 49.95.255.255' is 'anti-spam@chinatelecom.cn'
inetnum: 49.64.0.0 - 49.95.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: 260 Zhongyang Road,Nanjing 210037
country: CN
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
abuse-c: AC1573-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
notify: jsipmanager@163.com
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
mnt-irt: IRT-CHINANET-CN
last-modified: 2022-04-26T07:40:27Z
source: APNIC
irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: anti-spam@chinatelecom.cn
abuse-mailbox: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
auth: # Filtered
remarks: anti-spam@chinatelecom.cn was validated on 2025-11-13
mnt-by: MAINT-CHINANET
last-modified: 2025-11-18T00:26:23Z
source: APNIC
role: ABUSE CHINANETCN
country: ZZ
address: No.31 ,jingrong street,beijing
address: 100032
phone: +000000000
e-mail: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
nic-hdl: AC1573-AP
remarks: Generated from irt object IRT-CHINANET-CN
remarks: anti-spam@chinatelecom.cn was validated on 2025-11-13
abuse-mailbox: anti-spam@chinatelecom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-11-13T14:15:15Z
source: APNIC
person: CHINANET-JS Hostmaster
nic-hdl: CH360-AP
e-mail: jsipmanager@163.com
address: Room 1001#, 260 Zhongyang Road, Nanjing,Jiangsu Province
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
country: CN
mnt-by: MAINT-CHINANET-JS
last-modified: 2022-03-15T07:08:59Z
source: APNIC
person: CHINANET-JS Network Operations
nic-hdl: CN142-AP
e-mail: jsipmanager@163.com
address: Room 1001#, 260 Zhongyang Road, Nanjing,Jiangsu Province
phone: +86-25-86588721
phone: +86-25-86788130
phone: +86-25-86788122
phone: +86-25-86588787
fax-no: +86-25-86588104
country: CN
mnt-by: MAINT-CHINANET-JS
last-modified: 2022-03-15T07:09:00Z
source: APNIC
person: CHINANET-JS Security Administrater
nic-hdl: CS306-AP
e-mail: jsipmanager@163.com
address: Room 1001#, 260 Zhongyang Road, Nanjing,Jiangsu Province
phone: +86-25-86588745
phone: +86-25-86588231
fax-no: +86-25-86588104
country: CN
mnt-by: MAINT-CHINANET-JS
last-modified: 2022-03-15T07:09:00Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.78.84.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16454
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;49.78.84.123. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026030601 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 07 05:24:01 CST 2026
;; MSG SIZE rcvd: 105Host 123.84.78.49.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 123.84.78.49.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 222.175.19.94 | attackspam | 1587730216 - 04/24/2020 14:10:16 Host: 222.175.19.94/222.175.19.94 Port: 445 TCP Blocked |
2020-04-24 20:39:28 |
| 222.186.173.180 | attackbotsspam | Apr 24 12:42:48 124388 sshd[27383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Apr 24 12:42:51 124388 sshd[27383]: Failed password for root from 222.186.173.180 port 28398 ssh2 Apr 24 12:43:07 124388 sshd[27383]: error: maximum authentication attempts exceeded for root from 222.186.173.180 port 28398 ssh2 [preauth] Apr 24 12:43:11 124388 sshd[27385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Apr 24 12:43:13 124388 sshd[27385]: Failed password for root from 222.186.173.180 port 52428 ssh2 |
2020-04-24 20:53:07 |
| 114.225.173.145 | attackbotsspam | Apr 24 14:09:56 srv206 sshd[20796]: Invalid user mysql from 114.225.173.145 Apr 24 14:09:56 srv206 sshd[20796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.225.173.145 Apr 24 14:09:56 srv206 sshd[20796]: Invalid user mysql from 114.225.173.145 Apr 24 14:09:58 srv206 sshd[20796]: Failed password for invalid user mysql from 114.225.173.145 port 59677 ssh2 ... |
2020-04-24 20:57:35 |
| 139.170.150.252 | attackspam | Apr 24 14:10:13 nextcloud sshd\[12093\]: Invalid user ts3 from 139.170.150.252 Apr 24 14:10:13 nextcloud sshd\[12093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.170.150.252 Apr 24 14:10:15 nextcloud sshd\[12093\]: Failed password for invalid user ts3 from 139.170.150.252 port 29853 ssh2 |
2020-04-24 20:40:37 |
| 27.128.173.87 | attack | DATE:2020-04-24 14:09:54, IP:27.128.173.87, PORT:ssh SSH brute force auth (docker-dc) |
2020-04-24 21:01:28 |
| 36.229.83.146 | attackspambots | 20/4/24@08:10:09: FAIL: IoT-Telnet address from=36.229.83.146 ... |
2020-04-24 20:47:30 |
| 211.252.87.90 | attack | Apr 24 14:20:39 server sshd[24856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.252.87.90 Apr 24 14:20:41 server sshd[24856]: Failed password for invalid user libuuid from 211.252.87.90 port 46899 ssh2 Apr 24 14:25:50 server sshd[25291]: Failed password for root from 211.252.87.90 port 29438 ssh2 ... |
2020-04-24 20:35:04 |
| 222.186.30.112 | attack | Apr 24 14:52:41 minden010 sshd[28499]: Failed password for root from 222.186.30.112 port 11192 ssh2 Apr 24 14:52:43 minden010 sshd[28499]: Failed password for root from 222.186.30.112 port 11192 ssh2 Apr 24 14:52:46 minden010 sshd[28499]: Failed password for root from 222.186.30.112 port 11192 ssh2 ... |
2020-04-24 20:55:57 |
| 183.159.114.151 | attack | [Fri Apr 24 09:43:55 2020 GMT] meini@hotmail.com [RDNS_NONE], Subject: 发票 13690131927 |
2020-04-24 20:44:27 |
| 222.186.180.17 | attackbotsspam | DATE:2020-04-24 15:00:44, IP:222.186.180.17, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq) |
2020-04-24 21:05:14 |
| 194.26.29.212 | attackbotsspam | Apr 24 14:57:18 debian-2gb-nbg1-2 kernel: \[9991982.604385\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.212 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=14780 PROTO=TCP SPT=55761 DPT=6788 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-24 21:13:58 |
| 185.50.149.17 | attackbots | (smtpauth) Failed SMTP AUTH login from 185.50.149.17 (CZ/Czechia/-): 5 in the last 3600 secs |
2020-04-24 20:53:59 |
| 14.231.181.112 | attackbotsspam | 20/4/24@08:57:56: FAIL: Alarm-Network address from=14.231.181.112 ... |
2020-04-24 21:01:48 |
| 222.186.175.163 | attackspam | Apr 24 13:05:59 ip-172-31-61-156 sshd[308]: error: maximum authentication attempts exceeded for root from 222.186.175.163 port 43132 ssh2 [preauth] Apr 24 13:05:42 ip-172-31-61-156 sshd[308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Apr 24 13:05:44 ip-172-31-61-156 sshd[308]: Failed password for root from 222.186.175.163 port 43132 ssh2 Apr 24 13:05:59 ip-172-31-61-156 sshd[308]: error: maximum authentication attempts exceeded for root from 222.186.175.163 port 43132 ssh2 [preauth] Apr 24 13:05:59 ip-172-31-61-156 sshd[308]: Disconnecting: Too many authentication failures [preauth] ... |
2020-04-24 21:07:15 |
| 89.248.168.217 | attackspam | scans 3 times in preceeding hours on the ports (in chronological order) 22547 40859 48319 resulting in total of 143 scans from 89.248.160.0-89.248.174.255 block. |
2020-04-24 20:52:03 |