City: Guiyang
Region: Guizhou
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '1.95.0.0 - 1.95.255.255'
% Abuse contact for '1.95.0.0 - 1.95.255.255' is 'ipas@cnnic.cn'
inetnum: 1.95.0.0 - 1.95.255.255
netname: DXTNET
descr: Beijing Teletron Telecom Engineering Co., Ltd.
descr: Jian Guo Road, Chaoyang District, Beijing, PR.China
country: CN
admin-c: BW904-AP
tech-c: BW904-AP
abuse-c: AC1601-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
last-modified: 2023-02-20T06:46:20Z
source: APNIC
irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
remarks: ipas@cnnic.cn is invalid
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-17T23:08:37Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: Xu Fuyuan
address: No.11 Hepingli east Dongcheng District, Beijing,China
country: CN
phone: +86-18612964416
e-mail: xufuyuan@drpeng.com.cn
nic-hdl: BW904-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2023-02-20T06:10:06Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.34 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.95.85.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64634
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;1.95.85.212. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025120101 1800 900 604800 86400
;; Query time: 197 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 02 12:24:55 CST 2025
;; MSG SIZE rcvd: 104212.85.95.1.in-addr.arpa domain name pointer ecs-1-95-85-212.compute.hwclouds-dns.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
212.85.95.1.in-addr.arpa name = ecs-1-95-85-212.compute.hwclouds-dns.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 222.186.180.17 | attackspam | Mar 14 05:22:42 santamaria sshd\[16780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Mar 14 05:22:44 santamaria sshd\[16780\]: Failed password for root from 222.186.180.17 port 57150 ssh2 Mar 14 05:22:57 santamaria sshd\[16780\]: Failed password for root from 222.186.180.17 port 57150 ssh2 ... |
2020-03-14 12:28:38 |
| 118.24.208.253 | attack | Mar 14 10:50:04 itv-usvr-01 sshd[19948]: Invalid user user11 from 118.24.208.253 Mar 14 10:50:04 itv-usvr-01 sshd[19948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.208.253 Mar 14 10:50:04 itv-usvr-01 sshd[19948]: Invalid user user11 from 118.24.208.253 Mar 14 10:50:06 itv-usvr-01 sshd[19948]: Failed password for invalid user user11 from 118.24.208.253 port 53026 ssh2 Mar 14 10:56:53 itv-usvr-01 sshd[20170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.208.253 user=root Mar 14 10:56:55 itv-usvr-01 sshd[20170]: Failed password for root from 118.24.208.253 port 54534 ssh2 |
2020-03-14 12:31:14 |
| 104.168.28.195 | attackspam | detected by Fail2Ban |
2020-03-14 12:50:33 |
| 216.244.66.240 | attackbotsspam | [Sat Mar 14 03:55:33.852172 2020] [authz_core:error] [pid 16532] [client 216.244.66.240:34533] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/snapshots/old/qsampler-0.5.3.3git.12ea25.tar.gz [Sat Mar 14 03:56:05.444021 2020] [authz_core:error] [pid 20832] [client 216.244.66.240:47986] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/snapshots/old/qtractor-0.9.6.11git.646473.tar.gz [Sat Mar 14 03:56:36.395829 2020] [authz_core:error] [pid 20834] [client 216.244.66.240:59769] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/snapshots/old/synthv1-0.9.4.17git.26629a.tar.gz ... |
2020-03-14 12:39:00 |
| 138.197.171.149 | attack | 2020-03-14T04:47:22.909588struts4.enskede.local sshd\[764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.171.149 user=root 2020-03-14T04:47:25.151277struts4.enskede.local sshd\[764\]: Failed password for root from 138.197.171.149 port 51288 ssh2 2020-03-14T04:51:37.032564struts4.enskede.local sshd\[786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.171.149 user=root 2020-03-14T04:51:39.784472struts4.enskede.local sshd\[786\]: Failed password for root from 138.197.171.149 port 45810 ssh2 2020-03-14T04:55:47.504681struts4.enskede.local sshd\[802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.171.149 user=root ... |
2020-03-14 12:21:47 |
| 41.79.196.246 | attack | Attempted connection to port 445. |
2020-03-14 12:21:26 |
| 67.207.89.207 | attackspambots | Mar 14 05:23:59 vps647732 sshd[18189]: Failed password for root from 67.207.89.207 port 58582 ssh2 ... |
2020-03-14 12:34:53 |
| 222.186.175.217 | attackbotsspam | 2020-03-14T04:44:00.277541shield sshd\[19108\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-03-14T04:44:02.258379shield sshd\[19108\]: Failed password for root from 222.186.175.217 port 38252 ssh2 2020-03-14T04:44:06.955754shield sshd\[19108\]: Failed password for root from 222.186.175.217 port 38252 ssh2 2020-03-14T04:44:10.582673shield sshd\[19108\]: Failed password for root from 222.186.175.217 port 38252 ssh2 2020-03-14T04:44:13.713366shield sshd\[19108\]: Failed password for root from 222.186.175.217 port 38252 ssh2 |
2020-03-14 12:49:30 |
| 119.29.158.26 | attack | Mar 14 04:51:39 legacy sshd[19120]: Failed password for root from 119.29.158.26 port 47718 ssh2 Mar 14 04:55:03 legacy sshd[19150]: Failed password for root from 119.29.158.26 port 36892 ssh2 ... |
2020-03-14 12:41:43 |
| 91.233.190.198 | attackspam | Attempted connection to port 8080. |
2020-03-14 12:21:05 |
| 218.92.0.192 | attack | 03/14/2020-00:46:33.393680 218.92.0.192 Protocol: 6 ET SCAN Potential SSH Scan |
2020-03-14 12:48:34 |
| 132.232.241.187 | attackbots | Mar 14 04:56:34 host sshd[12596]: Invalid user taeyoung from 132.232.241.187 port 54584 ... |
2020-03-14 12:40:12 |
| 152.136.112.18 | attackspam | Mar 14 04:56:29 vpn01 sshd[17356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.112.18 Mar 14 04:56:31 vpn01 sshd[17356]: Failed password for invalid user fujino from 152.136.112.18 port 51194 ssh2 ... |
2020-03-14 12:42:04 |
| 106.54.87.169 | attackbotsspam | k+ssh-bruteforce |
2020-03-14 12:43:21 |
| 45.125.65.35 | attackbots | 2020-03-14 05:46:57 dovecot_login authenticator failed for \(User\) \[45.125.65.35\]: 535 Incorrect authentication data \(set_id=zzzzzz\) 2020-03-14 05:48:32 dovecot_login authenticator failed for \(User\) \[45.125.65.35\]: 535 Incorrect authentication data \(set_id=zzzzzz\) 2020-03-14 05:48:38 dovecot_login authenticator failed for \(User\) \[45.125.65.35\]: 535 Incorrect authentication data \(set_id=zzzzzz\) 2020-03-14 05:55:17 dovecot_login authenticator failed for \(User\) \[45.125.65.35\]: 535 Incorrect authentication data \(set_id=solaris\) 2020-03-14 05:56:50 dovecot_login authenticator failed for \(User\) \[45.125.65.35\]: 535 Incorrect authentication data \(set_id=solaris\) ... |
2020-03-14 12:59:07 |