City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '106.4.0.0 - 106.7.255.255'
% Abuse contact for '106.4.0.0 - 106.7.255.255' is 'anti-spam@chinatelecom.cn'
inetnum: 106.4.0.0 - 106.7.255.255
netname: CHINANET-JX
descr: CHINANET JIANGXI PROVINCE NETWORK
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: XY1-AP
tech-c: WZ1-CN
abuse-c: AC1573-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-IP-WWF
mnt-routes: MAINT-IP-WWF
mnt-irt: IRT-CHINANET-CN
last-modified: 2021-06-15T08:06:23Z
source: APNIC
irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: anti-spam@chinatelecom.cn
abuse-mailbox: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
auth: # Filtered
remarks: anti-spam@chinatelecom.cn was validated on 2025-11-13
mnt-by: MAINT-CHINANET
last-modified: 2025-11-18T00:26:23Z
source: APNIC
role: ABUSE CHINANETCN
country: ZZ
address: No.31 ,jingrong street,beijing
address: 100032
phone: +000000000
e-mail: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
nic-hdl: AC1573-AP
remarks: Generated from irt object IRT-CHINANET-CN
remarks: anti-spam@chinatelecom.cn was validated on 2025-11-13
abuse-mailbox: anti-spam@chinatelecom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-11-13T14:15:15Z
source: APNIC
person: Wanshu Zhou
address: Data Communication Bureau MPT
address: 40 Xueyuan Rd.
address: Beijing China 100083
country: CN
phone: +86-10-205-3992
fax-no: +86-10-205-3994
e-mail: zhouws@public.bta.net.cn
nic-hdl: WZ1-CN
notify: zhouws@public.bta.net.cn
notify: zhang@usai.asiainfo.com
mnt-by: MAINT-NULL
last-modified: 2011-12-22T05:14:24Z
source: APNIC
person: Xu Yongzhong
address: Data Communication Bireau
address: Ministry of Posts and Telecommunications
address: A12 Xin-jie-kou-wai Street
address: Beijing 100088
country: CN
phone: +86-10-62053991
fax-no: +86-10-62053995
e-mail: 5656115@qq.com
nic-hdl: XY1-AP
mnt-by: MAINT-IP-WWF
last-modified: 2021-01-05T00:59:14Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.6.189.86
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44598
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;106.6.189.86. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026030101 1800 900 604800 86400
;; Query time: 4 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 02 04:30:17 CST 2026
;; MSG SIZE rcvd: 105Host 86.189.6.106.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 86.189.6.106.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 207.154.206.212 | attackspambots | Dec 6 23:00:46 ns37 sshd[22200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.206.212 Dec 6 23:00:48 ns37 sshd[22200]: Failed password for invalid user remington from 207.154.206.212 port 55722 ssh2 Dec 6 23:05:57 ns37 sshd[22454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.206.212 |
2019-12-07 06:06:35 |
| 51.255.85.104 | attackspam | $f2bV_matches |
2019-12-07 06:09:27 |
| 51.77.245.181 | attackspambots | Dec 6 07:55:30 hpm sshd\[12428\]: Invalid user 1234567890 from 51.77.245.181 Dec 6 07:55:30 hpm sshd\[12428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.ip-51-77-245.eu Dec 6 07:55:32 hpm sshd\[12428\]: Failed password for invalid user 1234567890 from 51.77.245.181 port 45118 ssh2 Dec 6 08:00:57 hpm sshd\[12885\]: Invalid user abc123 from 51.77.245.181 Dec 6 08:00:57 hpm sshd\[12885\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.ip-51-77-245.eu |
2019-12-07 06:36:12 |
| 222.186.42.4 | attackspambots | Dec 6 23:19:32 SilenceServices sshd[14649]: Failed password for root from 222.186.42.4 port 2798 ssh2 Dec 6 23:19:42 SilenceServices sshd[14649]: Failed password for root from 222.186.42.4 port 2798 ssh2 Dec 6 23:19:46 SilenceServices sshd[14649]: Failed password for root from 222.186.42.4 port 2798 ssh2 Dec 6 23:19:46 SilenceServices sshd[14649]: error: maximum authentication attempts exceeded for root from 222.186.42.4 port 2798 ssh2 [preauth] |
2019-12-07 06:20:33 |
| 177.85.57.46 | attackbots | port 23 |
2019-12-07 06:35:50 |
| 64.43.37.92 | attackspambots | Triggered by Fail2Ban at Vostok web server |
2019-12-07 06:16:05 |
| 185.220.101.79 | attack | /posting.php?mode=post&f=3 |
2019-12-07 06:19:29 |
| 190.2.147.222 | attack | firewall-block, port(s): 9201/tcp |
2019-12-07 06:16:51 |
| 221.2.35.78 | attackbots | Dec 6 22:11:59 MK-Soft-VM5 sshd[3254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.2.35.78 Dec 6 22:12:01 MK-Soft-VM5 sshd[3254]: Failed password for invalid user magdelyns from 221.2.35.78 port 2881 ssh2 ... |
2019-12-07 06:09:53 |
| 201.7.210.50 | attackspam | WordPress wp-login brute force :: 201.7.210.50 0.164 - [06/Dec/2019:16:35:12 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1805 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1" |
2019-12-07 06:35:10 |
| 71.6.135.131 | attack | 12/06/2019-21:28:08.722072 71.6.135.131 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputation IP group 71 |
2019-12-07 06:02:41 |
| 167.71.215.72 | attackbotsspam | Oct 16 12:56:51 microserver sshd[49396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.215.72 user=root Oct 16 12:56:53 microserver sshd[49396]: Failed password for root from 167.71.215.72 port 44325 ssh2 Oct 16 13:00:56 microserver sshd[50044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.215.72 user=root Oct 16 13:00:59 microserver sshd[50044]: Failed password for root from 167.71.215.72 port 13099 ssh2 Oct 16 13:05:03 microserver sshd[50300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.215.72 user=root Oct 16 13:16:50 microserver sshd[52183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.215.72 user=root Oct 16 13:16:52 microserver sshd[52183]: Failed password for root from 167.71.215.72 port 48290 ssh2 Oct 16 13:20:53 microserver sshd[52842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid |
2019-12-07 06:38:50 |
| 103.219.154.222 | attackspam | Dec 4 00:33:49 mxgate1 postfix/postscreen[10817]: CONNECT from [103.219.154.222]:55990 to [176.31.12.44]:25 Dec 4 00:33:49 mxgate1 postfix/dnsblog[10990]: addr 103.219.154.222 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 4 00:33:55 mxgate1 postfix/postscreen[10817]: PASS NEW [103.219.154.222]:55990 Dec 4 00:33:57 mxgate1 postfix/smtpd[11063]: connect from unknown[103.219.154.222] Dec x@x Dec 4 00:33:58 mxgate1 postfix/smtpd[11063]: disconnect from unknown[103.219.154.222] ehlo=1 mail=1 rcpt=0/1 data=0/1 eclipset=1 quhostname=1 commands=4/6 Dec 4 00:52:57 mxgate1 .... truncated .... Dec 4 00:33:49 mxgate1 postfix/postscreen[10817]: CONNECT from [103.219.154.222]:55990 to [176.31.12.44]:25 Dec 4 00:33:49 mxgate1 postfix/dnsblog[10990]: addr 103.219.154.222 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 4 00:33:55 mxgate1 postfix/postscreen[10817]: PASS NEW [103.219.154.222]:55990 Dec 4 00:33:57 mxgate1 postfix/smtpd[11063]: connect from ........ ------------------------------- |
2019-12-07 06:04:21 |
| 190.202.57.34 | attack | Unauthorized connection attempt from IP address 190.202.57.34 on Port 445(SMB) |
2019-12-07 05:59:06 |
| 47.176.39.218 | attackspambots | Dec 6 16:36:14 *** sshd[14374]: Failed password for invalid user mukhtar from 47.176.39.218 port 9267 ssh2 Dec 6 16:42:16 *** sshd[14560]: Failed password for invalid user az from 47.176.39.218 port 29168 ssh2 Dec 6 16:47:31 *** sshd[14662]: Failed password for invalid user hoss from 47.176.39.218 port 40381 ssh2 Dec 6 16:52:58 *** sshd[14722]: Failed password for invalid user roi from 47.176.39.218 port 51616 ssh2 Dec 6 17:06:18 *** sshd[14985]: Failed password for invalid user apache from 47.176.39.218 port 17743 ssh2 Dec 6 17:23:23 *** sshd[15346]: Failed password for invalid user tom from 47.176.39.218 port 51494 ssh2 Dec 6 17:29:04 *** sshd[15428]: Failed password for invalid user ident from 47.176.39.218 port 62741 ssh2 Dec 6 17:34:40 *** sshd[15498]: Failed password for invalid user condom from 47.176.39.218 port 17481 ssh2 Dec 6 17:46:23 *** sshd[15784]: Failed password for invalid user mysql from 47.176.39.218 port 40007 ssh2 Dec 6 17:52:07 *** sshd[15849]: Failed password for invalid user |
2019-12-07 06:19:05 |