City: unknown
Region: unknown
Country: China
Internet Service Provider: China Mobile
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '111.128.0.0 - 111.159.255.255'
% Abuse contact for '111.128.0.0 - 111.159.255.255' is 'liuxin15@cmtt.chinamobile.com'
inetnum: 111.128.0.0 - 111.159.255.255
netname: NorthStar
descr: North Star Information Hi.tech Ltd. Co.
descr: No.18, Beifengwo Road, Haidian District,
descr: Beijing, China, 100038
country: CN
org: ORG-NSIH1-AP
admin-c: CW1171-AP
tech-c: LQ568-AP
abuse-c: AN833-AP
status: ALLOCATED PORTABLE
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-NORTHSTAR-APNIC
mnt-routes: MAINT-NORTHSTAR-APNIC
mnt-irt: IRT-NORTHSTAR-CN
last-modified: 2020-07-07T04:54:06Z
source: APNIC
irt: IRT-NORTHSTAR-CN
address: No.18, Beifengwo Road, Haidian District,
address: Beijing, China
e-mail: liuxin15@cmtt.chinamobile.com
abuse-mailbox: liuxin15@cmtt.chinamobile.com
admin-c: CW1171-AP
tech-c: LQ568-AP
auth: # Filtered
remarks: liuxin15@cmtt.chinamobile.com
remarks: liuxin15@cmtt.chinamobile.com
remarks: liuxin15@cmtt.chinamobile.com is invalid
mnt-by: MAINT-NORTHSTAR-APNIC
last-modified: 2026-01-14T13:08:37Z
source: APNIC
organisation: ORG-NSIH1-AP
org-name: North Star Information Hi.tech Ltd. Co.
org-type: LIR
country: CN
address: No.18, Beifengwo Road, Haidian District,
phone: +86-13910572340
fax-no: +86-13910572340
e-mail: liuxin15@cmtt.chinamobile.com
mnt-ref: APNIC-HM
mnt-by: APNIC-HM
last-modified: 2023-09-05T02:15:30Z
source: APNIC
role: ABUSE NORTHSTARCN
country: ZZ
address: No.18, Beifengwo Road, Haidian District,
address: Beijing, China
phone: +000000000
e-mail: liuxin15@cmtt.chinamobile.com
admin-c: CW1171-AP
tech-c: LQ568-AP
nic-hdl: AN833-AP
remarks: Generated from irt object IRT-NORTHSTAR-CN
remarks: liuxin15@cmtt.chinamobile.com is invalid
abuse-mailbox: liuxin15@cmtt.chinamobile.com
mnt-by: APNIC-ABUSE
last-modified: 2026-01-14T13:09:52Z
source: APNIC
person: Cindy Wang
address: No.18, Beifengwo Road, Haidian District,
address: Beijing, China
country: CN
phone: +86-10-51892147
fax-no: +86-10-51890674
e-mail: cindywang.ns@gmail.com
nic-hdl: CW1171-AP
mnt-by: MAINT-NORTHSTAR-APNIC
last-modified: 2009-02-10T07:32:20Z
source: APNIC
person: Lu Qian
address: No.18, Beifengwo Road, Haidian District,
address: Beijing, China
country: CN
phone: +86-10-51890418
fax-no: +86-10-51890674
e-mail: wpli@chinatietong.com
nic-hdl: LQ568-AP
mnt-by: MAINT-NORTHSTAR-APNIC
last-modified: 2015-10-22T01:18:00Z
source: APNIC
% Information related to '111.128.0.0/11AS9394'
route: 111.128.0.0/11
descr: North Star Information Hi.tech Ltd. Co.
origin: AS9394
country: CN
notify: luqian.ns@gmail.com
mnt-by: MAINT-NORTHSTAR-APNIC
last-modified: 2009-07-17T07:40:01Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.142.111.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35694
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;111.142.111.41. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026050502 1800 900 604800 86400
;; Query time: 4 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 06 11:28:57 CST 2026
;; MSG SIZE rcvd: 107Host 41.111.142.111.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 41.111.142.111.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 36.69.74.76 | attack | Jul 10 05:54:08 debian-2gb-nbg1-2 kernel: \[16611839.088475\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=36.69.74.76 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=25858 DF PROTO=TCP SPT=38847 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 |
2020-07-10 15:05:47 |
| 88.214.59.118 | attack | ZTE Router Exploit Scanner |
2020-07-10 15:25:25 |
| 50.62.177.157 | attack | Wordpress attack |
2020-07-10 15:10:41 |
| 181.57.133.86 | attack | Jul 10 06:20:56 plex-server sshd[1154150]: Invalid user webadmin from 181.57.133.86 port 40900 Jul 10 06:20:56 plex-server sshd[1154150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.57.133.86 Jul 10 06:20:56 plex-server sshd[1154150]: Invalid user webadmin from 181.57.133.86 port 40900 Jul 10 06:20:58 plex-server sshd[1154150]: Failed password for invalid user webadmin from 181.57.133.86 port 40900 ssh2 Jul 10 06:24:19 plex-server sshd[1154443]: Invalid user chengtao from 181.57.133.86 port 38310 ... |
2020-07-10 15:41:37 |
| 190.5.242.114 | attackspambots | 2020-07-10T06:58:17.206652shield sshd\[28632\]: Invalid user cipriano from 190.5.242.114 port 44349 2020-07-10T06:58:17.214942shield sshd\[28632\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.5.242.114 2020-07-10T06:58:19.009818shield sshd\[28632\]: Failed password for invalid user cipriano from 190.5.242.114 port 44349 ssh2 2020-07-10T07:01:55.479293shield sshd\[30086\]: Invalid user kia from 190.5.242.114 port 43688 2020-07-10T07:01:55.487610shield sshd\[30086\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.5.242.114 |
2020-07-10 15:16:48 |
| 167.99.10.162 | attackspambots | Automatic report - XMLRPC Attack |
2020-07-10 15:04:56 |
| 122.51.194.44 | attackspam | Port Scan |
2020-07-10 15:24:04 |
| 5.189.188.249 | attack | 2020-07-09 14:25:05 Reject access to port(s):3389 2 times a day |
2020-07-10 15:31:48 |
| 150.136.241.199 | attackspam | Jul 10 09:28:06 PorscheCustomer sshd[4723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.241.199 Jul 10 09:28:08 PorscheCustomer sshd[4723]: Failed password for invalid user yuhao from 150.136.241.199 port 58262 ssh2 Jul 10 09:31:48 PorscheCustomer sshd[4847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.241.199 ... |
2020-07-10 15:37:40 |
| 175.207.29.235 | attackspambots | Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-07-10T05:54:49Z and 2020-07-10T06:29:56Z |
2020-07-10 15:17:36 |
| 165.22.210.69 | attack | $f2bV_matches |
2020-07-10 15:39:12 |
| 190.146.184.215 | attackspambots | Jul 10 05:53:21 db sshd[4914]: Invalid user mora from 190.146.184.215 port 59054 ... |
2020-07-10 15:44:27 |
| 148.72.144.217 | attack | " " |
2020-07-10 15:40:44 |
| 113.20.108.223 | attackspambots | 20/7/9@23:53:59: FAIL: Alarm-Intrusion address from=113.20.108.223 ... |
2020-07-10 15:15:23 |
| 2.136.198.12 | attack | $f2bV_matches |
2020-07-10 15:06:29 |