City: Shanghai
Region: Shanghai
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '116.224.0.0 - 116.239.255.255'
% Abuse contact for '116.224.0.0 - 116.239.255.255' is 'anti-spam@chinatelecom.cn'
inetnum: 116.224.0.0 - 116.239.255.255
netname: CHINANET-SH
descr: CHINANET Shanghai province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: WWQ4-AP
tech-c: WWQ4-AP
abuse-c: AC1573-AP
status: ALLOCATED PORTABLE
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-SH
mnt-routes: MAINT-CHINANET-SH
mnt-irt: IRT-CHINANET-CN
last-modified: 2021-06-15T08:06:29Z
source: APNIC
irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: anti-spam@chinatelecom.cn
abuse-mailbox: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
auth: # Filtered
remarks: anti-spam@chinatelecom.cn was validated on 2025-04-24
mnt-by: MAINT-CHINANET
last-modified: 2025-09-04T00:59:42Z
source: APNIC
role: ABUSE CHINANETCN
country: ZZ
address: No.31 ,jingrong street,beijing
address: 100032
phone: +000000000
e-mail: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
nic-hdl: AC1573-AP
remarks: Generated from irt object IRT-CHINANET-CN
remarks: anti-spam@chinatelecom.cn was validated on 2025-04-24
abuse-mailbox: anti-spam@chinatelecom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-04-24T03:21:54Z
source: APNIC
person: Weng Wen Qian
address: Room 2405,357 Songlin Road,Shanghai 200122
country: CN
phone: +86-21-68405784
fax-no: +86-21-50623458
e-mail: shizhiming.sh@chinatelecom.cn
nic-hdl: WWQ4-AP
mnt-by: MAINT-CHINANET-SH
last-modified: 2023-02-07T08:25:17Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.228.148.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57782
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;116.228.148.21. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025101300 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 13 15:32:06 CST 2025
;; MSG SIZE rcvd: 107Host 21.148.228.116.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 21.148.228.116.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 209.49.113.162 | attackspam | Scanning random ports - tries to find possible vulnerable services |
2019-11-03 06:49:58 |
| 68.183.213.5 | attackspambots | Nov 2 14:47:01 foo sshd[5647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.213.5 user=r.r Nov 2 14:47:03 foo sshd[5647]: Failed password for r.r from 68.183.213.5 port 55472 ssh2 Nov 2 14:47:03 foo sshd[5647]: Received disconnect from 68.183.213.5: 11: Bye Bye [preauth] Nov 2 14:54:29 foo sshd[5675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.213.5 user=r.r Nov 2 14:54:30 foo sshd[5675]: Failed password for r.r from 68.183.213.5 port 59842 ssh2 Nov 2 14:54:30 foo sshd[5675]: Received disconnect from 68.183.213.5: 11: Bye Bye [preauth] Nov 2 14:58:03 foo sshd[5690]: Invalid user bridge from 68.183.213.5 Nov 2 14:58:04 foo sshd[5690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.213.5 Nov 2 14:58:06 foo sshd[5690]: Failed password for invalid user bridge from 68.183.213.5 port 42926 ssh2 Nov 2 14:58:06 foo ss........ ------------------------------- |
2019-11-03 06:40:23 |
| 203.91.116.98 | attackspam | Scanning random ports - tries to find possible vulnerable services |
2019-11-03 06:52:17 |
| 66.249.66.95 | attackbotsspam | Automatic report - Banned IP Access |
2019-11-03 06:31:32 |
| 106.12.77.73 | attackspam | 2019-11-02T22:22:26.070827abusebot-3.cloudsearch.cf sshd\[15329\]: Invalid user despy from 106.12.77.73 port 57868 |
2019-11-03 06:28:10 |
| 222.119.20.239 | attackbotsspam | Nov 2 22:13:23 vtv3 sshd\[20333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.119.20.239 user=root Nov 2 22:13:25 vtv3 sshd\[20333\]: Failed password for root from 222.119.20.239 port 39552 ssh2 Nov 2 22:17:36 vtv3 sshd\[22571\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.119.20.239 user=root Nov 2 22:17:39 vtv3 sshd\[22571\]: Failed password for root from 222.119.20.239 port 50236 ssh2 Nov 2 22:21:51 vtv3 sshd\[24784\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.119.20.239 user=root Nov 2 22:34:31 vtv3 sshd\[31192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.119.20.239 user=root Nov 2 22:34:33 vtv3 sshd\[31192\]: Failed password for root from 222.119.20.239 port 36536 ssh2 Nov 2 22:38:54 vtv3 sshd\[1040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= r |
2019-11-03 06:34:20 |
| 68.183.66.63 | attackbots | WordPress brute force |
2019-11-03 06:17:30 |
| 172.105.71.24 | attackbotsspam | scan z |
2019-11-03 06:23:27 |
| 212.230.117.75 | attackbotsspam | Scanning random ports - tries to find possible vulnerable services |
2019-11-03 06:47:53 |
| 222.92.139.158 | attackbots | Nov 2 21:43:29 localhost sshd\[6886\]: Invalid user vh from 222.92.139.158 Nov 2 21:43:29 localhost sshd\[6886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.92.139.158 Nov 2 21:43:31 localhost sshd\[6886\]: Failed password for invalid user vh from 222.92.139.158 port 59244 ssh2 Nov 2 21:47:14 localhost sshd\[7090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.92.139.158 user=root Nov 2 21:47:16 localhost sshd\[7090\]: Failed password for root from 222.92.139.158 port 40124 ssh2 ... |
2019-11-03 06:35:29 |
| 85.93.20.90 | attackspambots | 191102 23:17:46 \[Warning\] Access denied for user 'root'@'85.93.20.90' \(using password: YES\) 191102 23:25:24 \[Warning\] Access denied for user 'root'@'85.93.20.90' \(using password: YES\) 191102 23:32:18 \[Warning\] Access denied for user 'root'@'85.93.20.90' \(using password: YES\) ... |
2019-11-03 06:21:30 |
| 123.206.76.184 | attack | 2019-11-02T22:20:59.395277abusebot-2.cloudsearch.cf sshd\[14995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.76.184 user=root |
2019-11-03 06:35:12 |
| 159.203.201.79 | attackbots | " " |
2019-11-03 06:29:22 |
| 206.180.162.25 | attack | Scanning random ports - tries to find possible vulnerable services |
2019-11-03 06:50:12 |
| 208.100.26.241 | attack | 208.100.26.241 was recorded 14 times by 6 hosts attempting to connect to the following ports: 636,873,989. Incident counter (4h, 24h, all-time): 14, 72, 124 |
2019-11-03 06:33:52 |