117.31.157.228

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '117.24.0.0 - 117.31.255.255'

% Abuse contact for '117.24.0.0 - 117.31.255.255' is 'anti-spam@chinatelecom.cn'

inetnum:        117.24.0.0 - 117.31.255.255
netname:        CHINANET-FJ
descr:          CHINANET Fujian province network
descr:          China Telecom
descr:          7,East Street ,Fuzhou ,Fujian ,PRC
country:        CN
admin-c:        CH93-AP
tech-c:         CA67-AP
abuse-c:        AC1573-AP
status:         ALLOCATED PORTABLE
remarks:        service provider
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CHINANET-FJ
mnt-routes:     MAINT-CHINANET-FJ
mnt-irt:        IRT-CHINANET-CN
last-modified:  2021-06-15T08:05:34Z
source:         APNIC

irt:            IRT-CHINANET-CN
address:        No.31 ,jingrong street,beijing
address:        100032
e-mail:         anti-spam@chinatelecom.cn
abuse-mailbox:  anti-spam@chinatelecom.cn
admin-c:        CH93-AP
tech-c:         CH93-AP
auth:           # Filtered
remarks:        anti-spam@chinatelecom.cn was validated on 2025-04-24
mnt-by:         MAINT-CHINANET
last-modified:  2025-09-04T00:59:42Z
source:         APNIC

role:           ABUSE CHINANETCN
country:        ZZ
address:        No.31 ,jingrong street,beijing
address:        100032
phone:          +000000000
e-mail:         anti-spam@chinatelecom.cn
admin-c:        CH93-AP
tech-c:         CH93-AP
nic-hdl:        AC1573-AP
remarks:        Generated from irt object IRT-CHINANET-CN
remarks:        anti-spam@chinatelecom.cn was validated on 2025-04-24
abuse-mailbox:  anti-spam@chinatelecom.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-04-24T03:21:54Z
source:         APNIC

role:           CHINANETFJ IP ADMIN
address:        7,East Street,Fuzhou,Fujian,PRC
country:        CN
phone:          +86-591-83309761
fax-no:         +86-591-83371954
e-mail:         fjnic@fjdcb.fz.fj.cn
remarks:        send spam reports  and abuse reports
remarks:        to abuse@fjdcb.fz.fj.cn
remarks:        Please include detailed information and
remarks:        times in UTC
admin-c:        FH71-AP
tech-c:         FH71-AP
nic-hdl:        CA67-AP
remarks:        www.fjtelecom.com
notify:         fjnic@fjdcb.fz.fj.cn
mnt-by:         MAINT-CHINANET-FJ
last-modified:  2011-12-06T00:10:50Z
source:         APNIC

person:         Chinanet Hostmaster
nic-hdl:        CH93-AP
e-mail:         anti-spam@chinatelecom.cn
address:        No.31 ,jingrong street,beijing
address:        100032
phone:          +86-10-58501724
fax-no:         +86-10-58501724
country:        CN
mnt-by:         MAINT-CHINANET
last-modified:  2022-02-28T06:53:44Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.31.157.228
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27585
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.31.157.228.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025092101 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 22 09:31:46 CST 2025
;; MSG SIZE  rcvd: 107

Host info

228.157.31.117.in-addr.arpa domain name pointer 228.157.31.117.broad.nd.fj.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
228.157.31.117.in-addr.arpa	name = 228.157.31.117.broad.nd.fj.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.160.113.235	attackspam	DATE:2020-06-08 05:50:08, IP:182.160.113.235, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2020-06-08 16:15:46
212.64.71.173	attackspambots	Brute-force attempt banned	2020-06-08 16:21:05
101.109.216.129	attackbotsspam	1591588185 - 06/08/2020 05:49:45 Host: 101.109.216.129/101.109.216.129 Port: 445 TCP Blocked	2020-06-08 16:33:57
140.249.191.91	attackbotsspam	Jun 8 02:18:56 pl3server sshd[918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.191.91 user=r.r Jun 8 02:18:58 pl3server sshd[918]: Failed password for r.r from 140.249.191.91 port 49955 ssh2 Jun 8 02:18:58 pl3server sshd[918]: Received disconnect from 140.249.191.91 port 49955:11: Bye Bye [preauth] Jun 8 02:18:58 pl3server sshd[918]: Disconnected from 140.249.191.91 port 49955 [preauth] Jun 8 02:32:24 pl3server sshd[14853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.191.91 user=r.r Jun 8 02:32:26 pl3server sshd[14853]: Failed password for r.r from 140.249.191.91 port 59258 ssh2 Jun 8 02:32:26 pl3server sshd[14853]: Received disconnect from 140.249.191.91 port 59258:11: Bye Bye [preauth] Jun 8 02:32:26 pl3server sshd[14853]: Disconnected from 140.249.191.91 port 59258 [preauth] Jun 8 02:35:31 pl3server sshd[16036]: pam_unix(sshd:auth): authentication failu........ -------------------------------	2020-06-08 16:45:42
183.91.86.174	attack	(From wrixon.darrel@gmail.com) Healthcare, health-care, or medical care is the upkeep or renovation of health using the prevention, diagnosis, treatment, recovery, or treatment of disease, illness, injury, and various other physical and also psychological disabilities in people. Health care is supplied by wellness specialists in allied health areas. Physicians and also doctor affiliates belong of these health professionals. Dental care, drug store, midwifery, nursing, medication, optometry, audiology, psychology, work treatment, physical therapy, sports training as well as other health professions are all part of health care. It includes work performed in giving medical care, second care, and tertiary care, in addition to in public health. Accessibility to healthcare may differ throughout countries, communities, and also individuals, affected by social and economic conditions in addition to health and wellness policies. Giving health care solutions indicates "the ti	2020-06-08 16:52:58
95.163.255.202	attackspambots	Automatic report - Banned IP Access	2020-06-08 16:19:58
36.26.82.40	attackspam	Jun 8 09:20:26 ntop sshd[12787]: User r.r from 36.26.82.40 not allowed because not listed in AllowUsers Jun 8 09:20:26 ntop sshd[12787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.82.40 user=r.r Jun 8 09:20:28 ntop sshd[12787]: Failed password for invalid user r.r from 36.26.82.40 port 60129 ssh2 Jun 8 09:20:29 ntop sshd[12787]: Received disconnect from 36.26.82.40 port 60129:11: Bye Bye [preauth] Jun 8 09:20:29 ntop sshd[12787]: Disconnected from invalid user r.r 36.26.82.40 port 60129 [preauth] Jun 8 09:28:21 ntop sshd[30468]: User r.r from 36.26.82.40 not allowed because not listed in AllowUsers Jun 8 09:28:21 ntop sshd[30468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.82.40 user=r.r Jun 8 09:28:23 ntop sshd[30468]: Failed password for invalid user r.r from 36.26.82.40 port 53150 ssh2 Jun 8 09:28:24 ntop sshd[30468]: Received disconnect from 36.26.82.40 p........ -------------------------------	2020-06-08 16:29:30
180.76.118.175	attackbots	Jun 8 09:54:23 our-server-hostname sshd[19148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.118.175 user=r.r Jun 8 09:54:25 our-server-hostname sshd[19148]: Failed password for r.r from 180.76.118.175 port 54214 ssh2 Jun 8 10:02:28 our-server-hostname sshd[21142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.118.175 user=r.r Jun 8 10:02:29 our-server-hostname sshd[21142]: Failed password for r.r from 180.76.118.175 port 50592 ssh2 Jun 8 10:05:21 our-server-hostname sshd[21821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.118.175 user=r.r Jun 8 10:05:23 our-server-hostname sshd[21821]: Failed password for r.r from 180.76.118.175 port 56058 ssh2 Jun 8 10:08:15 our-server-hostname sshd[22419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.118.175 user=r.r Jun 8 10........ -------------------------------	2020-06-08 16:34:18
139.99.43.235	attackspambots	Jun 8 05:22:40 ns382633 sshd\[11063\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.43.235 user=root Jun 8 05:22:42 ns382633 sshd\[11063\]: Failed password for root from 139.99.43.235 port 51636 ssh2 Jun 8 05:38:16 ns382633 sshd\[13926\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.43.235 user=root Jun 8 05:38:18 ns382633 sshd\[13926\]: Failed password for root from 139.99.43.235 port 32808 ssh2 Jun 8 05:49:49 ns382633 sshd\[15770\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.43.235 user=root	2020-06-08 16:30:34
157.230.109.166	attackbotsspam	Jun 8 08:17:50 tuxlinux sshd[54381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.109.166 user=root Jun 8 08:17:51 tuxlinux sshd[54381]: Failed password for root from 157.230.109.166 port 47600 ssh2 Jun 8 08:17:50 tuxlinux sshd[54381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.109.166 user=root Jun 8 08:17:51 tuxlinux sshd[54381]: Failed password for root from 157.230.109.166 port 47600 ssh2 Jun 8 08:29:59 tuxlinux sshd[60433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.109.166 user=root ...	2020-06-08 16:45:20
99.11.1.97	attackbots	Jun 8 08:34:46 nas sshd[16571]: Failed password for root from 99.11.1.97 port 53772 ssh2 Jun 8 08:45:16 nas sshd[17008]: Failed password for root from 99.11.1.97 port 43920 ssh2 ...	2020-06-08 16:19:29
46.101.248.180	attackbotsspam	Tried sshing with brute force.	2020-06-08 16:16:25
192.241.235.72	attack	IP 192.241.235.72 attacked honeypot on port: 2638 at 6/8/2020 4:49:23 AM	2020-06-08 16:40:32
95.167.39.12	attackspambots	2020-06-08T05:43:19.217194amanda2.illicoweb.com sshd\[3607\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.167.39.12 user=root 2020-06-08T05:43:21.191137amanda2.illicoweb.com sshd\[3607\]: Failed password for root from 95.167.39.12 port 53814 ssh2 2020-06-08T05:48:01.698694amanda2.illicoweb.com sshd\[3775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.167.39.12 user=root 2020-06-08T05:48:03.722376amanda2.illicoweb.com sshd\[3775\]: Failed password for root from 95.167.39.12 port 51968 ssh2 2020-06-08T05:49:27.573225amanda2.illicoweb.com sshd\[3790\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.167.39.12 user=root ...	2020-06-08 16:47:12
50.100.113.207	attack	SSH brute-force attempt	2020-06-08 16:24:29

Recently Reported IPs

138.68.142.2	117.200.148.133	2601:19c:8100:5190:3cea:bda5:7366:b8bb	209.97.138.50
8.10.75.51	124.238.31.225	156.253.15.251	2620:18c::209
35.203.211.20	46.30.213.183	49.7.227.204	2001:8a0:7f44:1400:3859:4338:143e:5753
176.11.51.212	20.169.107.208	245.27.40.199	10.128.8.11
185.235.47.255	185.189.114.170	65.49.192.21	147.185.133.40