City: Foshan
Region: Guangdong
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '14.208.0.0 - 14.223.255.255'
% Abuse contact for '14.208.0.0 - 14.223.255.255' is 'anti-spam@chinatelecom.cn'
inetnum: 14.208.0.0 - 14.223.255.255
netname: CHINANET-GD
descr: CHINANET Guangdong province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: IC83-AP
abuse-c: AC1573-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
notify: abuse_gdnoc@189.cn
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-GD
mnt-irt: IRT-CHINANET-CN
last-modified: 2021-06-15T08:06:06Z
source: APNIC
irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: anti-spam@chinatelecom.cn
abuse-mailbox: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
auth: # Filtered
remarks: anti-spam@chinatelecom.cn was validated on 2025-11-13
mnt-by: MAINT-CHINANET
last-modified: 2026-03-13T07:12:20Z
source: APNIC
role: ABUSE CHINANETCN
country: ZZ
address: No.31 ,jingrong street,beijing
address: 100032
phone: +000000000
e-mail: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
nic-hdl: AC1573-AP
remarks: Generated from irt object IRT-CHINANET-CN
remarks: anti-spam@chinatelecom.cn was validated on 2025-11-13
abuse-mailbox: anti-spam@chinatelecom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-11-13T14:15:15Z
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@chinatelecom.cn
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
mnt-by: MAINT-CHINANET
last-modified: 2022-02-28T06:53:44Z
source: APNIC
person: IPMASTER CHINANET-GD
nic-hdl: IC83-AP
e-mail: abuse_gdicnoc@163.com
address: NO.18,RO. ZHONGSHANER,YUEXIU DISTRIC,GUANGZHOU
phone: +86-20-87189274
fax-no: +86-20-87189274
country: CN
mnt-by: MAINT-CHINANET-GD
remarks: IPMASTER is not for spam complaint,please send spam complaint to abuse_gdicnoc@163.com
abuse-mailbox: abuse_gdicnoc@163.com
last-modified: 2021-05-12T09:06:58Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.212.94.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14569
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;14.212.94.58. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026050301 1800 900 604800 86400
;; Query time: 3 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 04 14:01:13 CST 2026
;; MSG SIZE rcvd: 105Host 58.94.212.14.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 58.94.212.14.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 120.29.155.122 | attackspam | $f2bV_matches |
2019-09-20 03:00:37 |
| 27.37.102.148 | attack | Sep 19 03:49:49 lcprod sshd\[8317\]: Invalid user admin from 27.37.102.148 Sep 19 03:49:49 lcprod sshd\[8317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.37.102.148 Sep 19 03:49:50 lcprod sshd\[8317\]: Failed password for invalid user admin from 27.37.102.148 port 47178 ssh2 Sep 19 03:49:53 lcprod sshd\[8317\]: Failed password for invalid user admin from 27.37.102.148 port 47178 ssh2 Sep 19 03:49:56 lcprod sshd\[8317\]: Failed password for invalid user admin from 27.37.102.148 port 47178 ssh2 |
2019-09-20 03:00:15 |
| 181.40.66.179 | attack | Sep 19 18:10:14 heissa sshd\[26902\]: Invalid user bs from 181.40.66.179 port 54260 Sep 19 18:10:14 heissa sshd\[26902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.40.66.179 Sep 19 18:10:15 heissa sshd\[26902\]: Failed password for invalid user bs from 181.40.66.179 port 54260 ssh2 Sep 19 18:20:00 heissa sshd\[27964\]: Invalid user stormtech from 181.40.66.179 port 35862 Sep 19 18:20:00 heissa sshd\[27964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.40.66.179 |
2019-09-20 03:03:09 |
| 119.1.86.121 | attack | Sep 19 05:52:00 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 119.1.86.121 port 42578 ssh2 (target: 158.69.100.143:22, password: default) Sep 19 05:52:00 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 119.1.86.121 port 42578 ssh2 (target: 158.69.100.143:22, password: Zte521) Sep 19 05:52:00 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 119.1.86.121 port 42578 ssh2 (target: 158.69.100.143:22, password: seiko2005) Sep 19 05:52:01 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 119.1.86.121 port 42578 ssh2 (target: 158.69.100.143:22, password: 123456) Sep 19 05:52:01 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 119.1.86.121 port 42578 ssh2 (target: 158.69.100.143:22, password: ubnt) Sep 19 05:52:01 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 119.1.86.121 port 42578 ssh2 (target: 158.69.100.143:22, password: Zte521) Sep 19 05:52:02 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 1........ ------------------------------ |
2019-09-20 02:44:28 |
| 118.69.182.145 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 11:47:07. |
2019-09-20 02:44:58 |
| 117.198.99.135 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 11:46:39. |
2019-09-20 03:04:07 |
| 117.199.167.152 | attackspambots | Unauthorized connection attempt from IP address 117.199.167.152 on Port 445(SMB) |
2019-09-20 03:18:20 |
| 18.189.40.213 | attackspambots | jannisjulius.de 18.189.40.213 \[19/Sep/2019:12:46:20 +0200\] "POST /wp-login.php HTTP/1.1" 200 6117 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" jannisjulius.de 18.189.40.213 \[19/Sep/2019:12:46:24 +0200\] "POST /wp-login.php HTTP/1.1" 200 6120 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-09-20 03:11:14 |
| 69.167.13.128 | attackspam | [portscan] Port scan |
2019-09-20 02:54:30 |
| 104.215.55.45 | attackspam | SSH Brute-Force attacks |
2019-09-20 02:53:54 |
| 180.166.114.14 | attack | Sep 19 19:04:18 *** sshd[31664]: Invalid user shoping from 180.166.114.14 |
2019-09-20 03:15:53 |
| 86.26.233.209 | attackbotsspam | 2019/09/19 12:47:03 [error] 1953#1953: *3735 open() "/srv/automx/instance/cgi-bin/ViewLog.asp" failed (2: No such file or directory), client: 86.26.233.209, server: autoconfig.tuxlinux.eu, request: "POST /cgi-bin/ViewLog.asp HTTP/1.1", host: "127.0.0.1" 2019/09/19 12:47:05 [error] 1950#1950: *3737 open() "/srv/automx/instance/cgi-bin/ViewLog.asp" failed (2: No such file or directory), client: 86.26.233.209, server: autoconfig.tuxlinux.eu, request: "POST /cgi-bin/ViewLog.asp HTTP/1.1", host: "127.0.0.1" ... |
2019-09-20 02:51:32 |
| 188.163.66.237 | attackbotsspam | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-19 10:14:06,625 INFO [amun_request_handler] PortScan Detected on Port: 445 (188.163.66.237) |
2019-09-20 02:58:48 |
| 163.47.39.70 | attackspam | Sep 19 11:06:45 mail sshd\[9915\]: Invalid user rails from 163.47.39.70 Sep 19 11:06:45 mail sshd\[9915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.47.39.70 ... |
2019-09-20 03:11:37 |
| 63.35.182.101 | attackspam | RDP Bruteforce |
2019-09-20 03:12:51 |