City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '180.152.0.0 - 180.159.255.255'
% Abuse contact for '180.152.0.0 - 180.159.255.255' is 'anti-spam@chinatelecom.cn'
inetnum: 180.152.0.0 - 180.159.255.255
netname: CHINANET-SH
descr: CHINANET SHANGHAI PROVINCE NETWORK
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: WWQ4-AP
tech-c: WWQ4-AP
abuse-c: AC1573-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-SH
mnt-irt: IRT-CHINANET-CN
last-modified: 2021-06-15T08:04:51Z
source: APNIC
irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: anti-spam@chinatelecom.cn
abuse-mailbox: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
auth: # Filtered
remarks: anti-spam@chinatelecom.cn was validated on 2025-11-13
mnt-by: MAINT-CHINANET
last-modified: 2026-03-13T07:12:20Z
source: APNIC
role: ABUSE CHINANETCN
country: ZZ
address: No.31 ,jingrong street,beijing
address: 100032
phone: +000000000
e-mail: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
nic-hdl: AC1573-AP
remarks: Generated from irt object IRT-CHINANET-CN
remarks: anti-spam@chinatelecom.cn was validated on 2025-11-13
abuse-mailbox: anti-spam@chinatelecom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-11-13T14:15:15Z
source: APNIC
person: Weng Wen Qian
address: Room 2405,357 Songlin Road,Shanghai 200122
country: CN
phone: +86-21-68405784
fax-no: +86-21-50623458
e-mail: shizhiming.sh@chinatelecom.cn
nic-hdl: WWQ4-AP
mnt-by: MAINT-CHINANET-SH
last-modified: 2023-02-07T08:25:17Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 180.153.236.179
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55979
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;180.153.236.179. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026032401 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 25 06:30:44 CST 2026
;; MSG SIZE rcvd: 108Host 179.236.153.180.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 179.236.153.180.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 223.17.4.215 | attackbots | firewall-block, port(s): 445/tcp |
2020-09-18 04:52:07 |
| 197.253.124.133 | attackspam | SSH BruteForce Attack |
2020-09-18 05:14:37 |
| 116.75.213.177 | attack | 404 NOT FOUND |
2020-09-18 05:21:41 |
| 191.240.157.222 | attackspambots | Unauthorized connection attempt from IP address 191.240.157.222 on Port 445(SMB) |
2020-09-18 04:49:34 |
| 59.50.29.209 | attackspambots | [Thu Sep 17 12:43:34 2020 GMT] bdsfewjntw@126.com [RDNS_NONE], Subject: 发票代开13564999872李 |
2020-09-18 04:50:23 |
| 39.38.146.237 | attackspam | Sep 17 19:00:13 ns381471 sshd[15891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.38.146.237 Sep 17 19:00:15 ns381471 sshd[15891]: Failed password for invalid user user from 39.38.146.237 port 51383 ssh2 |
2020-09-18 05:25:14 |
| 139.198.15.41 | attackspambots | Sep 16 03:17:25 server sshd[16726]: Failed password for invalid user admin from 139.198.15.41 port 52974 ssh2 Sep 16 03:17:25 server sshd[16726]: Received disconnect from 139.198.15.41: 11: Bye Bye [preauth] Sep 16 03:32:14 server sshd[17117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.15.41 user=r.r Sep 16 03:32:16 server sshd[17117]: Failed password for r.r from 139.198.15.41 port 59764 ssh2 Sep 16 03:32:16 server sshd[17117]: Received disconnect from 139.198.15.41: 11: Bye Bye [preauth] Sep 16 03:37:45 server sshd[17318]: Failed password for invalid user gate from 139.198.15.41 port 54846 ssh2 Sep 16 03:37:45 server sshd[17318]: Received disconnect from 139.198.15.41: 11: Bye Bye [preauth] Sep 16 03:42:36 server sshd[17486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.15.41 user=r.r Sep 16 03:42:38 server sshd[17486]: Failed password for r.r from 139.198.15.41 p........ ------------------------------- |
2020-09-18 05:26:39 |
| 203.172.66.216 | attack | Sep 17 19:29:34 vm1 sshd[16095]: Failed password for root from 203.172.66.216 port 58976 ssh2 ... |
2020-09-18 05:23:47 |
| 45.125.65.83 | attackbotsspam | " " |
2020-09-18 05:12:13 |
| 217.182.253.249 | attackbotsspam | 20 attempts against mh-ssh on cloud |
2020-09-18 05:07:48 |
| 112.201.151.132 | attackspambots | Unauthorized connection attempt from IP address 112.201.151.132 on Port 445(SMB) |
2020-09-18 05:19:56 |
| 185.220.100.255 | attackbotsspam | DATE:2020-09-17 22:28:16, IP:185.220.100.255, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq) |
2020-09-18 05:21:18 |
| 125.64.94.136 | attackbots | Hacking |
2020-09-18 05:10:01 |
| 184.105.139.94 | attackspam | Auto Detect Rule! proto TCP (SYN), 184.105.139.94:43812->gjan.info:21, len 40 |
2020-09-18 04:54:36 |
| 195.54.160.183 | attackbots | Failed password for invalid user from 195.54.160.183 port 16693 ssh2 |
2020-09-18 05:10:58 |