City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '180.152.0.0 - 180.159.255.255'
% Abuse contact for '180.152.0.0 - 180.159.255.255' is 'anti-spam@chinatelecom.cn'
inetnum: 180.152.0.0 - 180.159.255.255
netname: CHINANET-SH
descr: CHINANET SHANGHAI PROVINCE NETWORK
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: WWQ4-AP
tech-c: WWQ4-AP
abuse-c: AC1573-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-SH
mnt-irt: IRT-CHINANET-CN
last-modified: 2021-06-15T08:04:51Z
source: APNIC
irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: anti-spam@chinatelecom.cn
abuse-mailbox: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
auth: # Filtered
remarks: anti-spam@chinatelecom.cn was validated on 2025-11-13
mnt-by: MAINT-CHINANET
last-modified: 2025-11-18T00:26:23Z
source: APNIC
role: ABUSE CHINANETCN
country: ZZ
address: No.31 ,jingrong street,beijing
address: 100032
phone: +000000000
e-mail: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
nic-hdl: AC1573-AP
remarks: Generated from irt object IRT-CHINANET-CN
remarks: anti-spam@chinatelecom.cn was validated on 2025-11-13
abuse-mailbox: anti-spam@chinatelecom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-11-13T14:15:15Z
source: APNIC
person: Weng Wen Qian
address: Room 2405,357 Songlin Road,Shanghai 200122
country: CN
phone: +86-21-68405784
fax-no: +86-21-50623458
e-mail: shizhiming.sh@chinatelecom.cn
nic-hdl: WWQ4-AP
mnt-by: MAINT-CHINANET-SH
last-modified: 2023-02-07T08:25:17Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 180.153.236.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12289
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;180.153.236.241. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025112201 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 23 02:30:27 CST 2025
;; MSG SIZE rcvd: 108Host 241.236.153.180.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 241.236.153.180.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 103.107.17.134 | attackspam | 2019-12-05T19:10:04.482939homeassistant sshd[29503]: Invalid user a4 from 103.107.17.134 port 35872 2019-12-05T19:10:04.489655homeassistant sshd[29503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.17.134 ... |
2019-12-06 03:28:52 |
| 24.4.128.213 | attackspam | 2019-12-05T19:16:41.153183shield sshd\[17774\]: Invalid user leasau from 24.4.128.213 port 41504 2019-12-05T19:16:41.157434shield sshd\[17774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-24-4-128-213.hsd1.ca.comcast.net 2019-12-05T19:16:43.214453shield sshd\[17774\]: Failed password for invalid user leasau from 24.4.128.213 port 41504 ssh2 2019-12-05T19:22:37.853772shield sshd\[18959\]: Invalid user ikey from 24.4.128.213 port 50020 2019-12-05T19:22:37.858905shield sshd\[18959\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-24-4-128-213.hsd1.ca.comcast.net |
2019-12-06 03:23:39 |
| 165.227.46.221 | attackspam | Dec 5 16:46:45 sshd: Connection from 165.227.46.221 port 34336 Dec 5 16:46:49 sshd: Invalid user guest from 165.227.46.221 Dec 5 16:46:50 sshd: Failed password for invalid user guest from 165.227.46.221 port 34336 ssh2 Dec 5 16:46:51 sshd: Received disconnect from 165.227.46.221: 11: Bye Bye [preauth] |
2019-12-06 03:48:42 |
| 123.27.108.18 | attack | Dec 5 16:00:29 srv01 sshd[13106]: Invalid user admin from 123.27.108.18 port 51821 Dec 5 16:00:29 srv01 sshd[13106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.27.108.18 Dec 5 16:00:29 srv01 sshd[13106]: Invalid user admin from 123.27.108.18 port 51821 Dec 5 16:00:31 srv01 sshd[13106]: Failed password for invalid user admin from 123.27.108.18 port 51821 ssh2 Dec 5 16:00:29 srv01 sshd[13106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.27.108.18 Dec 5 16:00:29 srv01 sshd[13106]: Invalid user admin from 123.27.108.18 port 51821 Dec 5 16:00:31 srv01 sshd[13106]: Failed password for invalid user admin from 123.27.108.18 port 51821 ssh2 ... |
2019-12-06 03:38:52 |
| 67.85.105.1 | attackbotsspam | Dec 5 14:48:47 sshd: Connection from 67.85.105.1 port 53640 Dec 5 14:48:48 sshd: Invalid user daczka from 67.85.105.1 Dec 5 14:48:50 sshd: Failed password for invalid user daczka from 67.85.105.1 port 53640 ssh2 Dec 5 14:48:50 sshd: Received disconnect from 67.85.105.1: 11: Bye Bye [preauth] |
2019-12-06 03:49:51 |
| 131.161.105.67 | attackbots | firewall-block, port(s): 26/tcp |
2019-12-06 03:31:32 |
| 14.237.137.71 | attackspam | Unauthorized connection attempt from IP address 14.237.137.71 on Port 445(SMB) |
2019-12-06 03:34:53 |
| 103.129.222.135 | attackspambots | Dec 5 18:56:55 raspberrypi sshd\[8976\]: Invalid user ita from 103.129.222.135Dec 5 18:56:57 raspberrypi sshd\[8976\]: Failed password for invalid user ita from 103.129.222.135 port 59769 ssh2Dec 5 19:19:41 raspberrypi sshd\[9381\]: Failed password for root from 103.129.222.135 port 57152 ssh2 ... |
2019-12-06 03:59:03 |
| 119.90.43.106 | attackbotsspam | Dec 5 14:47:17 sshd: Connection from 119.90.43.106 port 50516 Dec 5 14:47:20 sshd: reverse mapping checking getaddrinfo for undefine.inidc.com.cn [119.90.43.106] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 5 14:47:20 sshd: Invalid user darrow from 119.90.43.106 Dec 5 14:47:20 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.90.43.106 Dec 5 14:47:22 sshd: Failed password for invalid user darrow from 119.90.43.106 port 50516 ssh2 Dec 5 14:47:22 sshd: Received disconnect from 119.90.43.106: 11: Bye Bye [preauth] |
2019-12-06 03:57:51 |
| 181.39.149.251 | attackbots | sshd jail - ssh hack attempt |
2019-12-06 03:41:21 |
| 193.112.72.180 | attackspam | Dec 5 09:44:33 sachi sshd\[3073\]: Invalid user nawawi from 193.112.72.180 Dec 5 09:44:33 sachi sshd\[3073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.72.180 Dec 5 09:44:34 sachi sshd\[3073\]: Failed password for invalid user nawawi from 193.112.72.180 port 60922 ssh2 Dec 5 09:49:55 sachi sshd\[3627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.72.180 user=root Dec 5 09:49:57 sachi sshd\[3627\]: Failed password for root from 193.112.72.180 port 34912 ssh2 |
2019-12-06 03:53:57 |
| 138.197.73.215 | attackspam | Dec 5 09:21:11 sachi sshd\[728\]: Invalid user password12346 from 138.197.73.215 Dec 5 09:21:11 sachi sshd\[728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.73.215 Dec 5 09:21:13 sachi sshd\[728\]: Failed password for invalid user password12346 from 138.197.73.215 port 36834 ssh2 Dec 5 09:26:46 sachi sshd\[1272\]: Invalid user thoennes from 138.197.73.215 Dec 5 09:26:46 sachi sshd\[1272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.73.215 |
2019-12-06 03:33:06 |
| 51.68.198.75 | attack | Dec 5 19:22:38 124388 sshd[21866]: Failed password for invalid user ftp from 51.68.198.75 port 50472 ssh2 Dec 5 19:27:43 124388 sshd[21927]: Invalid user guest from 51.68.198.75 port 60568 Dec 5 19:27:43 124388 sshd[21927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.198.75 Dec 5 19:27:43 124388 sshd[21927]: Invalid user guest from 51.68.198.75 port 60568 Dec 5 19:27:45 124388 sshd[21927]: Failed password for invalid user guest from 51.68.198.75 port 60568 ssh2 |
2019-12-06 03:34:22 |
| 222.186.175.202 | attackbots | 2019-12-05T20:48:31.000297vps751288.ovh.net sshd\[12411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root 2019-12-05T20:48:32.788828vps751288.ovh.net sshd\[12411\]: Failed password for root from 222.186.175.202 port 47956 ssh2 2019-12-05T20:48:35.360644vps751288.ovh.net sshd\[12411\]: Failed password for root from 222.186.175.202 port 47956 ssh2 2019-12-05T20:48:39.206714vps751288.ovh.net sshd\[12411\]: Failed password for root from 222.186.175.202 port 47956 ssh2 2019-12-05T20:48:42.269687vps751288.ovh.net sshd\[12411\]: Failed password for root from 222.186.175.202 port 47956 ssh2 |
2019-12-06 03:51:43 |
| 179.178.192.26 | attackbotsspam | Unauthorized connection attempt from IP address 179.178.192.26 on Port 445(SMB) |
2019-12-06 03:41:48 |