City: Shanghaicun
Region: Henan
Country: China
Internet Service Provider: China Mobile
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '223.64.0.0 - 223.117.255.255'
% Abuse contact for '223.64.0.0 - 223.117.255.255' is 'abuse@chinamobile.com'
inetnum: 223.64.0.0 - 223.117.255.255
netname: CMNET
descr: China Mobile Communications Corporation
descr: Mobile Communications Network Operator in China
descr: Internet Service Provider in China
country: CN
org: ORG-CM1-AP
admin-c: HL1318-AP
tech-c: HL1318-AP
abuse-c: AC2006-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CN-CMCC
mnt-routes: MAINT-CN-CMCC
mnt-irt: IRT-CHINAMOBILE-CN
last-modified: 2020-10-20T00:58:37Z
source: APNIC
irt: IRT-CHINAMOBILE-CN
address: China Mobile Communications Corporation
address: 29, Jinrong Ave., Xicheng District, Beijing, 100032
e-mail: abuse@chinamobile.com
abuse-mailbox: abuse@chinamobile.com
admin-c: CT74-AP
tech-c: CT74-AP
auth: # Filtered
remarks: abuse@chinamobile.com was validated on 2026-03-23
mnt-by: MAINT-CN-CMCC
last-modified: 2026-03-23T00:47:53Z
source: APNIC
organisation: ORG-CM1-AP
org-name: China Mobile
org-type: LIR
country: CN
address: 29, Jinrong Ave.
phone: +86-10-5268-6688
fax-no: +86-10-5261-6187
e-mail: hostmaster@chinamobile.com
mnt-ref: APNIC-HM
mnt-by: APNIC-HM
last-modified: 2023-09-05T02:14:48Z
source: APNIC
role: ABUSE CHINAMOBILECN
country: ZZ
address: China Mobile Communications Corporation
address: 29, Jinrong Ave., Xicheng District, Beijing, 100032
phone: +000000000
e-mail: abuse@chinamobile.com
admin-c: CT74-AP
tech-c: CT74-AP
nic-hdl: AC2006-AP
remarks: Generated from irt object IRT-CHINAMOBILE-CN
remarks: abuse@chinamobile.com was validated on 2026-03-23
abuse-mailbox: abuse@chinamobile.com
mnt-by: APNIC-ABUSE
last-modified: 2026-03-23T00:48:02Z
source: APNIC
person: haijun li
nic-hdl: HL1318-AP
e-mail: hostmaster@chinamobile.com
address: 29,Jinrong Ave, Xicheng district,beijing,100032
phone: +86 1052686688
fax-no: +86 10 52616187
country: CN
mnt-by: MAINT-CN-CMCC
abuse-mailbox: abuse@chinamobile.com
last-modified: 2016-11-29T09:38:38Z
source: APNIC
% Information related to '223.64.0.0/11AS9808'
route: 223.64.0.0/11
descr: China Mobile communications corporation
origin: AS9808
mnt-by: MAINT-CN-CMCC
last-modified: 2012-02-15T08:54:23Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 223.89.139.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30606
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;223.89.139.100. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026051802 1800 900 604800 86400
;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 19 09:00:42 CST 2026
;; MSG SIZE rcvd: 107Host 100.139.89.223.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 100.139.89.223.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 39.108.133.34 | attackspam | Aug 29 22:13:59 ns392434 sshd[4418]: Invalid user huanghao from 39.108.133.34 port 48100 Aug 29 22:13:59 ns392434 sshd[4418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.108.133.34 Aug 29 22:13:59 ns392434 sshd[4418]: Invalid user huanghao from 39.108.133.34 port 48100 Aug 29 22:14:02 ns392434 sshd[4418]: Failed password for invalid user huanghao from 39.108.133.34 port 48100 ssh2 Aug 29 22:22:42 ns392434 sshd[4488]: Invalid user fi from 39.108.133.34 port 52264 Aug 29 22:22:42 ns392434 sshd[4488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.108.133.34 Aug 29 22:22:42 ns392434 sshd[4488]: Invalid user fi from 39.108.133.34 port 52264 Aug 29 22:22:43 ns392434 sshd[4488]: Failed password for invalid user fi from 39.108.133.34 port 52264 ssh2 Aug 29 22:24:30 ns392434 sshd[4518]: Invalid user postgres from 39.108.133.34 port 43172 |
2020-08-30 06:46:57 |
| 47.105.188.17 | attack | Auto reported by IDS |
2020-08-30 06:17:29 |
| 78.190.191.98 | attackbotsspam | 2020-08-29T16:24:05.901501mail.thespaminator.com sshd[28853]: Invalid user ubnt from 78.190.191.98 port 3622 2020-08-29T16:24:05.920928mail.thespaminator.com sshd[28855]: Invalid user ubnt from 78.190.191.98 port 1945 ... |
2020-08-30 06:52:30 |
| 118.25.44.66 | attackbots | Aug 29 13:22:59 pixelmemory sshd[1223355]: Failed password for root from 118.25.44.66 port 51948 ssh2 Aug 29 13:25:28 pixelmemory sshd[1223721]: Invalid user process from 118.25.44.66 port 51208 Aug 29 13:25:28 pixelmemory sshd[1223721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.44.66 Aug 29 13:25:28 pixelmemory sshd[1223721]: Invalid user process from 118.25.44.66 port 51208 Aug 29 13:25:30 pixelmemory sshd[1223721]: Failed password for invalid user process from 118.25.44.66 port 51208 ssh2 ... |
2020-08-30 06:26:03 |
| 77.216.121.251 | attack | Fail2Ban Ban Triggered Wordpress Sniffing |
2020-08-30 06:29:21 |
| 131.100.137.154 | attackbots | Attempted Brute Force (dovecot) |
2020-08-30 06:47:11 |
| 5.135.161.7 | attackspam | 2020-08-29T21:29:38.270903upcloud.m0sh1x2.com sshd[2614]: Invalid user demo from 5.135.161.7 port 46520 |
2020-08-30 06:45:53 |
| 118.27.12.127 | attackspam | $f2bV_matches |
2020-08-30 06:55:23 |
| 51.68.19.126 | attack | 51.68.19.126 - - [29/Aug/2020:22:47:59 +0200] "POST /xmlrpc.php HTTP/1.1" 403 16731 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.68.19.126 - - [29/Aug/2020:23:04:03 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-30 06:21:03 |
| 41.193.218.26 | attackbots | Port probing on unauthorized port 445 |
2020-08-30 06:46:23 |
| 90.219.61.100 | attack | php WP PHPmyadamin ABUSE blocked for 12h |
2020-08-30 06:37:30 |
| 180.121.134.9 | attack | SMTP AUTH on honeypot |
2020-08-30 06:36:50 |
| 222.186.169.194 | attackbots | Aug 30 00:35:24 jane sshd[2970]: Failed password for root from 222.186.169.194 port 3068 ssh2 Aug 30 00:35:29 jane sshd[2970]: Failed password for root from 222.186.169.194 port 3068 ssh2 ... |
2020-08-30 06:43:08 |
| 112.85.42.176 | attack | Aug 30 00:24:27 minden010 sshd[7269]: Failed password for root from 112.85.42.176 port 35755 ssh2 Aug 30 00:24:30 minden010 sshd[7269]: Failed password for root from 112.85.42.176 port 35755 ssh2 Aug 30 00:24:42 minden010 sshd[7269]: error: maximum authentication attempts exceeded for root from 112.85.42.176 port 35755 ssh2 [preauth] ... |
2020-08-30 06:48:33 |
| 192.249.120.54 | attack | Automatic report - XMLRPC Attack |
2020-08-30 06:45:21 |