City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '240e::/18'
% Abuse contact for '240e::/18' is 'anti-spam@chinatelecom.cn'
inet6num: 240e::/18
netname: CT-IPv6-Networks
descr: Chinatelecom networks with tens of high-end routers and switches
descr: Including users who access to Internet through Chinatelecom's networks.
country: CN
org: ORG-CT1-AP
admin-c: CH93-AP
tech-c: CH93-AP
abuse-c: AC1573-AP
status: ALLOCATED PORTABLE
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-CN
mnt-routes: MAINT-CHINANET-CN
mnt-irt: IRT-CHINANET-CN
last-modified: 2021-06-15T08:06:31Z
source: APNIC
irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: anti-spam@chinatelecom.cn
abuse-mailbox: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
auth: # Filtered
remarks: anti-spam@chinatelecom.cn was validated on 2025-04-24
mnt-by: MAINT-CHINANET
last-modified: 2025-09-04T00:59:42Z
source: APNIC
organisation: ORG-CT1-AP
org-name: China Telecom
country: CN
address: Data Network Management Division
address: Network Operation & Maintenance Department
address: No 19 Chaoyangmen North Street
address: Dongcheng District
phone: +86-20-38639251
fax-no: +86-10-58501060
e-mail: zhengzm@chinatelecom.cn
mnt-ref: APNIC-HM
mnt-by: APNIC-HM
last-modified: 2019-09-16T12:55:07Z
source: APNIC
role: ABUSE CHINANETCN
country: ZZ
address: No.31 ,jingrong street,beijing
address: 100032
phone: +000000000
e-mail: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
nic-hdl: AC1573-AP
remarks: Generated from irt object IRT-CHINANET-CN
remarks: anti-spam@chinatelecom.cn was validated on 2025-04-24
abuse-mailbox: anti-spam@chinatelecom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-04-24T03:21:54Z
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@chinatelecom.cn
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
mnt-by: MAINT-CHINANET
last-modified: 2022-02-28T06:53:44Z
source: APNIC
% Information related to '240e::/20AS4134'
route6: 240e::/20
descr: CHINANET-IPv6-ROUTE
origin: AS4134
mnt-by: MAINT-CHINANET
last-modified: 2018-08-21T08:05:25Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 240e:1a:2000::1b
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 60376
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;240e:1a:2000::1b. IN A
;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Oct 04 21:09:05 CST 2025
;; MSG SIZE rcvd: 45
'Host b.1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.a.1.0.0.e.0.4.2.ip6.arpa not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find b.1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.a.1.0.0.e.0.4.2.ip6.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 51.75.66.92 | attack | Jul 22 21:50:47 server1 sshd\[18398\]: Failed password for invalid user artur from 51.75.66.92 port 59046 ssh2 Jul 22 21:54:57 server1 sshd\[19446\]: Invalid user vmail from 51.75.66.92 Jul 22 21:54:57 server1 sshd\[19446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.66.92 Jul 22 21:54:59 server1 sshd\[19446\]: Failed password for invalid user vmail from 51.75.66.92 port 46578 ssh2 Jul 22 21:59:14 server1 sshd\[20582\]: Invalid user user from 51.75.66.92 ... |
2020-07-23 12:20:33 |
| 223.113.74.54 | attackspambots | SSH invalid-user multiple login try |
2020-07-23 12:08:30 |
| 51.15.11.104 | attackbotsspam | Jul 23 05:54:36 srv2 sshd\[22003\]: Invalid user oracle from 51.15.11.104 port 32854 Jul 23 05:57:35 srv2 sshd\[22403\]: Invalid user postgres from 51.15.11.104 port 47366 Jul 23 06:00:31 srv2 sshd\[22846\]: Invalid user hadoop from 51.15.11.104 port 33646 |
2020-07-23 12:14:18 |
| 111.229.248.236 | attackspambots | Jul 23 01:00:07 vps333114 sshd[3303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.248.236 Jul 23 01:00:09 vps333114 sshd[3303]: Failed password for invalid user web2 from 111.229.248.236 port 40134 ssh2 ... |
2020-07-23 08:34:47 |
| 185.188.9.138 | attack | Failed RDP login |
2020-07-23 08:27:58 |
| 91.106.199.101 | attack | Jul 23 02:03:20 * sshd[12631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Jul 23 02:03:22 * sshd[12631]: Failed password for invalid user lynch from 91.106.199.101 port 38942 ssh2 |
2020-07-23 08:30:23 |
| 139.59.56.23 | attackspam | Jul 22 23:59:38 Host-KEWR-E sshd[19142]: Disconnected from invalid user vick 139.59.56.23 port 38436 [preauth] ... |
2020-07-23 12:04:25 |
| 213.217.1.46 | attackbots | Triggered: repeated knocking on closed ports. |
2020-07-23 12:30:41 |
| 103.10.55.163 | attackbots | Port scan: Attack repeated for 24 hours |
2020-07-23 12:16:32 |
| 171.231.245.184 | attackbotsspam | Failed RDP login |
2020-07-23 08:28:37 |
| 103.209.64.197 | attack | Failed RDP login |
2020-07-23 08:29:28 |
| 114.7.164.170 | attack | Jul 23 05:53:42 ovpn sshd\[26548\]: Invalid user felipe from 114.7.164.170 Jul 23 05:53:43 ovpn sshd\[26548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.7.164.170 Jul 23 05:53:45 ovpn sshd\[26548\]: Failed password for invalid user felipe from 114.7.164.170 port 56294 ssh2 Jul 23 05:59:18 ovpn sshd\[27961\]: Invalid user zlg from 114.7.164.170 Jul 23 05:59:18 ovpn sshd\[27961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.7.164.170 |
2020-07-23 12:18:30 |
| 107.180.84.194 | attack | 107.180.84.194 - - [23/Jul/2020:05:59:04 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 107.180.84.194 - - [23/Jul/2020:05:59:05 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 107.180.84.194 - - [23/Jul/2020:05:59:06 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-07-23 12:30:14 |
| 138.99.7.29 | attack | Jul 23 06:01:23 h2427292 sshd\[14200\]: Invalid user administrador from 138.99.7.29 Jul 23 06:01:23 h2427292 sshd\[14200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.29 Jul 23 06:01:25 h2427292 sshd\[14200\]: Failed password for invalid user administrador from 138.99.7.29 port 36738 ssh2 ... |
2020-07-23 12:05:03 |
| 18.138.212.162 | attackspam | Jul 23 01:57:52 sso sshd[14260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.138.212.162 Jul 23 01:57:54 sso sshd[14260]: Failed password for invalid user test from 18.138.212.162 port 59622 ssh2 ... |
2020-07-23 08:27:34 |