City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 45.248.56.0 - 45.248.123.255
CIDR: 45.248.56.0/21, 45.248.120.0/22, 45.248.96.0/20, 45.248.64.0/19, 45.248.112.0/21
NetName: APNIC
NetHandle: NET-45-248-56-0-1
Parent: NET45 (NET-45-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2015-03-03
Updated: 2024-10-31
Comment: "This IP address range is not registered in the ARIN database.
Comment: This range was transferred to the APNIC Whois Database as
Comment: part of the ERX (Early Registration Transfer) project.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses. For more
Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming"
Ref: https://rdap.arin.net/registry/ip/45.248.56.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois://whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '45.248.108.0 - 45.248.111.255'
% Abuse contact for '45.248.108.0 - 45.248.111.255' is '420478080@qq.com'
inetnum: 45.248.108.0 - 45.248.111.255
netname: PengChengNet
descr: Shenzhen Pengcheng communication network Co., Ltd
descr: Shenzhen Longgang District Longcheng Street ShengPing Community
descr: Longping East Road 381 Sunshine square Building A Two unit 504
country: CN
admin-c: YW7243-AP
tech-c: YW7243-AP
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CNNIC-AP
mnt-irt: IRT-PengCheng-CN
mnt-routes: MAINT-CNNIC-AP
status: ALLOCATED PORTABLE
last-modified: 2022-09-27T02:51:27Z
source: APNIC
irt: IRT-PengCheng-CN
address: Shenzhen Longgang District Longcheng Street ShengPing Community
address: Longping East Road 381 Sunshine square Building A Two unit 504
e-mail: 420478080@qq.com
abuse-mailbox: 420478080@qq.com
admin-c: YW7243-AP
tech-c: YW7243-AP
auth: # Filtered
mnt-by: MAINT-CNNIC-AP
last-modified: 2026-01-05T09:57:24Z
source: APNIC
person: Yang Pu
address: Shenzhen Longgang District Longcheng Street ShengPing Community
address: Longping East Road 381 Sunshine square Building A Two unit 504
country: CN
phone: +86-0755-86381333
e-mail: 420478080@qq.com
nic-hdl: YW7243-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2022-07-25T07:38:56Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.248.109.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52074
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;45.248.109.67. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026070300 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 03 17:42:52 CST 2026
;; MSG SIZE rcvd: 106
Host 67.109.248.45.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 67.109.248.45.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 178.128.27.68 | attackbotsspam | $f2bV_matches |
2020-02-01 02:05:46 |
| 3.80.170.246 | attackbots | Unauthorized connection attempt detected from IP address 3.80.170.246 to port 89 [J] |
2020-02-01 01:47:20 |
| 139.199.193.202 | attackspam | Unauthorized connection attempt detected from IP address 139.199.193.202 to port 2220 [J] |
2020-02-01 02:22:20 |
| 159.65.155.227 | attackspam | Unauthorized connection attempt detected from IP address 159.65.155.227 to port 2220 [J] |
2020-02-01 02:11:05 |
| 51.38.71.191 | attackbots | Jan 31 18:32:06 mout sshd[6945]: Invalid user newuser from 51.38.71.191 port 40264 |
2020-02-01 01:49:57 |
| 151.80.153.174 | attack | Jan 31 12:54:09 NPSTNNYC01T sshd[2321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.153.174 Jan 31 12:54:11 NPSTNNYC01T sshd[2321]: Failed password for invalid user testuser from 151.80.153.174 port 34104 ssh2 Jan 31 12:54:19 NPSTNNYC01T sshd[2326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.153.174 ... |
2020-02-01 01:59:00 |
| 49.88.112.77 | attackbotsspam | Jan 31 14:31:31 firewall sshd[390]: Failed password for root from 49.88.112.77 port 63771 ssh2 Jan 31 14:31:33 firewall sshd[390]: Failed password for root from 49.88.112.77 port 63771 ssh2 Jan 31 14:31:36 firewall sshd[390]: Failed password for root from 49.88.112.77 port 63771 ssh2 ... |
2020-02-01 02:21:31 |
| 119.146.145.104 | attackspambots | (sshd) Failed SSH login from 119.146.145.104 (CN/China/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jan 31 17:06:15 andromeda sshd[16007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.145.104 user=admin Jan 31 17:06:18 andromeda sshd[16007]: Failed password for admin from 119.146.145.104 port 2249 ssh2 Jan 31 17:31:58 andromeda sshd[17141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.145.104 user=admin |
2020-02-01 01:54:16 |
| 186.183.195.207 | attackspam | Email rejected due to spam filtering |
2020-02-01 02:14:47 |
| 142.93.101.148 | attackspam | Failed password for invalid user debian from 142.93.101.148 port 48502 ssh2 Invalid user csgoserver from 142.93.101.148 port 33942 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.148 Failed password for invalid user csgoserver from 142.93.101.148 port 33942 ssh2 Invalid user baptiste from 142.93.101.148 port 47614 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.148 |
2020-02-01 02:01:12 |
| 180.76.101.241 | attack | Jan 31 20:36:55 server sshd\[2317\]: Invalid user ts3bot from 180.76.101.241 Jan 31 20:36:55 server sshd\[2317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.101.241 Jan 31 20:36:57 server sshd\[2317\]: Failed password for invalid user ts3bot from 180.76.101.241 port 48274 ssh2 Jan 31 20:39:40 server sshd\[2616\]: Invalid user frappe from 180.76.101.241 Jan 31 20:39:40 server sshd\[2616\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.101.241 ... |
2020-02-01 02:03:39 |
| 222.186.175.167 | attackbotsspam | Jan 31 18:21:30 zeus sshd[28251]: Failed password for root from 222.186.175.167 port 48024 ssh2 Jan 31 18:21:34 zeus sshd[28251]: Failed password for root from 222.186.175.167 port 48024 ssh2 Jan 31 18:21:39 zeus sshd[28251]: Failed password for root from 222.186.175.167 port 48024 ssh2 Jan 31 18:21:44 zeus sshd[28251]: Failed password for root from 222.186.175.167 port 48024 ssh2 Jan 31 18:21:49 zeus sshd[28251]: Failed password for root from 222.186.175.167 port 48024 ssh2 |
2020-02-01 02:23:32 |
| 54.207.111.13 | attackspam | User agent spoofing, by Amazon Technologies Inc. |
2020-02-01 01:41:51 |
| 78.186.158.94 | attack | Jan 31 18:31:31 debian-2gb-nbg1-2 kernel: \[2751150.427689\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=78.186.158.94 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=43107 PROTO=TCP SPT=58406 DPT=23 WINDOW=52235 RES=0x00 SYN URGP=0 |
2020-02-01 02:26:27 |
| 222.186.175.202 | attackbotsspam | SSH bruteforce |
2020-02-01 01:44:52 |