城市(city): Beijing
省份(region): Beijing
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '101.42.0.0 - 101.43.255.255'
% Abuse contact for '101.42.0.0 - 101.43.255.255' is 'abuse@tencent.com'
inetnum: 101.42.0.0 - 101.43.255.255
netname: TENCENT-CN
descr: Tencent Cloud Computing (Beijing) Co., Ltd
descr: Floor 6, Yinke Building, 38 Haidian St, Haidian District
country: CN
org: ORG-TCCC1-AP
admin-c: TCA15-AP
tech-c: TCA15-AP
abuse-c: AT992-AP
status: ALLOCATED PORTABLE
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-TENCENT-CN
mnt-routes: MAINT-TENCENT-CN
mnt-irt: IRT-TENCENT-CN
last-modified: 2020-07-22T13:10:59Z
source: APNIC
irt: IRT-TENCENT-CN
address: Floor 6, Yinke Building, 38 Haidian St, Haidian District, Beijing Beijing 100080
e-mail: tencent_noc@tencent.com
abuse-mailbox: abuse@tencent.com
admin-c: TCA15-AP
tech-c: TCA15-AP
auth: # Filtered
remarks: abuse@tencent.com was validated on 2025-10-29
remarks: tencent_noc@tencent.com was validated on 2025-10-29
mnt-by: MAINT-COMSENZ1-CN
last-modified: 2025-11-18T00:31:31Z
source: APNIC
organisation: ORG-TCCC1-AP
org-name: Tencent Cloud Computing (Beijing) Co., Ltd
org-type: LIR
country: CN
address: 309 West Zone, 3F. 49 Zhichun Road. Haidian District.
phone: +86-10-62671299
fax-no: +86-10-82602088-41299
e-mail: tencent_idc@tencent.com
mnt-ref: APNIC-HM
mnt-by: APNIC-HM
last-modified: 2023-09-05T02:16:21Z
source: APNIC
role: ABUSE TENCENTCN
country: ZZ
address: Floor 6, Yinke Building, 38 Haidian St, Haidian District, Beijing Beijing 100080
phone: +000000000
e-mail: tencent_noc@tencent.com
admin-c: TCA15-AP
tech-c: TCA15-AP
nic-hdl: AT992-AP
remarks: Generated from irt object IRT-TENCENT-CN
remarks: abuse@tencent.com was validated on 2025-10-29
remarks: tencent_noc@tencent.com was validated on 2025-10-29
abuse-mailbox: abuse@tencent.com
mnt-by: APNIC-ABUSE
last-modified: 2025-10-29T07:07:38Z
source: APNIC
role: Tencent Cloud administrator
address: Floor 6, Yinke Building, 38 Haidian St, Haidian District, Beijing Beijing 100080
country: CN
phone: +86-10-62671299
e-mail: tencent_idc@tencent.com
admin-c: TCA15-AP
tech-c: TCA15-AP
nic-hdl: TCA15-AP
mnt-by: MAINT-AP-DIALPAD
fax-no: +86-10-62671299
last-modified: 2017-04-04T10:34:03Z
source: APNIC
% Information related to '101.42.0.0/15AS45090'
route: 101.42.0.0/15
origin: AS45090
descr: Tencent Cloud Computing (Beijing) Co., Ltd
309 West Zone, 3F. 49 Zhichun Road. Haidian District.
mnt-by: MAINT-TENCENT-CN
last-modified: 2020-02-24T07:34:27Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 101.42.45.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35101
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;101.42.45.144. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026050700 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 07 16:57:16 CST 2026
;; MSG SIZE rcvd: 106Host 144.45.42.101.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 144.45.42.101.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 31.170.123.134 | attackbotsspam | 2020-06-2414:02:031jo46L-00080S-Vs\<=no-reply@cybhotel.comH=mail6.webfaction.com\(smtp.webfaction.com\)[31.170.123.134]:56322P=esmtpsX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noS=29213id=5ef340b905708@cybhotel.comT="HotelBattello-Reservationno.3983953095"forinfo@hotelgarni-battello.ch2020-06-2414:02:061jo46O-00080i-31\<=no-reply@cybhotel.comH=mail6.webfaction.com\(smtp.webfaction.com\)[31.170.123.134]:56460P=esmtpsX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noS=29194id=5ef340ba90f8d@cybhotel.comT="HotelBattello-Reservationno.3861099516"forinfo@hotelgarni-battello.ch2020-06-2414:02:071jo46L-00080Q-OG\<=no-reply@cybhotel.comH=mail6.webfaction.com\(smtp.webfaction.com\)[31.170.123.134]:56300P=esmtpsX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noS=29211id=5ef340b8b99be@cybhotel.comT="HotelBattello-Reservationno.3994788961"forinfo@hotelgarni-battello.ch2020-06-2414:02:071jo46M-00080T-28\<=no-reply@cybhotel.comH=mail6.webfaction.com\(smtp.webfaction.com\)[31.170.123.134]:56340P=esmtpsX=TLS1.2:ECDHE-RSA-AES256-G |
2020-06-25 03:12:35 |
| 51.75.254.172 | attack | Jun 24 17:38:34 marvibiene sshd[32129]: Invalid user info1 from 51.75.254.172 port 60280 Jun 24 17:38:34 marvibiene sshd[32129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.254.172 Jun 24 17:38:34 marvibiene sshd[32129]: Invalid user info1 from 51.75.254.172 port 60280 Jun 24 17:38:36 marvibiene sshd[32129]: Failed password for invalid user info1 from 51.75.254.172 port 60280 ssh2 ... |
2020-06-25 03:01:32 |
| 182.23.3.226 | attackbots | Jun 24 17:19:46 124388 sshd[13123]: Failed password for invalid user godwin from 182.23.3.226 port 43440 ssh2 Jun 24 17:23:07 124388 sshd[13279]: Invalid user vmware from 182.23.3.226 port 52638 Jun 24 17:23:07 124388 sshd[13279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.23.3.226 Jun 24 17:23:07 124388 sshd[13279]: Invalid user vmware from 182.23.3.226 port 52638 Jun 24 17:23:09 124388 sshd[13279]: Failed password for invalid user vmware from 182.23.3.226 port 52638 ssh2 |
2020-06-25 03:17:08 |
| 148.102.17.19 | attack | Jun 24 19:20:17 ourumov-web sshd\[29761\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.102.17.19 user=root Jun 24 19:20:19 ourumov-web sshd\[29761\]: Failed password for root from 148.102.17.19 port 54024 ssh2 Jun 24 19:48:51 ourumov-web sshd\[31571\]: Invalid user ftpuser from 148.102.17.19 port 34973 ... |
2020-06-25 03:00:42 |
| 192.241.183.220 | attack | Scanned 304 unique addresses for 2 unique TCP ports in 24 hours (ports 17745,18989) |
2020-06-25 02:57:35 |
| 145.102.6.58 | attackspam | Port scan on 1 port(s): 53 |
2020-06-25 03:15:42 |
| 170.130.143.15 | attackbots | IP: 170.130.143.15
Ports affected
Simple Mail Transfer (25)
Abuse Confidence rating 20%
Found in DNSBL('s)
ASN Details
AS62904 EONIX-COMMUNICATIONS-ASBLOCK-62904
United States (US)
CIDR 170.130.128.0/19
Log Date: 24/06/2020 12:19:52 PM UTC |
2020-06-25 02:50:24 |
| 59.126.207.121 | attackspam | Telnet Server BruteForce Attack |
2020-06-25 03:05:50 |
| 113.59.224.45 | attackbotsspam | Jun 24 15:19:26 mout sshd[32289]: Invalid user yxu from 113.59.224.45 port 60602 |
2020-06-25 03:12:07 |
| 41.230.105.23 | attackspambots | Unauthorized connection attempt detected from IP address 41.230.105.23 to port 23 |
2020-06-25 02:53:10 |
| 185.176.27.98 | attackbotsspam | 06/24/2020-14:47:29.758703 185.176.27.98 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-06-25 02:49:48 |
| 43.228.95.6 | attackspambots | Unauthorized connection attempt from IP address 43.228.95.6 on Port 445(SMB) |
2020-06-25 03:28:55 |
| 222.252.15.49 | attack | Unauthorized connection attempt from IP address 222.252.15.49 on Port 445(SMB) |
2020-06-25 03:12:58 |
| 222.186.42.155 | attack | Jun 24 21:06:36 vps sshd[73344]: Failed password for root from 222.186.42.155 port 44767 ssh2 Jun 24 21:06:38 vps sshd[73344]: Failed password for root from 222.186.42.155 port 44767 ssh2 Jun 24 21:06:40 vps sshd[74011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root Jun 24 21:06:43 vps sshd[74011]: Failed password for root from 222.186.42.155 port 20037 ssh2 Jun 24 21:06:45 vps sshd[74011]: Failed password for root from 222.186.42.155 port 20037 ssh2 ... |
2020-06-25 03:11:10 |
| 14.63.221.100 | attackspam | SSH Honeypot -> SSH Bruteforce / Login |
2020-06-25 02:48:04 |