城市(city): Shanghai
省份(region): Shanghai
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '116.224.0.0 - 116.239.255.255'
% Abuse contact for '116.224.0.0 - 116.239.255.255' is 'anti-spam@chinatelecom.cn'
inetnum: 116.224.0.0 - 116.239.255.255
netname: CHINANET-SH
descr: CHINANET Shanghai province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: WWQ4-AP
tech-c: WWQ4-AP
abuse-c: AC1573-AP
status: ALLOCATED PORTABLE
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-SH
mnt-routes: MAINT-CHINANET-SH
mnt-irt: IRT-CHINANET-CN
last-modified: 2021-06-15T08:06:29Z
source: APNIC
irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: anti-spam@chinatelecom.cn
abuse-mailbox: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
auth: # Filtered
remarks: anti-spam@chinatelecom.cn was validated on 2025-04-24
mnt-by: MAINT-CHINANET
last-modified: 2025-09-04T00:59:42Z
source: APNIC
role: ABUSE CHINANETCN
country: ZZ
address: No.31 ,jingrong street,beijing
address: 100032
phone: +000000000
e-mail: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
nic-hdl: AC1573-AP
remarks: Generated from irt object IRT-CHINANET-CN
remarks: anti-spam@chinatelecom.cn was validated on 2025-04-24
abuse-mailbox: anti-spam@chinatelecom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-04-24T03:21:54Z
source: APNIC
person: Weng Wen Qian
address: Room 2405,357 Songlin Road,Shanghai 200122
country: CN
phone: +86-21-68405784
fax-no: +86-21-50623458
e-mail: shizhiming.sh@chinatelecom.cn
nic-hdl: WWQ4-AP
mnt-by: MAINT-CHINANET-SH
last-modified: 2023-02-07T08:25:17Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.228.148.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57782
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;116.228.148.21. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025101300 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 13 15:32:06 CST 2025
;; MSG SIZE rcvd: 107Host 21.148.228.116.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 21.148.228.116.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 45.148.121.43 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 27 - port: 123 proto: TCP cat: Misc Attack |
2020-06-21 08:07:05 |
| 222.186.175.23 | attackspambots | Jun 21 02:18:29 minden010 sshd[16323]: Failed password for root from 222.186.175.23 port 52071 ssh2 Jun 21 02:18:37 minden010 sshd[16397]: Failed password for root from 222.186.175.23 port 12032 ssh2 ... |
2020-06-21 08:20:38 |
| 13.249.120.65 | attackbots | ET INFO TLS Handshake Failure - port: 1992 proto: TCP cat: Potentially Bad Traffic |
2020-06-21 07:51:26 |
| 45.92.126.74 | attackbotsspam | firewall-block, port(s): 86/tcp, 92/tcp, 93/tcp, 8084/tcp, 8086/tcp, 8090/tcp |
2020-06-21 07:48:17 |
| 94.156.80.214 | attackspam | Honeypot attack, port: 81, PTR: PTR record not found |
2020-06-21 08:11:36 |
| 102.129.224.10 | attack |
|
2020-06-21 07:57:15 |
| 45.227.255.204 | attack |
|
2020-06-21 07:47:13 |
| 185.39.11.56 | attackbots | Jun 21 01:40:02 debian-2gb-nbg1-2 kernel: \[14955084.539145\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.39.11.56 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=39360 PROTO=TCP SPT=57597 DPT=6649 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-06-21 07:54:07 |
| 62.112.11.88 | attackspam | Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-20T19:30:36Z and 2020-06-20T20:14:23Z |
2020-06-21 08:21:21 |
| 103.63.109.74 | attackspam | Jun 20 08:31:50 Tower sshd[18009]: refused connect from 182.61.138.203 (182.61.138.203) Jun 20 19:10:05 Tower sshd[18009]: Connection from 103.63.109.74 port 35932 on 192.168.10.220 port 22 rdomain "" Jun 20 19:10:07 Tower sshd[18009]: Invalid user cristi from 103.63.109.74 port 35932 Jun 20 19:10:07 Tower sshd[18009]: error: Could not get shadow information for NOUSER Jun 20 19:10:07 Tower sshd[18009]: Failed password for invalid user cristi from 103.63.109.74 port 35932 ssh2 Jun 20 19:10:07 Tower sshd[18009]: Received disconnect from 103.63.109.74 port 35932:11: Bye Bye [preauth] Jun 20 19:10:07 Tower sshd[18009]: Disconnected from invalid user cristi 103.63.109.74 port 35932 [preauth] |
2020-06-21 08:09:44 |
| 162.243.145.81 | attackbotsspam | GPL SNMP public access udp - port: 161 proto: UDP cat: Attempted Information Leak |
2020-06-21 07:55:51 |
| 66.70.173.63 | attackbots | Scanned 3 times in the last 24 hours on port 22 |
2020-06-21 08:19:40 |
| 81.22.100.7 | attackspam | ET WEB_SERVER WEB-PHP phpinfo access - port: 80 proto: TCP cat: Information Leak |
2020-06-21 08:03:27 |
| 67.158.42.183 | attackbots | Brute forcing email accounts |
2020-06-21 08:10:14 |
| 93.174.89.55 | attack |
|
2020-06-21 07:59:28 |