城市(city): unknown
省份(region): unknown
国家(country): Hong Kong
运营商(isp): CSL Limited
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '182.16.0.0 - 182.16.127.255'
% Abuse contact for '182.16.0.0 - 182.16.127.255' is 'abuse@netsec.com'
inetnum: 182.16.0.0 - 182.16.127.255
netname: NETSEC-HK
descr: Netsec Limited
country: HK
org: ORG-NASS1-AP
admin-c: NN541-AP
tech-c: NN541-AP
status: ALLOCATED PORTABLE
abuse-c: AH1002-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-NETSEC-HK
mnt-routes: MAINT-NETSEC-HK
mnt-irt: IRT-HK-NETSEC
last-modified: 2025-03-14T06:45:24Z
source: APNIC
irt: IRT-HK-NETSEC
address: RM 2607-08, 26/F, Billion Plaza, 8 Cheung Yue St, Cheung Sha Wan, Kowloon, Hong Kong
e-mail: noc@netsec.com
abuse-mailbox: abuse@netsec.com
admin-c: NN411-AP
tech-c: NN411-AP
auth: # Filtered
remarks: abuse@netsec.com was validated on 2026-03-25
remarks: noc@netsec.com was validated on 2026-05-27
mnt-by: MAINT-HK-NETSEC
last-modified: 2026-05-27T01:25:06Z
source: APNIC
organisation: ORG-NASS1-AP
org-name: Netsec Limited
org-type: LIR
country: HK
address: RM 2607-08, 26/F, Billion Plaza, 8 Cheung Yue St, Cheung Sha
phone: +852-27511100
fax-no: +852-27511199
e-mail: noc@netsec.com
mnt-ref: APNIC-HM
mnt-by: APNIC-HM
last-modified: 2023-09-05T02:15:31Z
source: APNIC
role: ABUSE HKNETSEC
country: ZZ
address: RM 2607-08, 26/F, Billion Plaza, 8 Cheung Yue St, Cheung Sha Wan, Kowloon, Hong Kong
phone: +000000000
e-mail: noc@netsec.com
admin-c: NN411-AP
tech-c: NN411-AP
nic-hdl: AH1002-AP
remarks: Generated from irt object IRT-HK-NETSEC
remarks: abuse@netsec.com was validated on 2026-03-25
remarks: noc@netsec.com was validated on 2026-05-27
abuse-mailbox: abuse@netsec.com
mnt-by: APNIC-ABUSE
last-modified: 2026-05-27T01:25:23Z
source: APNIC
role: NETSEC NOC
address: Suite 1007, 10/F, The Bay Hub, 17 Kai Cheung Rd, Kowloon Bay
country: HK
phone: +85227511100
e-mail: noc@netsec.com
admin-c: NN541-AP
tech-c: NN541-AP
nic-hdl: NN541-AP
mnt-by: MAINT-NETSEC-HK
last-modified: 2025-03-14T05:55:40Z
source: APNIC
% Information related to '182.16.91.0/24AS45753'
route: 182.16.91.0/24
origin: AS45753
descr: Netsec Limited
RM 2607-08, 26/F, Billion Plaza, 8 Cheung Yue St, Cheung Sha
mnt-by: MAINT-NETSEC-HK
last-modified: 2021-11-29T07:40:43Z
source: APNIC
% Information related to '182.16.91.0/24AS963'
route: 182.16.91.0/24
origin: AS963
descr: Netsec Limited
RM 2607-08, 26/F, Billion Plaza, 8 Cheung Yue St, Cheung Sha
mnt-by: MAINT-NETSEC-HK
last-modified: 2025-05-07T02:05:30Z
source: APNIC
% Information related to '182.16.91.0/24AS9744'
route: 182.16.91.0/24
origin: AS9744
descr: Netsec Limited
RM 2607-08, 26/F, Billion Plaza, 8 Cheung Yue St, Cheung Sha
mnt-by: MAINT-NETSEC-HK
last-modified: 2021-11-29T08:13:15Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 182.16.91.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33512
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;182.16.91.238. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026061101 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 12 04:30:27 CST 2026
;; MSG SIZE rcvd: 106Host 238.91.16.182.in-addr.arpa not found: 2(SERVFAIL);; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 238.91.16.182.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 61.177.172.128 | attackbotsspam | IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking. |
2020-01-08 05:00:12 |
| 91.121.135.84 | attackspam | Wordpress attack |
2020-01-08 05:10:23 |
| 81.22.45.70 | attack | Jan 7 17:24:18 debian-2gb-nbg1-2 kernel: \[673576.053239\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.70 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=15679 PROTO=TCP SPT=47781 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-01-08 05:00:51 |
| 212.92.105.187 | attack | B: Magento admin pass /admin/ test (wrong country) |
2020-01-08 05:12:42 |
| 107.170.255.48 | attackbots | WordPress wp-login brute force :: 107.170.255.48 0.120 - [07/Jan/2020:20:25:15 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1806 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1" |
2020-01-08 05:15:54 |
| 117.102.70.3 | attackbots | 1578401587 - 01/07/2020 13:53:07 Host: 117.102.70.3/117.102.70.3 Port: 445 TCP Blocked |
2020-01-08 05:20:32 |
| 67.205.96.242 | attackbotsspam | Unauthorized connection attempt detected from IP address 67.205.96.242 to port 2220 [J] |
2020-01-08 05:11:56 |
| 121.201.1.169 | attackspam | Scanning random ports - tries to find possible vulnerable services |
2020-01-08 05:04:58 |
| 164.132.81.106 | attackbotsspam | $f2bV_matches |
2020-01-08 05:22:44 |
| 201.116.12.217 | attack | Jan 7 11:18:41 wbs sshd\[29129\]: Invalid user ts3bot from 201.116.12.217 Jan 7 11:18:41 wbs sshd\[29129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.116.12.217 Jan 7 11:18:44 wbs sshd\[29129\]: Failed password for invalid user ts3bot from 201.116.12.217 port 49071 ssh2 Jan 7 11:20:58 wbs sshd\[29336\]: Invalid user jx from 201.116.12.217 Jan 7 11:20:58 wbs sshd\[29336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.116.12.217 |
2020-01-08 05:25:37 |
| 148.235.82.68 | attack | SSH auth scanning - multiple failed logins |
2020-01-08 05:15:31 |
| 185.176.27.178 | attack | Jan 7 21:42:46 debian-2gb-nbg1-2 kernel: \[689083.166684\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=15965 PROTO=TCP SPT=52426 DPT=19688 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-01-08 04:54:46 |
| 1.9.129.229 | attackbotsspam | Jan 6 13:54:34 v26 sshd[30085]: Invalid user ubuntu from 1.9.129.229 port 54135 Jan 6 13:54:36 v26 sshd[30085]: Failed password for invalid user ubuntu from 1.9.129.229 port 54135 ssh2 Jan 6 13:54:37 v26 sshd[30085]: Received disconnect from 1.9.129.229 port 54135:11: Bye Bye [preauth] Jan 6 13:54:37 v26 sshd[30085]: Disconnected from 1.9.129.229 port 54135 [preauth] Jan 6 13:59:08 v26 sshd[30365]: Invalid user temp from 1.9.129.229 port 51406 Jan 6 13:59:11 v26 sshd[30365]: Failed password for invalid user temp from 1.9.129.229 port 51406 ssh2 Jan 6 13:59:11 v26 sshd[30365]: Received disconnect from 1.9.129.229 port 51406:11: Bye Bye [preauth] Jan 6 13:59:11 v26 sshd[30365]: Disconnected from 1.9.129.229 port 51406 [preauth] Jan 6 14:01:33 v26 sshd[30494]: Invalid user amhostname from 1.9.129.229 port 35234 Jan 6 14:01:35 v26 sshd[30494]: Failed password for invalid user amhostname from 1.9.129.229 port 35234 ssh2 Jan 6 14:01:35 v26 sshd[30494]: Received dis........ ------------------------------- |
2020-01-08 04:53:15 |
| 37.148.240.12 | attack | 01/07/2020-13:53:37.966550 37.148.240.12 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433 |
2020-01-08 05:08:32 |
| 185.175.93.105 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2020-01-08 05:13:59 |