City: Shanghai
Region: Shanghai
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '106.14.0.0 - 106.15.255.255'
% Abuse contact for '106.14.0.0 - 106.15.255.255' is 'didong.jc@alibaba-inc.com'
inetnum: 106.14.0.0 - 106.15.255.255
netname: ALISOFT
descr: Aliyun Computing Co., LTD
descr: 5F, Builing D, the West Lake International Plaza of S&T
descr: No.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099
country: CN
admin-c: ZM1015-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
tech-c: ZM875-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-ALISOFT-CN
last-modified: 2023-11-28T00:56:50Z
source: APNIC
irt: IRT-ALISOFT-CN
address: No.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099
e-mail: didong.jc@alibaba-inc.com
abuse-mailbox: didong.jc@alibaba-inc.com
admin-c: ZM877-AP
tech-c: ZM877-AP
auth: # Filtered
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-18T00:35:07Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: Li Jia
address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
country: CN
phone: +86-0571-85022088
e-mail: jiali.jl@alibaba-inc.com
nic-hdl: ZM1015-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:12:42Z
source: APNIC
person: Guoxin Gao
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: anti-spam@list.alibaba-inc.com
nic-hdl: ZM875-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2014-07-30T01:56:01Z
source: APNIC
person: security trouble
e-mail: abuse@alibaba-inc.com
address: 5th,floor,Building D,the West Lake International Plaza of S&T,391#Wen??r Road
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
last-modified: 2025-07-01T07:06:11Z
source: APNIC
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: abuse@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:05:46Z
source: APNIC
% Information related to '106.15.248.0/24AS37963'
route: 106.15.248.0/24
descr: Alibaba (US) Technology Co., Ltd.
origin: AS37963
mnt-by: MAINT-CNNIC-AP
last-modified: 2020-06-28T00:12:08Z
source: APNIC
% Information related to '106.15.248.0/24AS45102'
route: 106.15.248.0/24
descr: Alibaba (US) Technology Co., Ltd.
origin: AS45102
mnt-by: MAINT-CNNIC-AP
last-modified: 2020-06-28T00:11:24Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.15.248.186
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4919
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;106.15.248.186. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026060500 1800 900 604800 86400
;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 05 17:51:12 CST 2026
;; MSG SIZE rcvd: 107Host 186.248.15.106.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 186.248.15.106.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 162.243.99.164 | attackbotsspam | Sep 8 20:08:37 localhost sshd\[4439\]: Invalid user mysql from 162.243.99.164 port 43511 Sep 8 20:08:37 localhost sshd\[4439\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 Sep 8 20:08:39 localhost sshd\[4439\]: Failed password for invalid user mysql from 162.243.99.164 port 43511 ssh2 |
2019-09-09 02:11:53 |
| 113.122.36.185 | attack | Sep 8 14:31:03 vps sshd[2909]: Failed password for root from 113.122.36.185 port 42830 ssh2 Sep 8 14:31:08 vps sshd[2909]: Failed password for root from 113.122.36.185 port 42830 ssh2 Sep 8 14:31:13 vps sshd[2909]: Failed password for root from 113.122.36.185 port 42830 ssh2 Sep 8 14:31:23 vps sshd[2909]: Failed password for root from 113.122.36.185 port 42830 ssh2 ... |
2019-09-09 01:51:36 |
| 54.39.151.22 | attackbotsspam | Sep 8 13:46:05 vps647732 sshd[21910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.151.22 Sep 8 13:46:07 vps647732 sshd[21910]: Failed password for invalid user webdata from 54.39.151.22 port 46698 ssh2 ... |
2019-09-09 02:16:17 |
| 91.244.6.11 | attackspambots | 23/tcp [2019-09-08]1pkt |
2019-09-09 02:22:21 |
| 104.248.207.64 | attack | 2222/tcp [2019-09-08]1pkt |
2019-09-09 01:52:48 |
| 118.169.242.69 | attackspambots | 445/tcp [2019-09-08]1pkt |
2019-09-09 02:09:28 |
| 68.183.130.158 | attack | marleenrecords.breidenba.ch 68.183.130.158 \[08/Sep/2019:18:55:35 +0200\] "POST /wp-login.php HTTP/1.1" 200 5808 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" marleenrecords.breidenba.ch 68.183.130.158 \[08/Sep/2019:18:55:37 +0200\] "POST /wp-login.php HTTP/1.1" 200 5765 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-09-09 02:19:30 |
| 150.242.99.190 | attackbotsspam | Sep 8 13:55:30 meumeu sshd[1618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.99.190 Sep 8 13:55:31 meumeu sshd[1618]: Failed password for invalid user passw0rd from 150.242.99.190 port 53334 ssh2 Sep 8 14:01:08 meumeu sshd[2688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.99.190 ... |
2019-09-09 02:04:43 |
| 91.44.19.138 | attack | 23/tcp [2019-09-08]1pkt |
2019-09-09 02:37:44 |
| 190.228.16.101 | attack | Sep 8 12:50:53 markkoudstaal sshd[17043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.228.16.101 Sep 8 12:50:55 markkoudstaal sshd[17043]: Failed password for invalid user user from 190.228.16.101 port 44310 ssh2 Sep 8 12:56:04 markkoudstaal sshd[17495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.228.16.101 |
2019-09-09 02:27:27 |
| 180.96.14.98 | attack | Sep 8 14:03:20 OPSO sshd\[29832\]: Invalid user bot1 from 180.96.14.98 port 2671 Sep 8 14:03:20 OPSO sshd\[29832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.96.14.98 Sep 8 14:03:23 OPSO sshd\[29832\]: Failed password for invalid user bot1 from 180.96.14.98 port 2671 ssh2 Sep 8 14:06:26 OPSO sshd\[30338\]: Invalid user test from 180.96.14.98 port 30973 Sep 8 14:06:26 OPSO sshd\[30338\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.96.14.98 |
2019-09-09 01:57:06 |
| 175.175.113.201 | attackspambots | 23/tcp [2019-09-08]1pkt |
2019-09-09 02:30:47 |
| 200.180.159.138 | attack | 81/tcp [2019-09-08]1pkt |
2019-09-09 02:40:42 |
| 149.202.59.85 | attack | Sep 8 13:48:34 ny01 sshd[5682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.59.85 Sep 8 13:48:35 ny01 sshd[5682]: Failed password for invalid user user from 149.202.59.85 port 36717 ssh2 Sep 8 13:52:50 ny01 sshd[6451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.59.85 |
2019-09-09 02:15:37 |
| 218.92.0.160 | attackspam | $f2bV_matches |
2019-09-09 02:20:48 |