City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 140.205.0.0 - 140.205.255.255
CIDR: 140.205.0.0/16
NetName: APNIC-ERX-140-205-0-0
NetHandle: NET-140-205-0-0-1
Parent: NET140 (NET-140-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2010-11-03
Updated: 2010-11-17
Comment: This IP address range is not registered in the ARIN database.
Comment: This range was transferred to the APNIC Whois Database as
Comment: part of the ERX (Early Registration Transfer) project.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses. For more
Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming
Ref: https://rdap.arin.net/registry/ip/140.205.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '140.205.0.0 - 140.205.255.255'
% Abuse contact for '140.205.0.0 - 140.205.255.255' is 'didong.jc@alibaba-inc.com'
inetnum: 140.205.0.0 - 140.205.255.255
netname: Taobao
descr: Zhejiang Taobao Network Co.,Ltd
descr: 2nd floor, Westlake International technology Building
descr: 391Wener Road, Hangzhou, China
country: CN
admin-c: ZM678-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-TAOBAO-CN
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
last-modified: 2023-11-28T00:57:06Z
source: APNIC
irt: IRT-Taobao-CN
address: 2nd floor, Westlake International technology Building, 391 Wener Road, Hangzhou
e-mail: didong.jc@alibaba-inc.com
abuse-mailbox: didong.jc@alibaba-inc.com
admin-c: ZM877-AP
tech-c: ZM877-AP
auth: # Filtered
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-18T00:35:07Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: Shuo Yu
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
e-mail: anti-spam@list.alibaba-inc.com
nic-hdl: ZM678-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2021-04-13T23:21:57Z
source: APNIC
person: security trouble
e-mail: abuse@alibaba-inc.com
address: 5th,floor,Building D,the West Lake International Plaza of S&T,391#Wen??r Road
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
last-modified: 2025-07-01T07:06:11Z
source: APNIC
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: abuse@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:05:46Z
source: APNIC
% Information related to '140.205.160.0/24AS37963'
route: 140.205.160.0/24
origin: AS37963
descr: China Internet Network Information Center
Floor1, Building No.1 C/-Chinese Academy of Sciences
4, South 4th Street
Haidian District,
mnt-by: MAINT-CNNIC-AP
last-modified: 2020-02-18T01:11:41Z
source: APNIC
% Information related to '140.205.160.0/24AS45102'
route: 140.205.160.0/24
origin: AS45102
descr: China Internet Network Information Center
Floor1, Building No.1 C/-Chinese Academy of Sciences
4, South 4th Street
Haidian District,
mnt-by: MAINT-CNNIC-AP
last-modified: 2020-02-18T01:14:08Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.205.160.128
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52522
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;140.205.160.128. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026042802 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 29 08:47:36 CST 2026
;; MSG SIZE rcvd: 108Host 128.160.205.140.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 128.160.205.140.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 184.22.144.1 | attack | Unauthorized connection attempt detected from IP address 184.22.144.1 to port 445 |
2020-02-01 02:20:48 |
| 125.212.226.54 | attack | Jan 31 18:01:42 game-panel sshd[8740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.226.54 Jan 31 18:01:44 game-panel sshd[8740]: Failed password for invalid user zabbix from 125.212.226.54 port 53888 ssh2 Jan 31 18:04:58 game-panel sshd[8870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.226.54 |
2020-02-01 02:10:33 |
| 44.231.150.158 | attackspambots | Wordpress_xmlrpc_attack |
2020-02-01 01:43:09 |
| 54.207.111.13 | attackspam | User agent spoofing, by Amazon Technologies Inc. |
2020-02-01 01:41:51 |
| 104.140.188.58 | attack | 01/31/2020-13:06:42.526138 104.140.188.58 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433 |
2020-02-01 02:11:55 |
| 218.92.0.171 | attackspam | $f2bV_matches |
2020-02-01 01:50:56 |
| 119.146.145.104 | attackspambots | (sshd) Failed SSH login from 119.146.145.104 (CN/China/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jan 31 17:06:15 andromeda sshd[16007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.145.104 user=admin Jan 31 17:06:18 andromeda sshd[16007]: Failed password for admin from 119.146.145.104 port 2249 ssh2 Jan 31 17:31:58 andromeda sshd[17141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.145.104 user=admin |
2020-02-01 01:54:16 |
| 222.186.30.31 | attack | Unauthorized connection attempt detected from IP address 222.186.30.31 to port 22 [J] |
2020-02-01 01:43:46 |
| 111.254.31.72 | attack | 1580491934 - 01/31/2020 18:32:14 Host: 111.254.31.72/111.254.31.72 Port: 445 TCP Blocked |
2020-02-01 01:39:42 |
| 187.188.20.94 | attackspam | Unauthorized connection attempt from IP address 187.188.20.94 on Port 445(SMB) |
2020-02-01 01:41:29 |
| 70.60.38.12 | attackspambots | SMB Server BruteForce Attack |
2020-02-01 01:51:47 |
| 178.128.27.68 | attackbotsspam | $f2bV_matches |
2020-02-01 02:05:46 |
| 199.122.124.84 | attack | TCP Port: 25 invalid blocked spam-sorbs also spamrats (431) |
2020-02-01 02:13:20 |
| 82.64.77.30 | attack | Jan 31 17:31:46 web8 sshd\[9233\]: Invalid user pi from 82.64.77.30 Jan 31 17:31:46 web8 sshd\[9234\]: Invalid user pi from 82.64.77.30 Jan 31 17:31:46 web8 sshd\[9233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.77.30 Jan 31 17:31:46 web8 sshd\[9234\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.77.30 Jan 31 17:31:47 web8 sshd\[9233\]: Failed password for invalid user pi from 82.64.77.30 port 57876 ssh2 |
2020-02-01 02:10:02 |
| 222.186.175.140 | attack | Jan 31 18:48:11 plex sshd[24537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Jan 31 18:48:13 plex sshd[24537]: Failed password for root from 222.186.175.140 port 2950 ssh2 |
2020-02-01 01:52:19 |