39.108.164.28 - IPInfo

Basic Info

City: Shenzhen

Region: Guangdong

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
39.108.164.181	attack	Port probing on unauthorized port 4244	2020-10-06 04:52:05
39.108.164.181	attackbotsspam	Port probing on unauthorized port 4244	2020-10-05 20:54:42
39.108.164.181	attack	Port probing on unauthorized port 4244	2020-10-05 12:44:06

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '39.96.0.0 - 39.108.255.255'

% Abuse contact for '39.96.0.0 - 39.108.255.255' is 'ipas@cnnic.cn'

inetnum:        39.96.0.0 - 39.108.255.255
netname:        ALISOFT
descr:          Aliyun Computing Co., LTD
descr:          5F, Builing D, the West Lake International Plaza of S&T
descr:          No.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099
country:        CN
admin-c:        ZM1015-AP
tech-c:         ZM877-AP
tech-c:         ZM876-AP
tech-c:         ZM875-AP
abuse-c:        AC1601-AP
status:         ALLOCATED PORTABLE
mnt-by:         MAINT-CNNIC-AP
mnt-irt:        IRT-CNNIC-CN
last-modified:  2021-06-16T01:29:48Z
source:         APNIC

irt:            IRT-CNNIC-CN
address:        Beijing, China
e-mail:         ipas@cnnic.cn
abuse-mailbox:  ipas@cnnic.cn
admin-c:        IP50-AP
tech-c:         IP50-AP
auth:           # Filtered
remarks:        Please note that CNNIC is not an ISP and is not
remarks:        empowered to investigate complaints of network abuse.
remarks:        Please contact the tech-c or admin-c of the network.
remarks:        ipas@cnnic.cn is invalid
mnt-by:         MAINT-CNNIC-AP
last-modified:  2025-11-17T23:08:37Z
source:         APNIC

role:           ABUSE CNNICCN
country:        ZZ
address:        Beijing, China
phone:          +000000000
e-mail:         ipas@cnnic.cn
admin-c:        IP50-AP
tech-c:         IP50-AP
nic-hdl:        AC1601-AP
remarks:        Generated from irt object IRT-CNNIC-CN
remarks:        ipas@cnnic.cn is invalid
abuse-mailbox:  ipas@cnnic.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-09-19T17:20:32Z
source:         APNIC

person:         Li Jia
address:        NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
country:        CN
phone:          +86-0571-85022088
e-mail:         jiali.jl@alibaba-inc.com
nic-hdl:        ZM1015-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2025-07-01T07:12:42Z
source:         APNIC

person:         Guoxin Gao
address:        5F, Builing D, the West Lake International Plaza of S&T
address:        No.391 Wen'er Road, Hangzhou City
address:        Zhejiang, China, 310099
country:        CN
phone:          +86-0571-85022600
fax-no:         +86-0571-85022600
e-mail:         anti-spam@list.alibaba-inc.com
nic-hdl:        ZM875-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2014-07-30T01:56:01Z
source:         APNIC

person:         security trouble
e-mail:         abuse@alibaba-inc.com
address:        5th,floor,Building D,the West Lake International Plaza of S&T,391#Wen??r Road
address:        Hangzhou, Zhejiang, China
phone:          +86-0571-85022600
country:        CN
mnt-by:         MAINT-CNNIC-AP
nic-hdl:        ZM876-AP
last-modified:  2025-07-01T07:06:11Z
source:         APNIC

person:         Guowei Pan
address:        5F, Builing D, the West Lake International Plaza of S&T
address:        No.391 Wen'er Road, Hangzhou City
address:        Zhejiang, China, 310099
country:        CN
phone:          +86-0571-85022088-30763
fax-no:         +86-0571-85022600
e-mail:         abuse@alibaba-inc.com
nic-hdl:        ZM877-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2025-07-01T07:05:46Z
source:         APNIC

% Information related to '39.108.0.0/16AS37963'

route:          39.108.0.0/16
descr:          Hangzhou Alibaba Advertising Co.,Ltd.
country:        CN
origin:         AS37963
mnt-by:         MAINT-CNNIC-AP
last-modified:  2019-08-07T23:28:06Z
source:         APNIC

% Information related to '39.108.0.0/16AS45102'

route:          39.108.0.0/16
descr:          Alibaba (US) Technology Co., Ltd.
country:        CN
origin:         AS45102
mnt-by:         MAINT-CNNIC-AP
last-modified:  2019-08-07T23:28:05Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.108.164.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37866
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;39.108.164.28.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026060100 1800 900 604800 86400

;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 01 21:10:01 CST 2026
;; MSG SIZE  rcvd: 106

Host info

Host 28.164.108.39.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 28.164.108.39.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.71.227.102	attack	167.71.227.102 - - [02/Aug/2020:21:25:17 +0100] "POST /wp-login.php HTTP/1.1" 200 1801 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.227.102 - - [02/Aug/2020:21:25:19 +0100] "POST /wp-login.php HTTP/1.1" 200 1779 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.227.102 - - [02/Aug/2020:21:25:20 +0100] "POST /wp-login.php HTTP/1.1" 200 1781 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-03 04:47:51
103.114.221.16	attackbots	Aug 2 22:46:46 lnxded63 sshd[21437]: Failed password for root from 103.114.221.16 port 60132 ssh2 Aug 2 22:46:46 lnxded63 sshd[21437]: Failed password for root from 103.114.221.16 port 60132 ssh2	2020-08-03 04:57:57
222.186.175.215	attackspambots	$f2bV_matches	2020-08-03 04:48:55
103.101.172.116	attack	Port probing on unauthorized port 445	2020-08-03 04:31:53
1.32.40.181	attack	Port Scan detected! ...	2020-08-03 04:48:35
222.186.31.204	attackspambots	[MK-VM6] SSH login failed	2020-08-03 04:51:26
36.68.11.162	attackbots	Unauthorized IMAP connection attempt	2020-08-03 04:50:58
184.149.11.148	attackbotsspam	Lines containing failures of 184.149.11.148 Aug 1 19:27:42 shared05 sshd[23944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.149.11.148 user=r.r Aug 1 19:27:43 shared05 sshd[23944]: Failed password for r.r from 184.149.11.148 port 39099 ssh2 Aug 1 19:27:43 shared05 sshd[23944]: Received disconnect from 184.149.11.148 port 39099:11: Bye Bye [preauth] Aug 1 19:27:43 shared05 sshd[23944]: Disconnected from authenticating user r.r 184.149.11.148 port 39099 [preauth] Aug 1 19:35:16 shared05 sshd[28134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.149.11.148 user=r.r Aug 1 19:35:18 shared05 sshd[28134]: Failed password for r.r from 184.149.11.148 port 38271 ssh2 Aug 1 19:35:18 shared05 sshd[28134]: Received disconnect from 184.149.11.148 port 38271:11: Bye Bye [preauth] Aug 1 19:35:18 shared05 sshd[28134]: Disconnected from authenticating user r.r 184.149.11.148 port 38271........ ------------------------------	2020-08-03 04:32:38
46.101.209.178	attack	Aug 2 22:25:08 lnxmysql61 sshd[9057]: Failed password for root from 46.101.209.178 port 57358 ssh2 Aug 2 22:25:08 lnxmysql61 sshd[9057]: Failed password for root from 46.101.209.178 port 57358 ssh2	2020-08-03 04:59:23
111.231.190.106	attackspambots	Aug 2 20:37:24 rush sshd[7039]: Failed password for root from 111.231.190.106 port 55400 ssh2 Aug 2 20:39:50 rush sshd[7149]: Failed password for root from 111.231.190.106 port 36432 ssh2 ...	2020-08-03 04:55:36
222.186.30.59	attack	Aug 3 01:43:27 gw1 sshd[20412]: Failed password for root from 222.186.30.59 port 17478 ssh2 ...	2020-08-03 04:45:48
222.186.175.148	attackspambots	Failed password for invalid user from 222.186.175.148 port 17784 ssh2	2020-08-03 05:02:57
186.203.163.22	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-08-03 04:33:58
180.76.148.1	attackbots	Aug 2 23:21:03 lukav-desktop sshd\[13438\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.148.1 user=root Aug 2 23:21:05 lukav-desktop sshd\[13438\]: Failed password for root from 180.76.148.1 port 43103 ssh2 Aug 2 23:26:04 lukav-desktop sshd\[13475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.148.1 user=root Aug 2 23:26:05 lukav-desktop sshd\[13475\]: Failed password for root from 180.76.148.1 port 50662 ssh2 Aug 2 23:30:10 lukav-desktop sshd\[13506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.148.1 user=root	2020-08-03 04:39:58
185.39.11.32	attackspam	08/02/2020-16:25:41.003764 185.39.11.32 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-08-03 04:31:24

Recently Reported IPs

2606:4700:10::6816:3843	47.95.201.137	47.94.99.221	103.134.0.101
111.172.6.166	5.226.140.85	31.14.254.64	2606:4700:10::6814:9342
58.34.141.126	183.222.183.194	120.231.254.31	66.132.172.181
34.48.206.46	121.237.149.195	2606:4700:10::6816:3255	2001:863:212:bcd6:3001:ac95:4eba:604b
2606:4700:10::6816:416d	2606:4700:10::6816:3194	5.226.140.78	5.226.140.101