City: Beijing
Region: Beijing
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '39.96.0.0 - 39.108.255.255'
% Abuse contact for '39.96.0.0 - 39.108.255.255' is 'ipas@cnnic.cn'
inetnum: 39.96.0.0 - 39.108.255.255
netname: ALISOFT
descr: Aliyun Computing Co., LTD
descr: 5F, Builing D, the West Lake International Plaza of S&T
descr: No.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099
country: CN
admin-c: ZM1015-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
tech-c: ZM875-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
last-modified: 2021-06-16T01:29:48Z
source: APNIC
irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
remarks: ipas@cnnic.cn is invalid
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-17T23:08:37Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: Li Jia
address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
country: CN
phone: +86-0571-85022088
e-mail: jiali.jl@alibaba-inc.com
nic-hdl: ZM1015-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:12:42Z
source: APNIC
person: Guoxin Gao
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: anti-spam@list.alibaba-inc.com
nic-hdl: ZM875-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2014-07-30T01:56:01Z
source: APNIC
person: security trouble
e-mail: abuse@alibaba-inc.com
address: 5th,floor,Building D,the West Lake International Plaza of S&T,391#Wen??r Road
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
last-modified: 2025-07-01T07:06:11Z
source: APNIC
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: abuse@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:05:46Z
source: APNIC
% Information related to '39.96.0.0/13AS37963'
route: 39.96.0.0/13
descr: Hangzhou Alibaba Advertising Co.,Ltd.
country: CN
origin: AS37963
mnt-by: MAINT-CNNIC-AP
last-modified: 2019-08-07T23:28:06Z
source: APNIC
% Information related to '39.96.0.0/13AS45102'
route: 39.96.0.0/13
descr: Alibaba (US) Technology Co., Ltd.
country: CN
origin: AS45102
mnt-by: MAINT-CNNIC-AP
last-modified: 2019-08-07T23:28:05Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.98.39.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16376
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;39.98.39.100. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026042501 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 26 02:30:10 CST 2026
;; MSG SIZE rcvd: 105Host 100.39.98.39.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 100.39.98.39.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 202.72.225.17 | attack | 2020-10-01T06:21:13.090293dmca.cloudsearch.cf sshd[15251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.72.225.17 user=root 2020-10-01T06:21:15.430274dmca.cloudsearch.cf sshd[15251]: Failed password for root from 202.72.225.17 port 49025 ssh2 2020-10-01T06:25:47.528573dmca.cloudsearch.cf sshd[15483]: Invalid user lidia from 202.72.225.17 port 45473 2020-10-01T06:25:47.532788dmca.cloudsearch.cf sshd[15483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.72.225.17 2020-10-01T06:25:47.528573dmca.cloudsearch.cf sshd[15483]: Invalid user lidia from 202.72.225.17 port 45473 2020-10-01T06:25:50.154315dmca.cloudsearch.cf sshd[15483]: Failed password for invalid user lidia from 202.72.225.17 port 45473 ssh2 2020-10-01T06:29:52.268500dmca.cloudsearch.cf sshd[15563]: Invalid user x86_64 from 202.72.225.17 port 42369 ... |
2020-10-01 16:22:42 |
| 185.211.253.110 | attackbotsspam | Port probing on unauthorized port 23 |
2020-10-01 16:17:30 |
| 222.186.42.213 | attackspambots | Oct 1 10:07:52 vpn01 sshd[31695]: Failed password for root from 222.186.42.213 port 13719 ssh2 ... |
2020-10-01 16:11:35 |
| 118.89.171.146 | attack | Oct 1 04:57:29 ns37 sshd[2964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.171.146 |
2020-10-01 15:53:34 |
| 45.184.225.2 | attackspambots | Invalid user user13 from 45.184.225.2 port 33764 |
2020-10-01 15:45:06 |
| 204.48.26.164 | attackbotsspam | $f2bV_matches |
2020-10-01 15:45:30 |
| 106.55.150.24 | attackspam | Oct 1 09:33:19 dev0-dcde-rnet sshd[14349]: Failed password for root from 106.55.150.24 port 43306 ssh2 Oct 1 09:43:20 dev0-dcde-rnet sshd[14456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.150.24 Oct 1 09:43:22 dev0-dcde-rnet sshd[14456]: Failed password for invalid user user from 106.55.150.24 port 58156 ssh2 |
2020-10-01 16:20:24 |
| 115.236.19.35 | attack | Invalid user user001 from 115.236.19.35 port 3674 |
2020-10-01 16:12:06 |
| 139.59.75.111 | attackspambots | Oct 1 07:14:12 gitlab sshd[2340282]: Failed password for root from 139.59.75.111 port 52774 ssh2 Oct 1 07:18:07 gitlab sshd[2340871]: Invalid user carlos from 139.59.75.111 port 60008 Oct 1 07:18:07 gitlab sshd[2340871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.75.111 Oct 1 07:18:07 gitlab sshd[2340871]: Invalid user carlos from 139.59.75.111 port 60008 Oct 1 07:18:09 gitlab sshd[2340871]: Failed password for invalid user carlos from 139.59.75.111 port 60008 ssh2 ... |
2020-10-01 16:12:33 |
| 132.232.47.59 | attackspam | SSH BruteForce Attack |
2020-10-01 15:43:06 |
| 164.132.103.232 | attackspambots | Invalid user testuser from 164.132.103.232 port 33000 |
2020-10-01 15:51:18 |
| 51.178.53.233 | attack | Oct 1 09:27:22 buvik sshd[23358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.53.233 Oct 1 09:27:23 buvik sshd[23358]: Failed password for invalid user admin from 51.178.53.233 port 34140 ssh2 Oct 1 09:30:54 buvik sshd[23819]: Invalid user myftp from 51.178.53.233 ... |
2020-10-01 15:52:01 |
| 185.56.153.236 | attackspam | s2.hscode.pl - SSH Attack |
2020-10-01 15:44:53 |
| 118.89.245.202 | attack | Oct 1 09:55:55 serwer sshd\[26243\]: Invalid user testuser from 118.89.245.202 port 33954 Oct 1 09:55:55 serwer sshd\[26243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.245.202 Oct 1 09:55:56 serwer sshd\[26243\]: Failed password for invalid user testuser from 118.89.245.202 port 33954 ssh2 ... |
2020-10-01 15:59:43 |
| 138.197.179.94 | attackspambots | 2020/09/27 14:34:16 [error] 13560#13560: *51400 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 138.197.179.94, server: , request: "GET /wp-login.php HTTP/1.1", upstream: "fastcgi://unix:/run/php-fpm/php-fdf1d4a0-1ee6-4ddf-8a4a-bf7184d3fc60.sock:", host: "mail.rakkor.uk" |
2020-10-01 16:02:35 |