City: Shanghai
Region: Shanghai
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 47.113.0.0 - 47.127.255.255
CIDR: 47.120.0.0/13, 47.116.0.0/14, 47.114.0.0/15, 47.113.0.0/16
NetName: APNIC
NetHandle: NET-47-113-0-0-1
Parent: NET47 (NET-47-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2015-05-07
Updated: 2015-05-07
Ref: https://rdap.arin.net/registry/ip/47.113.0.0
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '47.116.0.0 - 47.119.255.255'
% Abuse contact for '47.116.0.0 - 47.119.255.255' is 'ipas@cnnic.cn'
inetnum: 47.116.0.0 - 47.119.255.255
netname: ALISOFT
descr: Aliyun Computing Co., LTD
descr: 5F, Builing D, the West Lake International Plaza of S&T
descr: No.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099
country: CN
admin-c: ZM1015-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
tech-c: ZM875-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
last-modified: 2022-09-04T21:47:51Z
source: APNIC
irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
remarks: ipas@cnnic.cn is invalid
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-17T23:08:37Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: Li Jia
address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
country: CN
phone: +86-0571-85022088
e-mail: jiali.jl@alibaba-inc.com
nic-hdl: ZM1015-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:12:42Z
source: APNIC
person: Guoxin Gao
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: anti-spam@list.alibaba-inc.com
nic-hdl: ZM875-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2014-07-30T01:56:01Z
source: APNIC
person: security trouble
e-mail: abuse@alibaba-inc.com
address: 5th,floor,Building D,the West Lake International Plaza of S&T,391#Wen??r Road
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
last-modified: 2025-07-01T07:06:11Z
source: APNIC
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: abuse@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:05:46Z
source: APNIC
% Information related to '47.116.214.0/24AS37963'
route: 47.116.214.0/24
descr: Alibaba (US) Technology Co., Ltd.
origin: AS37963
mnt-by: MAINT-CNNIC-AP
last-modified: 2020-06-28T00:46:40Z
source: APNIC
% Information related to '47.116.214.0/24AS45102'
route: 47.116.214.0/24
descr: Alibaba (US) Technology Co., Ltd.
origin: AS45102
mnt-by: MAINT-CNNIC-AP
last-modified: 2020-06-28T00:46:58Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 47.116.214.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55619
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;47.116.214.44. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026032002 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 21 12:37:20 CST 2026
;; MSG SIZE rcvd: 106Host 44.214.116.47.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 44.214.116.47.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 101.89.216.223 | attackspambots | v+mailserver-auth-bruteforce |
2019-09-22 13:14:20 |
| 49.148.181.54 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 04:55:25. |
2019-09-22 13:50:44 |
| 3.123.249.166 | attackspambots | xmlrpc attack |
2019-09-22 13:43:15 |
| 69.162.110.226 | attackbots | Trying ports that it shouldn't be. |
2019-09-22 13:47:37 |
| 5.101.140.227 | attackbotsspam | Sep 20 06:13:11 penfold sshd[3545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.101.140.227 user=r.r Sep 20 06:13:14 penfold sshd[3545]: Failed password for r.r from 5.101.140.227 port 47194 ssh2 Sep 20 06:13:14 penfold sshd[3545]: Received disconnect from 5.101.140.227 port 47194:11: Bye Bye [preauth] Sep 20 06:13:14 penfold sshd[3545]: Disconnected from 5.101.140.227 port 47194 [preauth] Sep 20 06:32:38 penfold sshd[4311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.101.140.227 user=r.r Sep 20 06:32:39 penfold sshd[4311]: Failed password for r.r from 5.101.140.227 port 40726 ssh2 Sep 20 06:32:39 penfold sshd[4311]: Received disconnect from 5.101.140.227 port 40726:11: Bye Bye [preauth] Sep 20 06:32:39 penfold sshd[4311]: Disconnected from 5.101.140.227 port 40726 [preauth] Sep 20 06:33:06 penfold sshd[4328]: Invalid user deb from 5.101.140.227 port 38040 Sep 20 06:33:06 penfo........ ------------------------------- |
2019-09-22 13:17:36 |
| 200.84.198.246 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 04:55:22. |
2019-09-22 13:53:43 |
| 45.141.84.20 | attackbots | RDP brute forcing (r) |
2019-09-22 13:27:51 |
| 222.186.31.145 | attackspam | 2019-09-22T05:17:41.984550abusebot-2.cloudsearch.cf sshd\[30191\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.145 user=root |
2019-09-22 13:18:20 |
| 177.157.191.25 | attackspambots | Automatic report - Port Scan Attack |
2019-09-22 13:45:18 |
| 123.18.94.7 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 04:55:19. |
2019-09-22 13:58:26 |
| 80.211.9.57 | attack | Sep 21 19:41:14 web9 sshd\[8423\]: Invalid user admin from 80.211.9.57 Sep 21 19:41:14 web9 sshd\[8423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.9.57 Sep 21 19:41:17 web9 sshd\[8423\]: Failed password for invalid user admin from 80.211.9.57 port 57504 ssh2 Sep 21 19:45:16 web9 sshd\[9287\]: Invalid user cole from 80.211.9.57 Sep 21 19:45:16 web9 sshd\[9287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.9.57 |
2019-09-22 13:55:58 |
| 200.248.160.146 | attackbotsspam | Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 04:55:22. |
2019-09-22 13:54:54 |
| 69.162.98.68 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 04:55:25. |
2019-09-22 13:49:55 |
| 163.172.251.80 | attackbotsspam | Sep 22 05:13:19 web8 sshd\[25282\]: Invalid user p@ssw0rd from 163.172.251.80 Sep 22 05:13:19 web8 sshd\[25282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.251.80 Sep 22 05:13:21 web8 sshd\[25282\]: Failed password for invalid user p@ssw0rd from 163.172.251.80 port 50822 ssh2 Sep 22 05:17:29 web8 sshd\[27365\]: Invalid user huawei123 from 163.172.251.80 Sep 22 05:17:29 web8 sshd\[27365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.251.80 |
2019-09-22 13:24:38 |
| 186.74.18.178 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 04:55:21. |
2019-09-22 13:56:33 |