City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '59.82.0.0 - 59.82.255.255'
% Abuse contact for '59.82.0.0 - 59.82.255.255' is 'didong.jc@alibaba-inc.com'
inetnum: 59.82.0.0 - 59.82.255.255
netname: ALIBABA-CN-NET
descr: Hangzhou Alibaba Advertising Co.,Ltd.
descr: No.699, Wangshang RD., Hangzhou, China
country: CN
admin-c: ZM678-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-ALIBABA-CN-NET-CN
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
last-modified: 2023-11-28T00:58:21Z
source: APNIC
irt: IRT-ALIBABA-CN-NET-CN
address: No.699, Wangshang RD., Hangzhou, China
e-mail: didong.jc@alibaba-inc.com
abuse-mailbox: didong.jc@alibaba-inc.com
auth: # Filtered
admin-c: ZM678-AP
tech-c: ZM678-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2021-09-05T23:38:38Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: Shuo Yu
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
e-mail: anti-spam@list.alibaba-inc.com
nic-hdl: ZM678-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2021-04-13T23:21:57Z
source: APNIC
person: security trouble
e-mail: abuse@alibaba-inc.com
address: 5th,floor,Building D,the West Lake International Plaza of S&T,391#Wen??r Road
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
last-modified: 2025-07-01T07:06:11Z
source: APNIC
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: abuse@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:05:46Z
source: APNIC
% Information related to '59.82.135.0/24AS37963'
route: 59.82.135.0/24
origin: AS37963
descr: China Internet Network Information Center
Floor1, Building No.1 C/-Chinese Academy of Sciences
4, South 4th Street
Haidian District,
mnt-by: MAINT-CNNIC-AP
last-modified: 2020-02-18T01:18:02Z
source: APNIC
% Information related to '59.82.135.0/24AS45102'
route: 59.82.135.0/24
origin: AS45102
descr: China Internet Network Information Center
Floor1, Building No.1 C/-Chinese Academy of Sciences
4, South 4th Street
Haidian District,
mnt-by: MAINT-CNNIC-AP
last-modified: 2020-02-18T01:19:53Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.34 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.82.135.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20750
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;59.82.135.105. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025102400 1800 900 604800 86400
;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 24 21:01:43 CST 2025
;; MSG SIZE rcvd: 106Host 105.135.82.59.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 105.135.82.59.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 50.87.248.100 | attack | rumsingen.mit-polly.de 50.87.248.100 \[07/Oct/2019:05:50:12 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 3563 "-" "Mozilla/5.0 \(Windows\; U\; Windows NT 5.1\; en-US\; rv:1.9.0.1\) Gecko/2008070208 Firefox/3.0.1" rumsingen.mit-polly.de 50.87.248.100 \[07/Oct/2019:05:50:16 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 3563 "-" "Mozilla/5.0 \(Windows\; U\; Windows NT 5.1\; en-US\; rv:1.9.0.1\) Gecko/2008070208 Firefox/3.0.1" |
2019-10-07 15:05:22 |
| 95.246.220.194 | attackspam | Automatic report - Port Scan Attack |
2019-10-07 15:11:16 |
| 222.186.175.217 | attackspam | Oct 7 09:09:04 dcd-gentoo sshd[27337]: User root from 222.186.175.217 not allowed because none of user's groups are listed in AllowGroups Oct 7 09:09:10 dcd-gentoo sshd[27337]: error: PAM: Authentication failure for illegal user root from 222.186.175.217 Oct 7 09:09:04 dcd-gentoo sshd[27337]: User root from 222.186.175.217 not allowed because none of user's groups are listed in AllowGroups Oct 7 09:09:10 dcd-gentoo sshd[27337]: error: PAM: Authentication failure for illegal user root from 222.186.175.217 Oct 7 09:09:04 dcd-gentoo sshd[27337]: User root from 222.186.175.217 not allowed because none of user's groups are listed in AllowGroups Oct 7 09:09:10 dcd-gentoo sshd[27337]: error: PAM: Authentication failure for illegal user root from 222.186.175.217 Oct 7 09:09:10 dcd-gentoo sshd[27337]: Failed keyboard-interactive/pam for invalid user root from 222.186.175.217 port 61836 ssh2 ... |
2019-10-07 15:10:21 |
| 222.186.190.92 | attack | Oct 7 08:44:42 dcd-gentoo sshd[26501]: User root from 222.186.190.92 not allowed because none of user's groups are listed in AllowGroups Oct 7 08:44:46 dcd-gentoo sshd[26501]: error: PAM: Authentication failure for illegal user root from 222.186.190.92 Oct 7 08:44:42 dcd-gentoo sshd[26501]: User root from 222.186.190.92 not allowed because none of user's groups are listed in AllowGroups Oct 7 08:44:46 dcd-gentoo sshd[26501]: error: PAM: Authentication failure for illegal user root from 222.186.190.92 Oct 7 08:44:42 dcd-gentoo sshd[26501]: User root from 222.186.190.92 not allowed because none of user's groups are listed in AllowGroups Oct 7 08:44:46 dcd-gentoo sshd[26501]: error: PAM: Authentication failure for illegal user root from 222.186.190.92 Oct 7 08:44:46 dcd-gentoo sshd[26501]: Failed keyboard-interactive/pam for invalid user root from 222.186.190.92 port 41234 ssh2 ... |
2019-10-07 14:46:16 |
| 14.162.31.76 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 07-10-2019 04:50:20. |
2019-10-07 15:02:51 |
| 128.71.137.99 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 07-10-2019 04:50:19. |
2019-10-07 15:02:13 |
| 59.92.178.192 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 07-10-2019 04:50:25. |
2019-10-07 14:53:05 |
| 112.85.42.237 | attack | Oct 7 03:01:25 TORMINT sshd\[30379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.237 user=root Oct 7 03:01:27 TORMINT sshd\[30379\]: Failed password for root from 112.85.42.237 port 46641 ssh2 Oct 7 03:02:43 TORMINT sshd\[30437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.237 user=root ... |
2019-10-07 15:12:22 |
| 218.92.0.156 | attackbotsspam | until 2019-10-07T04:08:36+01:00, observations: 2, bad account names: 0 |
2019-10-07 14:47:22 |
| 149.34.28.19 | attackspambots | firewall-block, port(s): 5555/tcp |
2019-10-07 15:00:49 |
| 179.191.49.4 | attackbotsspam | Automatic report - Port Scan Attack |
2019-10-07 15:10:47 |
| 197.41.151.171 | attack | port scan and connect, tcp 23 (telnet) |
2019-10-07 15:22:21 |
| 220.120.106.254 | attackbots | Oct 7 07:07:43 www sshd\[29922\]: Invalid user !qaZ@wsX\#edC from 220.120.106.254 Oct 7 07:07:43 www sshd\[29922\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.120.106.254 Oct 7 07:07:44 www sshd\[29922\]: Failed password for invalid user !qaZ@wsX\#edC from 220.120.106.254 port 45332 ssh2 ... |
2019-10-07 14:43:21 |
| 14.193.57.82 | attack | firewall-block, port(s): 23/tcp |
2019-10-07 15:17:11 |
| 125.59.204.26 | attackspam | firewall-block, port(s): 8000/tcp |
2019-10-07 15:08:21 |