City: Shanghai
Region: Shanghai
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 8.128.0.0 - 8.191.255.255
CIDR: 8.128.0.0/10
NetName: APNIC
NetHandle: NET-8-128-0-0-1
Parent: NET8 (NET-8-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2018-04-24
Updated: 2018-04-24
Ref: https://rdap.arin.net/registry/ip/8.128.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois://whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '8.128.0.0 - 8.159.255.255'
% Abuse contact for '8.128.0.0 - 8.159.255.255' is 'abuse@alibaba-inc.com'
inetnum: 8.128.0.0 - 8.159.255.255
netname: ALICLOUD
descr: Aliyun Computing Co.LTD
country: CN
admin-c: ASEP1-AP
tech-c: ASEP1-AP
abuse-c: AA1926-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-ASEPL-SG
mnt-irt: IRT-ASEPL-SG
last-modified: 2021-04-14T01:11:45Z
source: APNIC
irt: IRT-ASEPL-SG
address: 1 Raffles Place
e-mail: abuse@alibaba-inc.com
abuse-mailbox: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
auth: # Filtered
remarks: abuse@alibaba-inc.com was validated on 2026-06-15
mnt-by: MAINT-ASEPL-SG
last-modified: 2026-06-15T03:57:51Z
source: APNIC
role: ABUSE ASEPLSG
country: ZZ
address: 1 Raffles Place
phone: +000000000
e-mail: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
nic-hdl: AA1926-AP
remarks: Generated from irt object IRT-ASEPL-SG
remarks: abuse@alibaba-inc.com was validated on 2026-06-15
abuse-mailbox: abuse@alibaba-inc.com
mnt-by: APNIC-ABUSE
last-modified: 2026-06-15T03:58:15Z
source: APNIC
role: Alibabacom Singapore E-Commerce Private Limited a
address: 1 Raffles Place #59-00 One Raffles Place, Tower One Singapore, Singapore
country: SG
phone: +86-571-85022088
fax-no: +86-571-85022088
e-mail: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
nic-hdl: ASEP1-AP
mnt-by: MAINT-ASEPL-SG
last-modified: 2025-07-01T06:25:24Z
source: APNIC
% Information related to '8.153.70.0/24AS37963'
route: 8.153.70.0/24
origin: AS37963
descr: Alibaba.com Singapore E-Commerce Private Limited
8 Shenton Way, #45-01 AXA Tower, Singapore 068811
mnt-by: MAINT-ASEPL-SG
last-modified: 2020-02-25T10:23:26Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 8.153.70.222
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58168
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;8.153.70.222. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026070502 1800 900 604800 86400
;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 06 05:00:14 CST 2026
;; MSG SIZE rcvd: 105
Host 222.70.153.8.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 222.70.153.8.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 85.105.85.78 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-07-19 04:18:50 |
| 59.124.174.66 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 02:06:37,417 INFO [shellcode_manager] (59.124.174.66) no match, writing hexdump (435ebcd2d333dbb2464e17cb06a02c2a :2120346) - MS17010 (EternalBlue) |
2019-07-19 03:46:37 |
| 185.153.196.191 | attack | Port scan on 8 port(s): 1039 1043 1055 1072 7007 8080 8085 25000 |
2019-07-19 03:54:45 |
| 129.204.147.102 | attack | Invalid user alexis from 129.204.147.102 port 55086 |
2019-07-19 03:47:56 |
| 177.68.148.10 | attackspam | Jul 18 16:22:03 debian sshd\[30124\]: Invalid user louise from 177.68.148.10 port 54198 Jul 18 16:22:03 debian sshd\[30124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.68.148.10 Jul 18 16:22:05 debian sshd\[30124\]: Failed password for invalid user louise from 177.68.148.10 port 54198 ssh2 ... |
2019-07-19 04:22:45 |
| 49.88.112.54 | attack | 2019-07-18T19:46:28.938853abusebot-5.cloudsearch.cf sshd\[8800\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.54 user=root |
2019-07-19 04:08:30 |
| 89.216.47.154 | attackspam | Jul 18 15:41:44 cp sshd[21532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.216.47.154 |
2019-07-19 04:04:34 |
| 89.36.215.248 | attackspam | Jul 18 23:07:52 server01 sshd\[3663\]: Invalid user ahmadi from 89.36.215.248 Jul 18 23:07:52 server01 sshd\[3663\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.215.248 Jul 18 23:07:54 server01 sshd\[3663\]: Failed password for invalid user ahmadi from 89.36.215.248 port 43424 ssh2 ... |
2019-07-19 04:19:30 |
| 85.248.128.26 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-07-19 04:02:43 |
| 139.255.87.234 | attackbotsspam | http |
2019-07-19 03:55:00 |
| 81.22.45.26 | attack | 18.07.2019 19:49:59 Connection to port 55589 blocked by firewall |
2019-07-19 03:55:50 |
| 198.199.113.209 | attackspam | Jul 18 12:43:58 server3 sshd[138986]: Invalid user fsc from 198.199.113.209 Jul 18 12:43:58 server3 sshd[138986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.113.209 Jul 18 12:44:00 server3 sshd[138986]: Failed password for invalid user fsc from 198.199.113.209 port 52388 ssh2 Jul 18 12:44:01 server3 sshd[138986]: Received disconnect from 198.199.113.209: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=198.199.113.209 |
2019-07-19 04:14:56 |
| 201.49.228.241 | attackbots | Jul 18 16:54:49 [munged] sshd[24233]: Invalid user admin from 201.49.228.241 port 34810 Jul 18 16:54:49 [munged] sshd[24233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.49.228.241 |
2019-07-19 03:53:13 |
| 87.255.217.154 | attackspambots | SMB Server BruteForce Attack |
2019-07-19 03:51:48 |
| 110.44.126.221 | attackspam | Jul 18 18:37:31 herz-der-gamer sshd[2397]: Failed password for invalid user sk from 110.44.126.221 port 42430 ssh2 ... |
2019-07-19 04:20:24 |