City: unknown
Region: unknown
Country: Singapore
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 8.208.0.0 - 8.223.255.255
CIDR: 8.208.0.0/12
NetName: APNIC
NetHandle: NET-8-208-0-0-1
Parent: NET8 (NET-8-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2018-04-24
Updated: 2018-04-24
Ref: https://rdap.arin.net/registry/ip/8.208.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois://whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '8.208.0.0 - 8.223.255.255'
% Abuse contact for '8.208.0.0 - 8.223.255.255' is 'abuse@alibaba-inc.com'
inetnum: 8.208.0.0 - 8.223.255.255
netname: ASEPL-SG
descr: Alibaba Cloud (Singapore) Private Limited
descr: 51 Bras Basah Road #03-06 Lazada One Singapore 189554, Singapore
country: SG
org: ORG-ASEP1-AP
admin-c: ASEP1-AP
tech-c: ASEP1-AP
abuse-c: AA1926-AP
status: ALLOCATED PORTABLE
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-ASEPL-SG
mnt-routes: MAINT-ASEPL-SG
mnt-irt: IRT-ASEPL-SG
last-modified: 2023-11-09T06:37:20Z
source: APNIC
irt: IRT-ASEPL-SG
address: 1 Raffles Place
e-mail: abuse@alibaba-inc.com
abuse-mailbox: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
auth: # Filtered
remarks: abuse@alibaba-inc.com was validated on 2025-04-14
mnt-by: MAINT-ASEPL-SG
last-modified: 2025-09-04T07:13:51Z
source: APNIC
organisation: ORG-ASEP1-AP
org-name: Alibaba Cloud (Singapore) Private Limited
org-type: LIR
country: SG
address: 51 Bras Basah Road # 03-06 Lazada One Singapore 189554
phone: +8657185022088-76449
e-mail: abuse@alibaba-inc.com
mnt-ref: APNIC-HM
mnt-by: APNIC-HM
last-modified: 2024-07-11T12:55:24Z
source: APNIC
role: ABUSE ASEPLSG
country: ZZ
address: 1 Raffles Place # 59-00 One Raffles Place, Tower One Singapore, Singapore
phone: +000000000
e-mail: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
nic-hdl: AA1926-AP
remarks: Generated from irt object IRT-ASEPL-SG
remarks: abuse@alibaba-inc.com was validated on 2025-04-14
abuse-mailbox: abuse@alibaba-inc.com
mnt-by: APNIC-ABUSE
last-modified: 2025-04-14T07:19:41Z
source: APNIC
role: Alibabacom Singapore E-Commerce Private Limited a
address: 1 Raffles Place #59-00 One Raffles Place, Tower One Singapore, Singapore
country: SG
phone: +86-571-85022088
fax-no: +86-571-85022088
e-mail: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
nic-hdl: ASEP1-AP
mnt-by: MAINT-ASEPL-SG
last-modified: 2025-07-01T06:25:24Z
source: APNIC
% Information related to '8.222.132.0/24AS134963'
route: 8.222.132.0/24
origin: AS134963
descr: Alibaba.com Singapore E-Commerce Private Limited
51 Bras Basah Road #04-08 Lazada One Singapore 189554
mnt-by: MAINT-ASEPL-SG
last-modified: 2022-10-19T17:35:19Z
source: APNIC
% Information related to '8.222.132.0/24AS45102'
route: 8.222.132.0/24
origin: AS45102
descr: Alibaba.com Singapore E-Commerce Private Limited
51 Bras Basah Road #04-08 Lazada One Singapore 189554
mnt-by: MAINT-ASEPL-SG
last-modified: 2022-10-19T16:23:37Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.34 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 8.222.132.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43806
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;8.222.132.40. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025101500 1800 900 604800 86400
;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 15 15:05:58 CST 2025
;; MSG SIZE rcvd: 105Host 40.132.222.8.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 40.132.222.8.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 217.165.23.53 | attack | SSH Brute-Forcing (server2) |
2020-08-19 03:32:34 |
| 180.76.54.86 | attackbotsspam | 2020-08-18T21:06:18.187706v22018076590370373 sshd[27668]: Invalid user vvk from 180.76.54.86 port 45856 2020-08-18T21:06:18.192748v22018076590370373 sshd[27668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.54.86 2020-08-18T21:06:18.187706v22018076590370373 sshd[27668]: Invalid user vvk from 180.76.54.86 port 45856 2020-08-18T21:06:20.352314v22018076590370373 sshd[27668]: Failed password for invalid user vvk from 180.76.54.86 port 45856 ssh2 2020-08-18T21:08:48.787244v22018076590370373 sshd[6555]: Invalid user ubuntu from 180.76.54.86 port 49148 ... |
2020-08-19 03:34:58 |
| 122.51.147.181 | attack | 2020-08-18T19:34:44.057437dmca.cloudsearch.cf sshd[9396]: Invalid user zhm from 122.51.147.181 port 57158 2020-08-18T19:34:44.062693dmca.cloudsearch.cf sshd[9396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.147.181 2020-08-18T19:34:44.057437dmca.cloudsearch.cf sshd[9396]: Invalid user zhm from 122.51.147.181 port 57158 2020-08-18T19:34:46.426861dmca.cloudsearch.cf sshd[9396]: Failed password for invalid user zhm from 122.51.147.181 port 57158 ssh2 2020-08-18T19:40:08.609304dmca.cloudsearch.cf sshd[9574]: Invalid user www from 122.51.147.181 port 59388 2020-08-18T19:40:08.614295dmca.cloudsearch.cf sshd[9574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.147.181 2020-08-18T19:40:08.609304dmca.cloudsearch.cf sshd[9574]: Invalid user www from 122.51.147.181 port 59388 2020-08-18T19:40:10.456762dmca.cloudsearch.cf sshd[9574]: Failed password for invalid user www from 122.51.147.181 port 593 ... |
2020-08-19 03:51:28 |
| 51.38.129.120 | attackbots | 2020-08-18T18:56:06.953184abusebot-4.cloudsearch.cf sshd[428]: Invalid user angie from 51.38.129.120 port 47120 2020-08-18T18:56:06.959141abusebot-4.cloudsearch.cf sshd[428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.ip-51-38-129.eu 2020-08-18T18:56:06.953184abusebot-4.cloudsearch.cf sshd[428]: Invalid user angie from 51.38.129.120 port 47120 2020-08-18T18:56:09.480007abusebot-4.cloudsearch.cf sshd[428]: Failed password for invalid user angie from 51.38.129.120 port 47120 ssh2 2020-08-18T19:00:30.948756abusebot-4.cloudsearch.cf sshd[488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.ip-51-38-129.eu user=root 2020-08-18T19:00:32.668710abusebot-4.cloudsearch.cf sshd[488]: Failed password for root from 51.38.129.120 port 55358 ssh2 2020-08-18T19:04:52.042671abusebot-4.cloudsearch.cf sshd[676]: Invalid user api from 51.38.129.120 port 35322 ... |
2020-08-19 03:28:45 |
| 52.14.12.54 | attackspam | Website hacking attempt: Wordpress admin access [wp-login.php] |
2020-08-19 03:35:58 |
| 106.12.252.212 | attackbots | 20/8/18@08:29:34: FAIL: Alarm-Network address from=106.12.252.212 ... |
2020-08-19 03:57:41 |
| 80.245.105.135 | attackspambots | 2020-08-17T12:29:46.379293hostname sshd[74000]: Failed password for invalid user hqj from 80.245.105.135 port 44600 ssh2 ... |
2020-08-19 03:33:27 |
| 46.191.216.92 | attack | Unauthorized connection attempt from IP address 46.191.216.92 on Port 445(SMB) |
2020-08-19 03:25:21 |
| 213.251.184.102 | attack | Aug 18 13:30:16 mail sshd\[56734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.251.184.102 user=root ... |
2020-08-19 03:42:36 |
| 41.226.14.36 | attackbotsspam | Aug 18 21:25:27 cosmoit sshd[1332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.226.14.36 |
2020-08-19 03:53:56 |
| 64.202.187.246 | attackspambots | 2020-08-18T18:29:48.963247vps-d63064a2 sshd[15253]: Invalid user wade from 64.202.187.246 port 36240 2020-08-18T18:29:50.816640vps-d63064a2 sshd[15253]: Failed password for invalid user wade from 64.202.187.246 port 36240 ssh2 2020-08-18T18:33:33.340265vps-d63064a2 sshd[15372]: Invalid user web1 from 64.202.187.246 port 46432 2020-08-18T18:33:33.348361vps-d63064a2 sshd[15372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.202.187.246 2020-08-18T18:33:33.340265vps-d63064a2 sshd[15372]: Invalid user web1 from 64.202.187.246 port 46432 2020-08-18T18:33:35.417480vps-d63064a2 sshd[15372]: Failed password for invalid user web1 from 64.202.187.246 port 46432 ssh2 ... |
2020-08-19 03:24:28 |
| 109.196.82.214 | attackspam | IP: 109.196.82.214
Ports affected
Simple Mail Transfer (25)
Abuse Confidence rating 59%
Found in DNSBL('s)
ASN Details
AS50247 ITCOMP sp. z o.o
Poland (PL)
CIDR 109.196.80.0/20
Log Date: 18/08/2020 11:32:01 AM UTC |
2020-08-19 03:26:18 |
| 195.154.114.117 | attackspam | Aug 18 09:29:44 Tower sshd[5866]: refused connect from 51.38.118.26 (51.38.118.26) Aug 18 11:32:58 Tower sshd[5866]: Connection from 195.154.114.117 port 50988 on 192.168.10.220 port 22 rdomain "" Aug 18 11:33:01 Tower sshd[5866]: Failed password for root from 195.154.114.117 port 50988 ssh2 Aug 18 11:33:01 Tower sshd[5866]: Received disconnect from 195.154.114.117 port 50988:11: Bye Bye [preauth] Aug 18 11:33:01 Tower sshd[5866]: Disconnected from authenticating user root 195.154.114.117 port 50988 [preauth] |
2020-08-19 03:48:37 |
| 23.129.64.209 | attackbots | 2020-08-18T21:10:52+0200 Failed SSH Authentication/Brute Force Attack. (Server 5) |
2020-08-19 03:54:53 |
| 185.129.114.40 | attackbots | Attempts against non-existent wp-login |
2020-08-19 03:40:06 |