城市(city): Hangzhou
省份(region): Zhejiang
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '112.124.0.0 - 112.127.255.255'
% Abuse contact for '112.124.0.0 - 112.127.255.255' is 'didong.jc@alibaba-inc.com'
inetnum: 112.124.0.0 - 112.127.255.255
netname: ALISOFT
descr: Aliyun Computing Co., LTD
descr: 5F, Builing D, the West Lake International Plaza of S&T
descr: No.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099
country: CN
admin-c: ZM1015-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
tech-c: ZM875-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-ALISOFT-CN
last-modified: 2023-11-28T00:56:52Z
source: APNIC
irt: IRT-ALISOFT-CN
address: No.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099
e-mail: didong.jc@alibaba-inc.com
abuse-mailbox: didong.jc@alibaba-inc.com
admin-c: ZM877-AP
tech-c: ZM877-AP
auth: # Filtered
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-18T00:35:07Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: Li Jia
address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
country: CN
phone: +86-0571-85022088
e-mail: jiali.jl@alibaba-inc.com
nic-hdl: ZM1015-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:12:42Z
source: APNIC
person: Guoxin Gao
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: anti-spam@list.alibaba-inc.com
nic-hdl: ZM875-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2014-07-30T01:56:01Z
source: APNIC
person: security trouble
e-mail: abuse@alibaba-inc.com
address: 5th,floor,Building D,the West Lake International Plaza of S&T,391#Wen??r Road
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
last-modified: 2025-07-01T07:06:11Z
source: APNIC
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: abuse@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:05:46Z
source: APNIC
% Information related to '112.124.0.0/14AS37963'
route: 112.124.0.0/14
descr: Hangzhou Alibaba Advertising Co.,Ltd.
country: CN
origin: AS37963
mnt-by: MAINT-CNNIC-AP
last-modified: 2019-08-07T23:28:03Z
source: APNIC
% Information related to '112.124.0.0/14AS45102'
route: 112.124.0.0/14
descr: Alibaba (US) Technology Co., Ltd.
country: CN
origin: AS45102
mnt-by: MAINT-CNNIC-AP
last-modified: 2019-08-07T23:28:02Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.124.56.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21958
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;112.124.56.100. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026062101 1800 900 604800 86400
;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 22 17:00:03 CST 2026
;; MSG SIZE rcvd: 107Host 100.56.124.112.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 100.56.124.112.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 147.135.208.234 | attackbots | Dec 14 12:55:39 vibhu-HP-Z238-Microtower-Workstation sshd\[5224\]: Invalid user ssh from 147.135.208.234 Dec 14 12:55:39 vibhu-HP-Z238-Microtower-Workstation sshd\[5224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.208.234 Dec 14 12:55:41 vibhu-HP-Z238-Microtower-Workstation sshd\[5224\]: Failed password for invalid user ssh from 147.135.208.234 port 59292 ssh2 Dec 14 13:04:59 vibhu-HP-Z238-Microtower-Workstation sshd\[5777\]: Invalid user http from 147.135.208.234 Dec 14 13:04:59 vibhu-HP-Z238-Microtower-Workstation sshd\[5777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.208.234 ... |
2019-12-14 15:58:51 |
| 37.187.122.195 | attackspam | Dec 14 08:54:45 lnxmail61 sshd[18299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.122.195 |
2019-12-14 15:58:34 |
| 106.51.137.113 | attackbots | Dec 13 01:37:43 h2065291 sshd[10002]: reveeclipse mapping checking getaddrinfo for broadband.actcorp.in [106.51.137.113] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 13 01:37:43 h2065291 sshd[10002]: Invalid user heyne from 106.51.137.113 Dec 13 01:37:43 h2065291 sshd[10002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.137.113 Dec 13 01:37:45 h2065291 sshd[10002]: Failed password for invalid user heyne from 106.51.137.113 port 40276 ssh2 Dec 13 01:37:45 h2065291 sshd[10002]: Received disconnect from 106.51.137.113: 11: Bye Bye [preauth] Dec 13 01:45:16 h2065291 sshd[10170]: reveeclipse mapping checking getaddrinfo for broadband.actcorp.in [106.51.137.113] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 13 01:45:16 h2065291 sshd[10170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.137.113 user=r.r Dec 13 01:45:18 h2065291 sshd[10170]: Failed password for r.r from 106.51.137.113 port........ ------------------------------- |
2019-12-14 15:56:03 |
| 14.225.11.25 | attackbots | Dec 13 21:54:04 php1 sshd\[358\]: Invalid user qwerty from 14.225.11.25 Dec 13 21:54:04 php1 sshd\[358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.225.11.25 Dec 13 21:54:06 php1 sshd\[358\]: Failed password for invalid user qwerty from 14.225.11.25 port 49394 ssh2 Dec 13 22:00:51 php1 sshd\[1022\]: Invalid user ku2sf from 14.225.11.25 Dec 13 22:00:51 php1 sshd\[1022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.225.11.25 |
2019-12-14 16:17:57 |
| 218.92.0.170 | attackbots | Dec 14 09:15:18 nextcloud sshd\[27121\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.170 user=root Dec 14 09:15:20 nextcloud sshd\[27121\]: Failed password for root from 218.92.0.170 port 5339 ssh2 Dec 14 09:15:40 nextcloud sshd\[27628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.170 user=root ... |
2019-12-14 16:25:35 |
| 183.136.123.57 | attackbots | SASL broute force |
2019-12-14 16:22:56 |
| 80.82.77.33 | attackspam | 80.82.77.33 was recorded 13 times by 12 hosts attempting to connect to the following ports: 1723,4730,44818,50050,9009,37777,32764,5985,554,12000,4064,4443,9090. Incident counter (4h, 24h, all-time): 13, 112, 3271 |
2019-12-14 16:28:07 |
| 195.154.223.226 | attackspambots | Dec 14 09:00:37 vps691689 sshd[20339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.223.226 Dec 14 09:00:39 vps691689 sshd[20339]: Failed password for invalid user teamspeak3 from 195.154.223.226 port 39660 ssh2 ... |
2019-12-14 16:18:31 |
| 204.48.19.178 | attackbotsspam | --- report --- Dec 14 04:59:16 sshd: Connection from 204.48.19.178 port 39542 Dec 14 04:59:16 sshd: Invalid user postgres from 204.48.19.178 Dec 14 04:59:16 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.19.178 Dec 14 04:59:18 sshd: Failed password for invalid user postgres from 204.48.19.178 port 39542 ssh2 Dec 14 04:59:18 sshd: Received disconnect from 204.48.19.178: 11: Bye Bye [preauth] |
2019-12-14 16:14:11 |
| 210.71.232.236 | attackbotsspam | Dec 14 13:13:33 gw1 sshd[17168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.71.232.236 Dec 14 13:13:35 gw1 sshd[17168]: Failed password for invalid user fiset from 210.71.232.236 port 53860 ssh2 ... |
2019-12-14 16:20:34 |
| 94.191.108.176 | attack | Dec 14 08:57:01 nextcloud sshd\[2176\]: Invalid user subramaniam from 94.191.108.176 Dec 14 08:57:01 nextcloud sshd\[2176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.108.176 Dec 14 08:57:04 nextcloud sshd\[2176\]: Failed password for invalid user subramaniam from 94.191.108.176 port 40064 ssh2 ... |
2019-12-14 15:59:45 |
| 220.133.95.68 | attackbots | 2019-12-14T08:07:57.781324shield sshd\[9692\]: Invalid user sierra from 220.133.95.68 port 45782 2019-12-14T08:07:57.785599shield sshd\[9692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-133-95-68.hinet-ip.hinet.net 2019-12-14T08:07:59.447773shield sshd\[9692\]: Failed password for invalid user sierra from 220.133.95.68 port 45782 ssh2 2019-12-14T08:15:43.927742shield sshd\[11984\]: Invalid user pantages from 220.133.95.68 port 52674 2019-12-14T08:15:43.932051shield sshd\[11984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-133-95-68.hinet-ip.hinet.net |
2019-12-14 16:16:44 |
| 113.23.24.12 | attackbots | 1576304916 - 12/14/2019 07:28:36 Host: 113.23.24.12/113.23.24.12 Port: 445 TCP Blocked |
2019-12-14 15:56:27 |
| 103.17.244.48 | attack | Unauthorized connection attempt detected from IP address 103.17.244.48 to port 445 |
2019-12-14 16:27:40 |
| 139.199.219.235 | attack | Dec 14 13:21:04 areeb-Workstation sshd[10906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Dec 14 13:21:06 areeb-Workstation sshd[10906]: Failed password for invalid user sressler from 139.199.219.235 port 33796 ssh2 ... |
2019-12-14 15:54:44 |