城市(city): Hangzhou
省份(region): Zhejiang
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 8.128.0.0 - 8.191.255.255
CIDR: 8.128.0.0/10
NetName: APNIC
NetHandle: NET-8-128-0-0-1
Parent: NET8 (NET-8-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2018-04-24
Updated: 2018-04-24
Ref: https://rdap.arin.net/registry/ip/8.128.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois://whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '8.128.0.0 - 8.159.255.255'
% Abuse contact for '8.128.0.0 - 8.159.255.255' is 'abuse@alibaba-inc.com'
inetnum: 8.128.0.0 - 8.159.255.255
netname: ALICLOUD
descr: Aliyun Computing Co.LTD
country: CN
admin-c: ASEP1-AP
tech-c: ASEP1-AP
abuse-c: AA1926-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-ASEPL-SG
mnt-irt: IRT-ASEPL-SG
last-modified: 2021-04-14T01:11:45Z
source: APNIC
irt: IRT-ASEPL-SG
address: 1 Raffles Place
e-mail: abuse@alibaba-inc.com
abuse-mailbox: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
auth: # Filtered
remarks: abuse@alibaba-inc.com was validated on 2026-06-15
mnt-by: MAINT-ASEPL-SG
last-modified: 2026-06-15T03:57:51Z
source: APNIC
role: ABUSE ASEPLSG
country: ZZ
address: 1 Raffles Place
phone: +000000000
e-mail: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
nic-hdl: AA1926-AP
remarks: Generated from irt object IRT-ASEPL-SG
remarks: abuse@alibaba-inc.com was validated on 2026-06-15
abuse-mailbox: abuse@alibaba-inc.com
mnt-by: APNIC-ABUSE
last-modified: 2026-06-15T03:58:15Z
source: APNIC
role: Alibabacom Singapore E-Commerce Private Limited a
address: 1 Raffles Place #59-00 One Raffles Place, Tower One Singapore, Singapore
country: SG
phone: +86-571-85022088
fax-no: +86-571-85022088
e-mail: abuse@alibaba-inc.com
admin-c: ASEP1-AP
tech-c: ASEP1-AP
nic-hdl: ASEP1-AP
mnt-by: MAINT-ASEPL-SG
last-modified: 2025-07-01T06:25:24Z
source: APNIC
% Information related to '8.136.138.0/24AS37963'
route: 8.136.138.0/24
origin: AS37963
descr: Alibaba.com Singapore E-Commerce Private Limited
8 Shenton Way, #45-01 AXA Tower, Singapore 068811
mnt-by: MAINT-ASEPL-SG
last-modified: 2020-02-25T09:28:48Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 8.136.138.185
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4218
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;8.136.138.185. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026071601 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 17 13:30:31 CST 2026
;; MSG SIZE rcvd: 106
Host 185.138.136.8.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 185.138.136.8.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 106.12.56.17 | attackbotsspam | Oct 17 01:09:53 ny01 sshd[14083]: Failed password for root from 106.12.56.17 port 43774 ssh2 Oct 17 01:14:39 ny01 sshd[14506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.17 Oct 17 01:14:40 ny01 sshd[14506]: Failed password for invalid user user from 106.12.56.17 port 53242 ssh2 |
2019-10-17 13:25:24 |
| 94.191.64.101 | attackspam | Oct 17 06:51:52 www sshd\[54846\]: Invalid user Windows@7 from 94.191.64.101Oct 17 06:51:54 www sshd\[54846\]: Failed password for invalid user Windows@7 from 94.191.64.101 port 56064 ssh2Oct 17 06:56:29 www sshd\[55004\]: Invalid user P@s$word from 94.191.64.101 ... |
2019-10-17 12:55:03 |
| 177.92.144.90 | attack | Repeated brute force against a port |
2019-10-17 13:29:52 |
| 207.248.62.98 | attackspam | Fail2Ban - SSH Bruteforce Attempt |
2019-10-17 12:59:06 |
| 66.185.210.121 | attackbotsspam | failed root login |
2019-10-17 13:10:30 |
| 113.114.87.107 | attackspambots | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/113.114.87.107/ CN - 1H : (553) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 113.114.87.107 CIDR : 113.114.0.0/15 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 WYKRYTE ATAKI Z ASN4134 : 1H - 12 3H - 37 6H - 67 12H - 113 24H - 213 DateTime : 2019-10-17 05:55:33 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-10-17 13:22:33 |
| 177.94.224.237 | attack | $f2bV_matches |
2019-10-17 12:52:42 |
| 185.70.155.186 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/185.70.155.186/ ES - 1H : (50) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : ES NAME ASN : ASN56882 IP : 185.70.155.186 CIDR : 185.70.152.0/22 PREFIX COUNT : 8 UNIQUE IP COUNT : 4096 WYKRYTE ATAKI Z ASN56882 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-17 05:56:26 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-10-17 12:54:31 |
| 45.136.110.11 | attackspam | Excessive Port-Scanning |
2019-10-17 13:20:50 |
| 139.199.183.185 | attackspam | Oct 17 06:51:32 www sshd\[54740\]: Invalid user paintball from 139.199.183.185Oct 17 06:51:34 www sshd\[54740\]: Failed password for invalid user paintball from 139.199.183.185 port 34680 ssh2Oct 17 06:56:04 www sshd\[54990\]: Failed password for root from 139.199.183.185 port 44410 ssh2 ... |
2019-10-17 13:06:37 |
| 176.31.253.204 | attack | Oct 17 06:58:34 server sshd\[27417\]: Invalid user support from 176.31.253.204 Oct 17 06:58:34 server sshd\[27417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns388423.ip-176-31-253.eu Oct 17 06:58:35 server sshd\[27417\]: Failed password for invalid user support from 176.31.253.204 port 38029 ssh2 Oct 17 08:05:44 server sshd\[17756\]: Invalid user ftpuser from 176.31.253.204 Oct 17 08:05:44 server sshd\[17756\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns388423.ip-176-31-253.eu ... |
2019-10-17 13:17:42 |
| 61.159.1.87 | attackspam | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/61.159.1.87/ CN - 1H : (555) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4837 IP : 61.159.1.87 CIDR : 61.159.0.0/18 PREFIX COUNT : 1262 UNIQUE IP COUNT : 56665856 WYKRYTE ATAKI Z ASN4837 : 1H - 7 3H - 27 6H - 60 12H - 100 24H - 190 DateTime : 2019-10-17 05:56:09 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery |
2019-10-17 13:02:16 |
| 61.69.78.78 | attackbots | Oct 17 07:00:40 minden010 sshd[2681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.69.78.78 Oct 17 07:00:42 minden010 sshd[2681]: Failed password for invalid user molotok from 61.69.78.78 port 36496 ssh2 Oct 17 07:05:46 minden010 sshd[8786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.69.78.78 ... |
2019-10-17 13:23:04 |
| 190.145.55.89 | attackbotsspam | 2019-10-17T04:58:21.928619abusebot-7.cloudsearch.cf sshd\[6638\]: Invalid user demos from 190.145.55.89 port 46157 |
2019-10-17 13:13:02 |
| 198.143.133.154 | attackbotsspam | Unauthorized SSH login attempts |
2019-10-17 13:18:05 |