103.218.2.144 Threat Intelligence and Host Information

May 04, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 103.218.2.144 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 40/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: Hong Kong
  • Network:
  • Noticed: 29 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: a578yu2.dggcdn.net

Malware Detected on Host

Count: 431 044a727510f6672e400b015dedc88cda8ccdfd6c965a18c95c231a12bf6cc162 8e9f7b0614352804ac3f16f9f90f22f5069138cf2990a3e8785c63b022598d76 53ff852b0bdb972cf3361f82d34e7125c70391d736078804903dcd7723330a3a 2d7e7c77956504520945e0f48d2093313bef804ec21f487918515eb940bad968 86bf35de565fc5b311ef5706389e9d22ccf5164c942aeeb9db317cb09ee09e28 c3d82075049c4c1d263f8f307dcb3549a2ea09a80b9f226604e0ce64e769461b 3f91591ca5df2d447eeb90aa3a5b0f4540bbcd745a8bf37af2b8044ae178b226 e846a30d833dfb6b3ab749bbaca56d1eb86e225c0c90fe03234905cd5a6e24ad ca945e895af39f6abc30728d24bd8b7b1bcd9043978c74e8866b82078db85d3d 7fbc8d6313d816ed2bf4ac199e5d0b335462a94c0dbaf9edae232c22f0223879

Map

Whois Information

  • inetnum: 103.218.0.0 - 103.218.3.255
  • netname: HKKFGL-HK
  • descr: HK Kwaifong Group Limited
  • country: HK
  • org: ORG-HKIS1-AP
  • admin-c: HKGL1-AP
  • tech-c: HKGL1-AP
  • abuse-c: AH819-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-HKKF-HK
  • mnt-routes: MAINT-HKKF-HK
  • mnt-irt: IRT-HKKF-HK
  • last-modified: 2021-11-03T06:36:16Z
  • irt: IRT-HKKF-HK
  • address: Kwai Chung, NT., Hong Kong
  • e-mail: noc@kfglobal.hk
  • abuse-mailbox: kwaifong33@gmail.com
  • admin-c: HKGL1-AP
  • tech-c: HKGL1-AP
  • mnt-by: MAINT-HKKF-HK
  • last-modified: 2025-04-30T01:35:39Z
  • organisation: ORG-HKIS1-AP
  • org-name: HK Kwaifong Group Limited
  • org-type: LIR
  • country: HK
  • address: Room 801 Join-In Hang Sing Centre
  • address: 2-16 kai Fung Crescent
  • address: Kwai Chung, NT
  • phone: +85231885386
  • e-mail: kwaifong33@gmail.com
  • mnt-ref: APNIC-HM
  • mnt-by: APNIC-HM
  • last-modified: 2023-09-05T02:16:15Z
  • role: ABUSE HKKFHK
  • country: ZZ
  • address: Kwai Chung, NT., Hong Kong
  • phone: +000000000
  • e-mail: noc@kfglobal.hk
  • admin-c: HKGL1-AP
  • tech-c: HKGL1-AP
  • nic-hdl: AH819-AP
  • abuse-mailbox: kwaifong33@gmail.com
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-04-30T01:36:08Z
  • role: HK Kwaifong Group Limited - network administrator
  • address: Kai Chung,Kow Loon, HONGKONG
  • country: HK
  • phone: +85231885386
  • e-mail: kwaifong33@gmail.com
  • admin-c: HKIS1-AP
  • tech-c: HKIS1-AP
  • nic-hdl: HKGL1-AP
  • mnt-by: MAINT-HKKF-HK
  • fax-no: +85231885389
  • last-modified: 2020-11-13T08:09:21Z

Links to attack logs

****** bruteforce-ip-list-2020-04-08 ****** ******

Share on: