103.96.149.16 Threat Intelligence and Host Information

Share on:
Mar 12, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Host and Network Information

  • Tags: Nextray, RDP, SSH, abuse, awsau, bruteforce, cyber security, fraud, ioc, ipqs, ipqualityscore, malicious, phishing, redis, web attack

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network: AS139021 west263 international limited
  • Noticed: 9 times
  • Protcols Attacked: redis
  • Countries Attacked: Australia, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: www.jialijianshe.com www.liqiaojinrong.com nanshanzhiyuan.com nanshanoffice.com xiangjiangjirong.com xinlikangdasha.com xizhilangdasha.com xinghecenter.com xiangbincenter.com wankeqiye.com wantingdasha.com wankeyunchuang.com aliyunbuilding.com tengxunbuilding.com tongtaishidai.com tianliaodasha.com tiankongdasha.com tianlongdasha.com tangweidasha.com dachongcenter.com ditiedasha.com daoxingcenter.com daxinshidai.com chengjindasha.com cnoocbuilding.com chiwandasha.com szqianhaihop.com shimaobuilding.com shengangjijin.com szofficerent.com sztiananyungu.com szxingheworld.com szfangdacheng.com shengangcenter.com shennanbuilding.com shunfengdasha.com shenzhengwan.com shangmeidasha.com hengfangdasha.com hangtianbuilding.com hongrongyuancenter.com huarunbuilding.com huizhicenter.com hongyidasha.com hengyujinrong.com haiyuncenter.com hanjincenter.com haiwangbuilding.com haixindasha.com minshengdasha.com liqiaojinrong.com lianxianghouhai.com liwandasha.com zhongjiandasha.com zhuoyueyihao.com zhongliangcenter.com zhongjicenter.com zhuoyuehouhai.com zhaoshangcenter.com zhongzhoujinrong.com zhongshesquare.com zhididasha.com zhuoyuesquare.com zhuoyuejinrong.com zhiyuandasha.com zhongtiebuilding.com zhaolongdasha.com qianhaidasah.com qianhaijiali.com qianhaioffice.com qianhaizimao.com qianhaikonggudasha.com qianchengcenter.com qianhaikexing.com qianhaifengye.com yuehaidasha.com qcdbuilding.com qianhairent.com yidudasha.com baonengcenter.com baishakejiyuan.com bojinsquare.com bodunkejiyuan.com guanhuadasha.com guangqiweilai.com guangdiancenter.com jialijianshe.com jinlidasha.com jialitaibuilding.com jiazhaoyesquare.com jinqizhigu.com nangangdasah.com nantaikeji.com kaiertedasha.com kexingkejiyuan.com renshoucenter.com fuyongyiku.com fujiparkguoji.com fazhidasha.com dongfangbuilding.com zhengyeshangwu.com snaketask.com baidu-11.com www.yunduan.ga

Open Ports Detected

80 888

Map

Whois Information

  • inetnum: 103.96.148.0 - 103.96.149.255
  • netname: WEST263GO-HK
  • descr: West263 International Limited
  • country: HK
  • admin-c: WILA3-AP
  • tech-c: DY1085-AP
  • abuse-c: AW1023-AP
  • status: ASSIGNED NON-PORTABLE
  • mnt-by: MAINT-WEST263GO-HK
  • mnt-irt: IRT-WEST263GO-HK
  • last-modified: 2022-08-09T00:23:25Z
  • irt: IRT-WEST263GO-HK
  • address: 12/F,, San Toi Building,, 137-139 Connaught Road Central, Hong Kong,, Hong Kong Hong Kong 999077
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: WILA3-AP
  • tech-c: DY1085-AP
  • mnt-by: MAINT-WEST263GO-HK
  • last-modified: 2022-11-22T08:15:05Z
  • role: ABUSE WEST263GOHK
  • address: 12/F,, San Toi Building,, 137-139 Connaught Road Central, Hong Kong,, Hong Kong Hong Kong 999077
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: WILA3-AP
  • tech-c: DY1085-AP
  • nic-hdl: AW1023-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2022-11-22T08:15:40Z
  • role: West263 International Limited administrator
  • address: 12/F,, San Toi Building,, 137-139 Connaught Road Central, Hong Kong,, Hong Kong Hong Kong 999077
  • country: HK
  • phone: +15708412741
  • fax-no: +15708412741
  • e-mail: [email protected]
  • admin-c: WILA3-AP
  • tech-c: DY1085-AP
  • nic-hdl: WILA3-AP
  • mnt-by: MAINT-WEST263GO-HK
  • last-modified: 2018-12-03T15:18:11Z
  • person: David Yanping
  • address: 12/F,, San Toi Building,, 137-139 Connaught Road Central, Hong Kong,, Hong Kong Hong Kong 999077
  • country: HK
  • phone: +852-35979075
  • e-mail: [email protected]
  • nic-hdl: DY1085-AP
  • mnt-by: MAINT-WEST263GO-HK
  • last-modified: 2019-04-29T06:51:07Z
  • route: 103.96.149.0/24
  • origin: AS139021
  • descr: West263 International Limited
  • mnt-by: MAINT-WEST263GO-HK
  • last-modified: 2022-08-09T00:29:55Z

Links to attack logs

awsau-redis-bruteforce-ip-list-2021-11-01 redis-bruteforce-ip-list-2021-10-18 redis-bruteforce-ip-list-2021-10-21