120.131.13.180 Threat Intelligence and Host Information
General
This page contains threat intelligence information for the IPv4 address 120.131.13.180 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.
Possibly Malicious Host 🟢 20/100
Host and Network Information
- View other sources: Spamhaus VirusTotal
- Country: China
- Network: AS59019 beijing kingsoft cloud internet technology co ltd
- Noticed: 1 times
- Protocols Attacked: SSH
- Passive DNS Results: ws.xoyo.com x.xoyo.com app.jx3.xoyo.com xpass.xoyo.com app.jxsj.xoyo.com app.jx.xoyo.com
Malware Detected on Host
Count: 8 04fd004c5b733c5a1fdb6bde7021c665483fc4d9128be2b39861dffa20e9775e 26e87aeee93f10d745ed207c3ba61798ec681a02eb31fed0a418c8c96586aa20 e1fb29190dcad03c30637274845f45e8490e45792dc5439b124ffe31aa04809c 740c431226793cebe6912c6265095ff854a1689121cc1345f6ee0ed09ea74076 25593b98ad173cb5bf6f231b30563b05e41665d708cd6c5435192ec5f17b681e eaf07ccf3434462ae19be4c94517fd5feb5d04237119356f3a9b8670fe0880a2 ebcaa185554d90a4d74503469a5d4f6e2c340a9773be7b1ec2b4089fc0590f0c 1c4c259676deebebc4e88ebb2f6d7b750554d2e93423054b5b6175f324e4bedd
Open Ports Detected
CVEs Detected
CVE-2007-3205 CVE-2013-2220 CVE-2017-8923 CVE-2021-21703 CVE-2021-21704 CVE-2021-21705 CVE-2021-21706 CVE-2021-21707 CVE-2022-31628 CVE-2022-31629 CVE-2022-37454
Map
Whois Information
- inetnum: 120.131.0.0 - 120.131.15.255
- netname: BJKSCNET
- descr: Beijing Kingsoft Cloud Internet Technology Co., Ltd.
- descr: Kingsoft Tower,No.33 Xiao Ying West Road,Haidian District,Beijing,China
- country: CN
- admin-c: ML1940-AP
- tech-c: YW7099-AP
- abuse-c: AC1601-AP
- status: ALLOCATED PORTABLE
- mnt-by: MAINT-CNNIC-AP
- mnt-irt: IRT-BJKSCNET-CN
- mnt-lower: MAINT-CNNIC-AP
- mnt-routes: MAINT-CNNIC-AP
- last-modified: 2023-11-28T00:57:00Z
- irt: IRT-BJKSCNET-CN
- address: Kingsoft Tower,No.33 Xiao Ying West Road,Haidian District,Beijing,China
- e-mail: huangliming@kingsoft.com
- abuse-mailbox: huangliming@kingsoft.com
- admin-c: ML1940-AP
- tech-c: YW7099-AP
- mnt-by: MAINT-CNNIC-AP
- last-modified: 2021-09-06T03:22:50Z
- role: ABUSE CNNICCN
- address: Beijing, China
- country: ZZ
- phone: +000000000
- e-mail: ipas@cnnic.cn
- admin-c: IP50-AP
- tech-c: IP50-AP
- nic-hdl: AC1601-AP
- abuse-mailbox: ipas@cnnic.cn
- mnt-by: APNIC-ABUSE
- last-modified: 2020-05-14T11:19:01Z
- person: Liming Huang
- address: Kingsoft Tower,No.33 Xiao Ying West Road,Haidian District,Beijing,China
- country: CN
- phone: +86-13811219970
- e-mail: huangliming@kingsoft.com
- nic-hdl: ML1940-AP
- mnt-by: MAINT-CNNIC-AP
- last-modified: 2013-06-18T01:36:01Z
- person: Zhang Jian
- address: Kingsoft Tower,No.33 Xiao Ying West Road,Haidian District,Beijing,China
- country: CN
- phone: +86-18600354960
- e-mail: zhangjian8@kingsoft.com
- nic-hdl: YW7099-AP
- mnt-by: MAINT-CNNIC-AP
- last-modified: 2020-05-09T05:13:40Z
- route: 120.131.0.0/20
- descr: Beijing Kingsoft Cloud Internet Technology Co., Ltd.
- descr: Kingsoft Tower,No.33 Xiao Ying West Road,Haidian District,Beijing,China
- country: CN
- origin: AS59019
- mnt-by: MAINT-CNNIC-AP
- last-modified: 2015-08-17T09:10:01Z