120.76.107.45 Threat Intelligence and Host Information

Mar 17, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 120.76.107.45 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

  • Country: China
  • Network: AS37963 hangzhou alibaba advertising co. ltd.
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: song100e.top xleiya.com wyniu001.com mx66.link 4688.link wzga.link www.xinzhangwork.top chaoju.online linhhua.top 874513.xyz dmt.hkx-ljd.com www.hkx-ljd.com www.hexlup.xyz g.llll.vc ns1.alidns.com

Open Ports Detected

10000 10001 10134 102 1023 1025 10250 104 10443 1050 10554 1063 10909 10911 1099 11 110 11000 1111 11112 11210 113 11300 11434 1153 1177 119 12000 1234 12345 13 1322 1337 135 13579 139 14147 14265 143 1433 14344 1515 1521 1588 1599 16030 1604 1660 1723 175 1800 1801 18081 18245 1833 1883 19 19000 19071 1911 1925 195 1962 1981 20 20000 2003 2008 20256 20547 2067 2081 2082 2083 2087 21 21025 21379 2154 2181 2201 2202 2222 23 23023 2323 2332 2352 24 2404 2455 2480 25 25001 25105 25565 2572 2598 2628 263 264 27015 27017 2761 2762 28015 30002 30003 3001 3050 3056 3067 3071 3074 3076 3087 3090 3099 3100 3104 3106 31337 3260 3268 3269 3270 32764 3299 3301 3306 33060 3310 3311 3388 3389 340 3401 3404 3407 3443 3479 35000 3541 3542 3549 3551 35780 37 37215 37777 3780 3790 389 4000 4001 4022 4063 4064 4117 4157 4200 4242 427 4282 43 4321 4369 44158 443 4433 444 4443 44818 4482 4506 465 4786 47990 4840 49 4911 49152 49153 4949 50000 5005 5007 5009 5010 50100 502 5025 503 51235 515 5172 5201 5222 5269 52869 53 54138 548 5494 55000 554 55442 55553 55554 5560 5568 5569 5591 5592 5594 5599 5600 5601 5606 5672 5801 5858 5900 5938 5984 5986 6000 60010 6002 6009 60129 61613 61616 62078 631 636 6379 6443 6464 6633 6653 666 6662 6666 6667 6668 6697 6789 70 7000 7003 7071 7171 7218 7401 7415 7434 7443 7547 7548 7634 7654 7700 771 7776 79 7999 8001 8002 8009 8027 8044 8045 8049 8050 8057 8085 8086 8089 8090 8091 8092 8098 8099 81 8100 8101 8108 8110 8126 8140 8181 82 8248 8251 8291 8333 8401 8404 8411 8432 8443 8500 8513 8545 8554 8575 8586 8590 8602 8649 8663 873 8782 8790 8801 8808 8816 8827 8834 8839 8865 8876 8880 8881 8988 8999 9004 9024 9028 9038 9051 9088 9089 9097 91 9100 9200 9204 9206 9208 9214 9306 9418 9443 9530 9600 9633 9663 9761 9800 9861 9869 9876 992 993 9943 995 9966 9981 9992 9998 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2010-4478 CVE-2010-4755 CVE-2010-5107 CVE-2011-4327 CVE-2011-5000 CVE-2012-0814 CVE-2014-1692 CVE-2014-2532 CVE-2014-2653 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2016-0777 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2016-1908 CVE-2016-20012 CVE-2016-3115 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51384 CVE-2023-51385 CVE-2023-51767

Map

Whois Information

  • inetnum: 120.76.0.0 - 120.79.255.255
  • netname: ALISOFT
  • descr: Aliyun Computing Co., LTD
  • descr: 5F, Builing D, the West Lake International Plaza of S&T
  • descr: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • country: CN
  • admin-c: ZM1015-AP
  • tech-c: ZM877-AP
  • tech-c: ZM876-AP
  • tech-c: ZM875-AP
  • abuse-c: AC1601-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-CNNIC-AP
  • mnt-irt: IRT-ALISOFT-CN
  • last-modified: 2023-11-28T00:57:00Z
  • irt: IRT-ALISOFT-CN
  • address: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • e-mail: didong.jc@alibaba-inc.com
  • abuse-mailbox: didong.jc@alibaba-inc.com
  • admin-c: ZM877-AP
  • tech-c: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2021-09-05T23:38:36Z
  • role: ABUSE CNNICCN
  • address: Beijing, China
  • country: ZZ
  • phone: +000000000
  • e-mail: ipas@cnnic.cn
  • admin-c: IP50-AP
  • tech-c: IP50-AP
  • nic-hdl: AC1601-AP
  • abuse-mailbox: ipas@cnnic.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2020-05-14T11:19:01Z
  • person: Li Jia
  • address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
  • country: CN
  • phone: +86-0571-85022088
  • e-mail: jiali.jl@alibaba-inc.com
  • nic-hdl: ZM1015-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2014-07-30T02:02:01Z
  • person: Guoxin Gao
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022600
  • fax-no: +86-0571-85022600
  • e-mail: anti-spam@list.alibaba-inc.com
  • nic-hdl: ZM875-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2014-07-30T01:56:01Z
  • person: security trouble
  • e-mail: yitian.gaoyt@alibaba-inc.com
  • address: Hangzhou, Zhejiang, China
  • phone: +86-0571-85022600
  • country: CN
  • mnt-by: MAINT-CNNIC-AP
  • nic-hdl: ZM876-AP
  • last-modified: 2021-04-13T23:22:33Z
  • person: Guowei Pan
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022088-30763
  • fax-no: +86-0571-85022600
  • e-mail: guowei.pangw@alibaba-inc.com
  • nic-hdl: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2013-07-09T01:34:02Z
  • route: 120.76.0.0/14
  • descr: Hangzhou Alibaba Advertising Co.,Ltd.
  • country: CN
  • origin: AS37963
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2019-08-06T02:28:03Z
  • route: 120.76.0.0/14
  • descr: Alibaba (US) Technology Co., Ltd.
  • country: CN
  • origin: AS45102
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2019-08-06T02:28:03Z

Links to attack logs

****** ****** ******

Share on: