120.76.107.62 Threat Intelligence and Host Information

Mar 17, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 120.76.107.62 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

  • Country: China
  • Network: AS37963 hangzhou alibaba advertising co. ltd.
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: yuanmashidai.top qxy666.top lhdaliyun.xyz e-teckoffer.net testpapers.fun luckdog.tech ixmmm.com dollss.xyz qianxunmc.online dns30.hichina.com boldstern.net dns26.hichina.com dns28.hichina.com dns32.hichina.com

Open Ports Detected

10000 10001 1012 10134 102 1023 1025 10250 1027 1029 104 10443 10909 11 110 11000 111 11112 11210 11211 113 11300 11371 1153 1167 1177 119 1200 12000 122 1234 12345 1250 1322 1337 135 1388 143 1433 14344 15 1515 1521 1599 16010 1604 16993 1723 175 179 1800 1801 18081 18245 1833 19 19000 1911 1925 1926 1947 195 1962 20000 2002 2008 2012 20547 2058 2064 2067 2077 2079 2081 2082 2086 2087 2095 21 21025 211 2121 2122 2126 21379 2154 2181 221 2222 23 23023 2323 2332 23424 2345 2376 2404 2455 2480 25 25001 2506 2525 25565 2572 2601 264 2650 2701 27015 27017 2761 2762 28015 30002 30003 3001 3005 3050 3066 3092 3094 3101 3102 3108 311 3110 3121 31337 3211 3260 3268 3269 32764 3299 3301 3306 3333 3388 3389 3404 3406 3443 35000 3541 3551 3555 3557 3558 3563 3567 3570 35780 3689 37 37777 3790 4000 4022 4063 4064 4100 4157 41800 4242 427 4282 43 4321 4369 44158 443 4430 4433 444 44818 4500 4506 4550 4734 4747 4786 47990 4899 49 49152 49153 4949 50000 5001 5003 5005 5006 5007 5009 5010 50100 502 5025 5090 51106 51235 515 5172 5201 5222 5269 53 5432 5435 548 55000 554 55442 55443 55554 5605 5672 5801 5858 587 5900 593 5938 59417 5984 5985 5986 6000 6002 6005 60129 6161 61616 62078 6262 6352 636 6379 6443 646 6503 6511 6603 6633 6653 666 6662 6666 6667 6668 6697 6748 70 7001 7071 7170 7171 7218 7415 7434 7443 7493 7548 7634 771 7779 789 79 80 8001 8002 8009 8010 8012 8027 8036 8047 8051 8053 8058 8060 8069 8072 8081 8082 8083 8085 8089 8091 8092 8096 8102 8126 8139 8140 8181 8200 8237 8251 8252 8291 830 8333 8334 84 8403 8408 8417 8443 8444 8500 8513 8545 8553 8554 8575 8649 8728 873 8766 8784 8788 8823 8834 8837 8855 8859 8862 8874 8876 8880 8889 89 8988 8991 9000 9001 9002 9008 9016 9029 9036 9040 9042 9051 9082 9089 9091 9092 9095 9100 9103 9107 9109 9151 92 9219 9295 9306 9307 9418 9443 9527 9530 9600 9633 9761 98 9800 9876 99 992 993 9943 9944 995 9981 9998 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2010-4478 CVE-2010-4755 CVE-2010-5107 CVE-2011-4327 CVE-2011-5000 CVE-2012-0814 CVE-2014-1692 CVE-2014-2532 CVE-2014-2653 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2016-0777 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2016-1908 CVE-2016-20012 CVE-2016-3115 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51384 CVE-2023-51385 CVE-2023-51767

Map

Whois Information

  • inetnum: 120.76.0.0 - 120.79.255.255
  • netname: ALISOFT
  • descr: Aliyun Computing Co., LTD
  • descr: 5F, Builing D, the West Lake International Plaza of S&T
  • descr: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • country: CN
  • admin-c: ZM1015-AP
  • tech-c: ZM877-AP
  • tech-c: ZM876-AP
  • tech-c: ZM875-AP
  • abuse-c: AC1601-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-CNNIC-AP
  • mnt-irt: IRT-ALISOFT-CN
  • last-modified: 2023-11-28T00:57:00Z
  • irt: IRT-ALISOFT-CN
  • address: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • e-mail: didong.jc@alibaba-inc.com
  • abuse-mailbox: didong.jc@alibaba-inc.com
  • admin-c: ZM877-AP
  • tech-c: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2021-09-05T23:38:36Z
  • role: ABUSE CNNICCN
  • address: Beijing, China
  • country: ZZ
  • phone: +000000000
  • e-mail: ipas@cnnic.cn
  • admin-c: IP50-AP
  • tech-c: IP50-AP
  • nic-hdl: AC1601-AP
  • abuse-mailbox: ipas@cnnic.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2020-05-14T11:19:01Z
  • person: Li Jia
  • address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
  • country: CN
  • phone: +86-0571-85022088
  • e-mail: jiali.jl@alibaba-inc.com
  • nic-hdl: ZM1015-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2014-07-30T02:02:01Z
  • person: Guoxin Gao
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022600
  • fax-no: +86-0571-85022600
  • e-mail: anti-spam@list.alibaba-inc.com
  • nic-hdl: ZM875-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2014-07-30T01:56:01Z
  • person: security trouble
  • e-mail: yitian.gaoyt@alibaba-inc.com
  • address: Hangzhou, Zhejiang, China
  • phone: +86-0571-85022600
  • country: CN
  • mnt-by: MAINT-CNNIC-AP
  • nic-hdl: ZM876-AP
  • last-modified: 2021-04-13T23:22:33Z
  • person: Guowei Pan
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022088-30763
  • fax-no: +86-0571-85022600
  • e-mail: guowei.pangw@alibaba-inc.com
  • nic-hdl: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2013-07-09T01:34:02Z
  • route: 120.76.0.0/14
  • descr: Hangzhou Alibaba Advertising Co.,Ltd.
  • country: CN
  • origin: AS37963
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2019-08-06T02:28:03Z
  • route: 120.76.0.0/14
  • descr: Alibaba (US) Technology Co., Ltd.
  • country: CN
  • origin: AS45102
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2019-08-06T02:28:03Z

Links to attack logs

****** ****** ******

Share on: