139.170.156.252 Threat Intelligence and Host Information

Mar 17, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 139.170.156.252 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • Country: China
  • Network: AS4837 china unicom china169 backbone
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: tt.oldmeng.com www.127xz.com www.wordphp.com 127xz.com wordphp.com www.haoyohe.com www.mjxiangjiao.com www.xy8z.com drjchn.com img.xinxiu6.com static.51aitui.com soft.3866.com www.szkfdx.cn iwangtao.com yun.ibloger.cn cdn.99zuhao.cn forum.walkmanfans.com www.walkmanfans.com walkmanfans.com hi.tvc.cc api.ourss.cn en.jxtfc.cn note.ourss.cn cos.swuapp.lhb.ink cos.swuapp.cn img.hrcbar.com barenwangluo.cn www.nnhuakai.com nnhuakai.com cdn.keepet.cn wst.hslv.cc gjt.hslv.cc cdn.kaoyan5.com xbt.hslv.cc ntt.hslv.cc jat.hslv.cc tzt.hslv.cc gft.hslv.cc static.ifixcdn.com www.yiyaha.com yiyaha.com do6dk5t9.slt.sched.tdnsv8.com pucqx.cn lhcong.cn blog.api.xiaoyou66.com zm2.top static.yuedu.net mall.yuedu.net web.aiximiao.com www.lietoubaba.com m.127b.cn tbug.eeleven.cn daili.doudouxizi.com img1.qwys.cc static.jatech2014-ltd.com szxyxcl.com ys-steel.com nb2.baka.icu www.cjtyy.top cjtyy.top word.huaweiyi95.net img2.duitoo.com img1.duitoo.com app.huiyihui.xin en.qdguyu.cn static.cdol.cn www.wmfl.net wmfl.net xcx.weeok.cn admin.cb.tjk777.cn m.cheshang.net one.qaqwq.com ljwmhhb.c.lijiangtv.com www.amcy.xyz cdn.phpnbw.com www.9m.wiki 9m.wiki gravatar.xn–qpru0x.cn 302.pub o9o.cn www.tmhnpump.cn kr6402ij.slt-dk.sched.tdnsv12.com www.huayandz.com cdn.050301.xyz 9q7yt3jw.slt-dk.sched.tdnsv8.com 211360.slt.sched.tdnsv8.com qqsjaqtv.slt-dk.sched.tdnsv8.com 4loybkze.slt-dk.sched.tdnsv8.com ioj7gzzd.slt.sched.tdnsv8.com img.motuozhijia.com www.szbsd.com wy.zhaojiuwanwu.top www.wikicooler.com re.sh-gaming.com www.sh-gaming.com haku.sh-gaming.com cdn.qiyunnet.com llemon.cn www.llemon.cn yellouu.com www.yellouu.com crmnn.netbcloud.com huge.ink www.huge.ink mkm.sxmyjt.wang www.o1o.com.cn o1o.com.cn tuijian.how234.com m.wf-zhengyuan.com www.wf-zhengyuan.com gku5.com sea-group.org puswq.we-media.cn atfeng.com s.yljmf.com api.yljmf.com job.husohua.com static.midsmr.com d3msjjmk.slt.sched.tdnsv8.com tinyfun.online rpwow.com 10.wise-man.net.cn ichenqiang.com www.kuaifaka.net www.htcee.com 99.weicainet.cn.cdn.dnsv1.com.cn html.cdn.insfavor.shieldfax.com 123.ichenqiang.com 99.weicainet.cn console.baizhanke.com assets.quanzi.io zhousj.top.cdn.dnsv1.com.cn patch.rpwow.com game.tinyfun.online www.kuaifaka.net.cdn.dnsv1.com.cn jrxgfxfd.slt.sched.tdnsv8.com l876otdt.slt.sched.tdnsv8.com hmsttf64.slt.sched.tdnsv8.com d6emcp4q.slt-dk.sched.tdnsv8.com cdn-2sum4fot.slt.sched.tdnsv8.com bmyx7ojb.slt-dk.sched.tdnsv8.com 4g5j6d9i.slt.sched.tdnsv8.com 8wscavcx.slt-dk.sched.tdnsv8.com d2nt243q.slt-dk.sched.tdnsv8.com 1zzy9szk.slt.sched.tdnsv8.com sc-mall.com jifengfarm.com www.51hupaidp.com hjy.075507550755.com magic.dloveb.com www.phite.cn www.zhengyy.wang www.juleyun.cn m4son.cn www.m4son.cn www.jhrhf.cn www.jk80.com.cn cdn.jubenw.com public.jk80.com.cn txfont.arogome.cn ydm.senhan.com foynx.cc ifalse.onll.cn d.daixiao360.cn www.dc-plastic.cn en.dc-plastic.cn qwer.yinliub.cn lyyongqiang.cn www.ctmotor.com.cn mgz.554f.com www.tjots.cn www.dnxing.com ddnj.zjylb.cn www.pptwiki.com h.oniya.cn www.cyhazyy.com m.en.drship.com en.drship.com www.yzhuatong.com ounbi.top nft.ounbi.top www.iectester.com wst.qo675.com jat.qo675.com www.jyhengyi.com.cn tzt.qo675.com www.sdjcse.com www.ybmilkgoat.com static.lnsix.cn xbt.qo675.com images.jikegz.com suiyue8.weijijin.me blog.jnn.icu cdn.5itool.cn m.pancaish.cn pay.jgyzq.cn en.sdjcse.com kf.qianyilicai.com www.jshcdx.com new.jswuxing.com floralyouthhotel.cn alist.corelift.cn take-out.hebcmkj.cn szyxb16.xwtec.cn mate.cnsmash.com zhiguangcdn.hzwtao.com www.mtcnc.cn biling.club www.sinopack.com.cn m.sinopack.com.cn www.imeta-center.com www.swzckj.com u.79mud.com kaituojiaye.com img.ink m.kuailixi.cn www.kuailixi.cn en.chinasprockets.com api.909.cn www.biling.club zhongle-api-test.jinrihulian.net dev.biling.club cnehangcdn.wzpod.com img.han-zu.cn print-dyxsdz-v2.gift.xinshengcloud.com wap.phwrasset.com console.uim.lucfish.com m.wtdggcd.com www.wtdggcd.com jx.corelift.cn m.fshfsl.cn www.fshfsl.cn www.itning.top h5storage.xingflash.com saasimg.qiyucloud.com tctn-test-app.yousheng.3ruler.com zxhshop.cn expovr.cn bsjj.liuxinyixin.top www.hgq.cn cdn.czmz.top new.whdfood.cn enhuicloud.com v2.adwebcloud.com www.zhongsheyun.com zhongsheyun.com brssoft.com www.ritter-uvled.com xinruizhiye.com nas.mysnnh.top wx.ushequ.xyz cdn.lubll.com api.cms.familydoctor.com.cn img.huangchun.net www.hfzinc.cn api.yzjlb.net ooolo.net www.ooolo.net ibpab4yr.slt.sched.tdnsv8.com 8z1j33zp.slt.sched.tdnsv8.com czej7itz.slt-dk.sched.tdnsv8.com 133q12l2.slt-dk.sched.tdnsv12.com 98od9bd0.slt-dk.sched.tdnsv8.com mlz6m90w.slt-dk.sched.tdnsv8.com cdn-8b3hmknr.slt.sched.tdnsv8.com r05fsz20.slt-dk.sched.tdnsv8.com cdn-qwdhrlyr.slt.sched.tdnsv8.com rqkfsbg7.slt-dk.sched.tdnsv8.com www.52dgw.co 52dgw.co img.cqpx.cn sc.cqpx.cn m.husohua.cn my.husohua.cn ka.wantlm.com 007.amo5.cn wd101.iiauu.cn ykhd.antaichefu.com gb.okgardenitems.com 618pay.shenyangqiyi.com x.gailai.com.cn alpha.mobile.hxclass.cn images.hipccdn.com api.shop.fjwolf.com store.everjy.com cqkxc.microweb.pub cqlhgyy.microweb.pub jjzrzy.microweb.pub cos.doraemew.com cuixinxin.cn cdn.yuanshisl.com cos.snowy.love bkm.senhan.com iptv.cdnet.run zcxmt.caredaily.com wx.pw9213.com www.hopelisting.com hopelisting.com meinv.ocoaupe.cn hunter.qianxin.com.dsa.dnsv1.com.cn eana0omw.slt.sched.tdnsv8.com os.imghosting.cn www.lhzjzx.com cc.chixiaotao.cn oss.iolu.cn qiandao.iolu.cn wj.wingmark.cn cdn.cnkoo.com qm01.csgsfc.cn sxu.sx.cn home.lincrea.cn api.abc9ok.com cngg.yinliuren.cn 23cdn.com www.tg36.com es.floken.cn www.hunanbest.com admin.tj.familydoctor.com.cn laotoulaohan.top www.bridgeshine.com.cn www.fh-detect.com jat.hd8z2vz7.com gft.hd8z2vz7.com qizs.cn www.qizs.cn www.zxxmr.com wx.ygdz.vip cdn.boomallha.com xbt.hd8z2vz7.com bell.game745.com wst.hd8z2vz7.com tzt.hd8z2vz7.com ntt.hd8z2vz7.com cdn.activity.mtmountain.cn cdn.gua.vin imqwq.com taotaoschool.cn m.drship.com www.drship.com 114111.xyz www.lii-media.com lii-media.com m1.beidougaoxin.top en.hsxp-hk.com b2.runchangbd.top www.hsxp-hk.com www.xinbafar.com tool.y1g.com bell02.game745.com bell03.game745.com wkdownload.zhih.cn fonts.yooox.net dz.cdn.yooox.net m1.9656e.top romerx-static.spotterio.com gmesh-static.spotterio.com yi.liuhai.net en.czpudong.com game10.5xcq.com game3.5xcq.com game4.5xcq.com www.skillstreet.cn game1.5xcq.com www.sdcyzsalt.com 5xcq.com www.5xcq.com m.guodongxs.com guodongxs.com www.guodongxs.com rijiemao.com image.guodongxs.com j4r99ztl.slt-dk.sched.tdnsv8.com is.21app.cc cis.21app.cc sis.21app.cc ais.21app.cc arsenal.hidefog.cn image.hgq26.com m.tulong.co www.hgq26.com hgq26.com cuxiaoku.com www.cuxiaoku.com l000.net www.mtlpjc.com cdn.recolar.life blog.zhangkabao.com is.91city.cc cli.91city.cc bbs.kpdv.cc cdn.xinyili.com www.enermax.cn image.przwt.com zhao.888dly.vip h5.y1n.cn pcoic.com www.pcoic.com www.idcbuy.net idcbuy.net www.jxgimi.com sqhow.com www.sqhow.com qq001.hzhz0.com apk.ujplay.net en.leoalignment.com www.fzkplmy.com fzkplmy.com en.jyjxseat.com api.kafuuchino.top links.yanyuesoft.com www.bocent.net api.xtsxyll.com down.xtsxyll.com img.xtsxyll.com jz.xtsxyll.com m.pcb-world.com www.pcb-world.com yingyecraft.com cdn1.gump.cloud www.yushao.net dof.luffycloud.com jibaitea.com console.yunzhuxue.com blog.xtsxyll.com alipay.school.easytong.top img.79mud.com www.jzhxsl.cn www.zjtouchnet.com www.njxytwl.cn zxsk.finstao.com api.finstao.com shenhe.finstao.com www.finstao.com app.zuhecdn.com zjqt.finstao.com en.fareast-printing.cn dcdn1.yunsxz.com www.yilianss.com cn.365tms.com n.365tms.com winmoes.com www.uapdev.com code.sosoduo.com wst.qxwzhijia.com d.weagle.top hk-cdn.fdkevin.xyz www.moodlec.com moodlec.com 0ups2mld.slt.sched.tdnsv8.com shop.sumual.cn taiyang.qiyuanqutu.cn console.duotuyun.com sdetynguop.3589651478.177idc.com pub.xdtech.top ainas.site www.skspruce.com.cn pay.husohua.cn www.qi-chen.cn ja.sxkuaiqing.com shop.tttqtq.com ca76.hoocoffee.com ca76.baichitech.com www.zhonghuan.com.cn en.enproscm.com m.en.enproscm.com m.enproscm.com www.china-pump.cc m.china-pump.cc m.xianghuaqi.cn www.xianghuaqi.cn en.seinetec.com en.yusiyuan.com m.en.yusiyuan.com www.sxkuaiqing.com cdn.deadmau5v.cool 751fk.cn blog.ourdocs.cn media.xiaoshudian.vip static.iky.cn www.xwen.com cdn.hai.pet kj.hai.pet zz.lovetly.top wbk.xiejiaqi.cn www.awdsec.com awdsec.com sxlz.club www.sxlz.club zhousj.top img2.tianli0.top cos.yyd216.com jlgtwdof.slt-dk.sched.tdnsv8.com d4297300.slt-dk.sched.tdnsv8.com yfw.morazx.cn 52-xd.cn yc.2144youxi.com cos.xuezhacv.cn bazar.xjoghlan.com kino.xjoghlan.com appimgcdn.sanqu.cc

Malware Detected on Host

Count: 4 3038e70943e255b179e3007f66b512cc5de626768c8257449da0553e19737e6f e523f5e119ea11657eb7b0247d1cf0279424d04b960f14842bf4bcfb3edce6fa a328cf7a0b675717a8762f0a74626db1458c01b0655e28635055dac1c9f2a5aa 13179dae610e68ef222aaf06ce5bf390a1054ed575dbcd39353f355214def3a0

Map

Whois Information

  • NetRange: 139.170.0.0 - 139.170.255.255
  • CIDR: 139.170.0.0/16
  • NetName: APNIC-ERX-139-170-0-0
  • NetHandle: NET-139-170-0-0-1
  • Parent: NET139 (NET-139-0-0-0-0)
  • NetType: Early Registrations, Transferred to APNIC
  • OriginAS:
  • Organization: Asia Pacific Network Information Centre (APNIC)
  • RegDate: 2010-11-03
  • Updated: 2010-11-17
  • Comment: This IP address range is not registered in the ARIN database.
  • Comment: This range was transferred to the APNIC Whois Database as
  • Comment: part of the ERX (Early Registration Transfer) project.
  • Comment: For details, refer to the APNIC Whois Database via
  • Comment:
  • Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
  • Comment: for the Asia Pacific region. APNIC does not operate networks
  • Comment: using this IP address range and is not able to investigate
  • Comment: spam or abuse reports relating to these addresses. For more
  • Ref: https://rdap.arin.net/registry/ip/139.170.0.0
  • OrgName: Asia Pacific Network Information Centre
  • OrgId: APNIC
  • Address: PO Box 3646
  • City: South Brisbane
  • StateProv: QLD
  • PostalCode: 4101
  • Country: AU
  • RegDate:
  • Updated: 2012-01-24
  • Ref: https://rdap.arin.net/registry/entity/APNIC
  • OrgAbuseHandle: AWC12-ARIN
  • OrgAbuseName: APNIC Whois Contact
  • OrgAbusePhone: +61 7 3858 3188
  • OrgAbuseEmail: search-apnic-not-arin@apnic.net
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • OrgTechHandle: AWC12-ARIN
  • OrgTechName: APNIC Whois Contact
  • OrgTechPhone: +61 7 3858 3188
  • OrgTechEmail: search-apnic-not-arin@apnic.net
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • inetnum: 139.170.0.0 - 139.170.255.255
  • netname: UNICOM-QH
  • descr: China Unicom Qinghai province network
  • descr: China Unicom
  • country: CN
  • admin-c: CH1302-AP
  • tech-c: CH1322-AP
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-CNCGROUP
  • mnt-lower: MAINT-CNCGROUP-QH
  • mnt-routes: MAINT-CNCGROUP-RR
  • mnt-irt: IRT-CU-CN
  • status: ALLOCATED PORTABLE
  • last-modified: 2016-05-04T00:29:36Z
  • irt: IRT-CU-CN
  • address: No.21,Financial Street
  • address: Beijing,100033
  • address: P.R.China
  • e-mail: zhaoyz3@chinaunicom.cn
  • abuse-mailbox: zhaoyz3@chinaunicom.cn
  • admin-c: CH1302-AP
  • tech-c: CH1302-AP
  • mnt-by: MAINT-CNCGROUP
  • last-modified: 2023-11-22T07:54:46Z
  • person: ChinaUnicom Hostmaster
  • nic-hdl: CH1302-AP
  • e-mail: hqs-ipabuse@chinaunicom.cn
  • address: No.21,Jin-Rong Street
  • address: Beijing,100033
  • address: P.R.China
  • phone: +86-10-66259764
  • fax-no: +86-10-66259764
  • country: CN
  • mnt-by: MAINT-CNCGROUP
  • last-modified: 2017-08-17T06:13:16Z
  • person: Rao Runxiang
  • nic-hdl: CH1322-AP
  • e-mail: raorunxiang@chinaunicom.cn
  • address: No.36,Wu-Si West Road
  • address: Xining,Qinghai
  • address: P.R.China
  • phone: +86-971-4385446
  • fax-no: +86-971-4385446
  • country: CN
  • mnt-by: MAINT-CNCGROUP-QH
  • last-modified: 2009-12-18T07:33:26Z
  • route: 139.170.0.0/16
  • descr: China Unicom Qinghai Province Network
  • country: CN
  • origin: AS4837
  • mnt-by: MAINT-CNCGROUP-RR
  • last-modified: 2011-03-23T06:06:02Z

Links to attack logs

****** ****** ******

Share on: