148.66.57.67 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 148.66.57.67 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 7/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: Hong Kong
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: hzhengwangqq.com hengzxueqiu.com hengzwangw.com hengzhengwww.com hengzwangvvip.com hengzwangww.com hengzhengwangh.com hengzhengwangk.com www.hengzhengwangaa.com hengzhengwangaa.com hengzhengskfd.com micachengzhengd.com pocinmhengzheng.com bkpzfhengzheng.com zpoeihengzheng.com hzw118.com hzw007.com hzw009.com hzw005.com hzw010.com hzw004.com hzw003.com hzw002.com hzw006.com hzw008.com hengzhengwangi.com hengzhenghengwangw.com hengzhenghengwang.com hzhengwangww.com hengzwangvip.com hengzhengwang.com hengzhengww.com hzhengwangp.com hzhengwangt.com hzhengwangw.com hzhengwangq.com hengzhengwangb.com dzhengwang.com adsfgerytwe.adjkgajfdgjl.com daozhengxueqiu.com www.daozhengxueqiu.com daozhengwangi.com daozhengwanga.com daozhengwang.com daozhengwangz.com daozhengwangp.com daozhengdownloadd.com daozhengdw.com daozhengwangq.com www.daozhengwangq.com daozhengwangj.com www.daozhengwangj.com www.refengwangj.com refengwangj.com refengwangz.com rfengwang.com rfengwangw.com rfengwangq.com www.refengdw.com cyuanwangp.com www.adgaergdf.ajkldfjhalfjhlj.com adgaergdf.ajkldfjhalfjhlj.com www.refengwangp.com www.refengwangk.com cyuanwangq.com cyuanwangz.com cyuanwangw.com cyuanwangx.com www.cyuanwangm.com cyuanwangm.com www.cyuanwangc.com cyuanwangc.com chuangyuanwangp.com chuangyuanwangq.com chuangyuanwangw.com zhenghuaw168.com zhenghuawang998.com zhenghuawang888.com cyuanwang158.com cyuanwang.net cyuanwang.cn www.cyuanwang.cn cywwww.com chuanyuanw.com chuangywang.com www.chuangyuanw.com chuangyuanw.com www.chuangyuanwang.com chuangyuanwang.com www.cywanw.com cywanw.com zhwang998.cn www.zhwang998.cn www.zhwang158.com zhwang188.com web.zhwang188.com zhwang158.com web.zhwang158.com zhenghw158.net zhenghw158.com zhenghw688.com zhenghw188.com www.zhenghw188.com www.zhenghuawang198.com zhenghuawang198.com www.zhenghw168.com zhenghw168.com zhenghuaw998.com www.zhenghuaw998.com zhenghuawang988.com www.zhenghuawang988.com zhenghuaw668.com zhenghuaw.com zhenghuaw988.com www.zhenghuaw988.com www.zhenghuaw188.com zhenghuaw188.com www.zhenghuaw888.com zhenghuaw888.com zhenghuaw988.net www.zhenghuaw988.net zhenghuaw888.net zhenghuawang888.net zhenghuaw688.net zhenghuawang668.net zhenghuawang168.net zhenghuaw188.net zhenghuawang688.net zhenghua188.net zhenghuawang188.net www.ddwang668.net ddwang668.net duodew188.net duodewang688.net www.duodewang688.net duodewang168.net duodewang118.net www.duodewang118.net duodewang168.com www.duodewang168.com www.duodewang688.com duodewang688.com ecajdkjiwerkl.duodewang188.com duodewang.com www.duodewang.com wdkgreo894745.duodekefuadk.com horsegrouptest.com

Malware Detected on Host

Count: 2 564d1ab627054d3bd119d88c9a245bb4dd97d977eec7e3d9bdf98d52b739e178 dd88f19bc4b192de99c3b6e3bdee9b025c3e15b7e29553e96ea87a98f11d590b

Map

Whois Information

• NetRange: 148.66.48.0 - 148.66.63.255
• CIDR: 148.66.48.0/20
• NetName: APNIC
• NetHandle: NET-148-66-48-0-1
• Parent: NET148 (NET-148-0-0-0-0)
• NetType: Early Registrations, Transferred to APNIC
• OriginAS:
• Organization: Asia Pacific Network Information Centre (APNIC)
• RegDate: 2017-06-27
• Updated: 2017-06-27
• Ref: https://rdap.arin.net/registry/ip/148.66.48.0
• OrgName: Asia Pacific Network Information Centre
• OrgId: APNIC
• Address: PO Box 3646
• City: South Brisbane
• StateProv: QLD
• PostalCode: 4101
• Country: AU
• RegDate:
• Updated: 2012-01-24
• Ref: https://rdap.arin.net/registry/entity/APNIC
• OrgTechHandle: AWC12-ARIN
• OrgTechName: APNIC Whois Contact
• OrgTechPhone: +61 7 3858 3188
• OrgTechEmail: search-apnic-not-arin@apnic.net
• OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
• OrgAbuseHandle: AWC12-ARIN
• OrgAbuseName: APNIC Whois Contact
• OrgAbusePhone: +61 7 3858 3188
• OrgAbuseEmail: search-apnic-not-arin@apnic.net
• OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
• inetnum: 148.66.52.0 - 148.66.62.255
• netname: Netsec
• descr: Netsec
• country: TW
• admin-c: NN541-AP
• tech-c: NN541-AP
• abuse-c: AD748-AP
• status: ALLOCATED NON-PORTABLE
• mnt-by: MAINT-DATAPLUGS-HK
• mnt-irt: IRT-DATAPLUGS-HK
• last-modified: 2025-05-19T04:13:50Z
• irt: IRT-DATAPLUGS-HK
• address: Unit 8, 26/F, Billion Plaza,, 8 Cheung Yue St, Cheung Sha Wan,, Kowloon, Hong Kong
• e-mail: abuse@dataplugs.com
• abuse-mailbox: abuse@dataplugs.com
• admin-c: DLA5-AP
• tech-c: DLA5-AP
• mnt-by: MAINT-DATAPLUGS-HK
• last-modified: 2025-09-03T04:46:17Z
• role: ABUSE DATAPLUGSHK
• country: ZZ
• address: Unit 8, 26/F, Billion Plaza,, 8 Cheung Yue St, Cheung Sha Wan,, Kowloon, Hong Kong
• phone: +000000000
• e-mail: abuse@dataplugs.com
• admin-c: DLA5-AP
• tech-c: DLA5-AP
• nic-hdl: AD748-AP
• abuse-mailbox: abuse@dataplugs.com
• mnt-by: APNIC-ABUSE
• last-modified: 2025-07-29T13:43:41Z
• role: NETSEC NOC
• address: Suite 1007, 10/F, The Bay Hub, 17 Kai Cheung Rd, Kowloon Bay
• country: HK
• phone: +85227511100
• e-mail: noc@netsec.com
• admin-c: NN541-AP
• tech-c: NN541-AP
• nic-hdl: NN541-AP
• mnt-by: MAINT-NETSEC-HK
• last-modified: 2025-03-14T05:55:40Z
• route: 148.66.57.0/24
• origin: AS45753
• descr: Dataplugs Limited
• mnt-by: MAINT-DATAPLUGS-HK
• last-modified: 2021-10-19T04:33:56Z
• route: 148.66.57.0/24
• origin: AS9744
• descr: Dataplugs Limited
• mnt-by: MAINT-DATAPLUGS-HK
• last-modified: 2021-11-03T08:37:59Z

Links to attack logs

****** ****** ******