157.255.5.200 Threat Intelligence and Host Information

Apr 07, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 157.255.5.200 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • Country: China
  • Network: AS136958 china unicom guangdong ip network
  • Noticed: 1 times
  • Protocols Attacked: SSH

Malware Detected on Host

Count: 19 a76c4817c70c5255e69003c6028a084bf12bcb6f60b6dbe5eb99823d49240a98 d6fa82ecd918aec5b5ac3027ad81805dd23e8ce62a2e788bffb206f0c4d07a78 6fc6a1d7cae0c39efd2b5adf11860b93dca44216e51f8a464ca436d6d73533c6 b49e56b5af26938303ae8b1d849ad0266494d5cfd7764aabedebbfe43193c099 cd2a59a565b5ee24b788642ae0432568b92281a798cc0d51f44881c3faefc2fc 2985b78056527d9415cddb0c1422f38dbe0d6f221f222fe82f93427b7ccc6a66 8c0d3278458929b78449ded661562690e021844cca25adee9280fa3b0c8eaaa0 78a08d54ffb4badd54f018443503b6cce3708da85a743cc41649ba010ea6e436 e76782e9e5e6f5dddd34bf8f32d9e6b6f5016a1f5b352fdd37c4f35adc1c2b56 34d8219099c46283dfe61f2de5d9831a228f44bbcea84c7105c7154bdfee96be

Open Ports Detected

25

Map

Whois Information

  • NetRange: 157.255.0.0 - 157.255.255.255
  • CIDR: 157.255.0.0/16
  • NetName: APNIC-ERX-157-255-0-0
  • NetHandle: NET-157-255-0-0-1
  • Parent: NET157 (NET-157-0-0-0-0)
  • NetType: Early Registrations, Transferred to APNIC
  • OriginAS:
  • Organization: Asia Pacific Network Information Centre (APNIC)
  • RegDate: 2010-11-03
  • Updated: 2010-11-17
  • Comment: This IP address range is not registered in the ARIN database.
  • Comment: This range was transferred to the APNIC Whois Database as
  • Comment: part of the ERX (Early Registration Transfer) project.
  • Comment: For details, refer to the APNIC Whois Database via
  • Comment:
  • Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
  • Comment: for the Asia Pacific region. APNIC does not operate networks
  • Comment: using this IP address range and is not able to investigate
  • Comment: spam or abuse reports relating to these addresses. For more
  • Ref: https://rdap.arin.net/registry/ip/157.255.0.0
  • OrgName: Asia Pacific Network Information Centre
  • OrgId: APNIC
  • Address: PO Box 3646
  • City: South Brisbane
  • StateProv: QLD
  • PostalCode: 4101
  • Country: AU
  • RegDate:
  • Updated: 2012-01-24
  • Ref: https://rdap.arin.net/registry/entity/APNIC
  • OrgAbuseHandle: AWC12-ARIN
  • OrgAbuseName: APNIC Whois Contact
  • OrgAbusePhone: +61 7 3858 3188
  • OrgAbuseEmail: search-apnic-not-arin@apnic.net
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • OrgTechHandle: AWC12-ARIN
  • OrgTechName: APNIC Whois Contact
  • OrgTechPhone: +61 7 3858 3188
  • OrgTechEmail: search-apnic-not-arin@apnic.net
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • inetnum: 157.255.0.0 - 157.255.255.255
  • netname: UNICOM-GD
  • descr: China Unicom Guangdong province network
  • descr: China Unicom
  • country: CN
  • admin-c: CH1302-AP
  • tech-c: RP181-AP
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-CNCGROUP-GD
  • mnt-routes: MAINT-CNCGROUP-RR
  • mnt-irt: IRT-CU-CN
  • status: ALLOCATED PORTABLE
  • last-modified: 2016-05-04T00:30:22Z
  • irt: IRT-CU-CN
  • address: No.21,Financial Street
  • address: Beijing,100033
  • address: P.R.China
  • e-mail: zhaoyz3@chinaunicom.cn
  • abuse-mailbox: zhaoyz3@chinaunicom.cn
  • admin-c: CH1302-AP
  • tech-c: CH1302-AP
  • mnt-by: MAINT-CNCGROUP
  • last-modified: 2023-11-22T07:54:46Z
  • person: ChinaUnicom Hostmaster
  • nic-hdl: CH1302-AP
  • e-mail: hqs-ipabuse@chinaunicom.cn
  • address: No.21,Jin-Rong Street
  • address: Beijing,100033
  • address: P.R.China
  • phone: +86-10-66259764
  • fax-no: +86-10-66259764
  • country: CN
  • mnt-by: MAINT-CNCGROUP
  • last-modified: 2017-08-17T06:13:16Z
  • person: runkeng pan
  • nic-hdl: RP181-AP
  • e-mail: gdipnoc@chinaunicom.cn
  • address: XinShiKong Plaza,No 666 Huangpu Rd. Guangzhou 510627,China
  • phone: +86-20-22214174
  • fax-no: +86-20-22212266-4174
  • country: CN
  • mnt-by: MAINT-CNCGROUP-GD
  • last-modified: 2015-12-16T03:32:02Z
  • route: 157.255.0.0/18
  • descr: China Unicom CHINA169 Guangdong Network
  • country: CN
  • origin: AS136958
  • mnt-by: MAINT-CNCGROUP-RR
  • last-modified: 2018-10-19T03:20:03Z

Links to attack logs

****** ****** ******

Share on: