162.218.28.61 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 162.218.28.61 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: 23694.vip jj00.vip hh00.vip mm00.vip www.0733.vip 030651.cc www.032906.com www.036651.com 96314.vip www.030303.vip www.032603.com 030151.cc 03236.vip 030551.cc www.03881.vip 9493.vip 0733.vip 0058.vip 7875.vip www.033768.com 99203.com 080351.cc 903.app 803.app 03266.vip www.030851.cc 030851.cc 05166.vip www.036639.com 45257.vip 036685.com 036678.com 036651.com 036686.com 036658.com 036639.com 036696.com 036695.com 036652.com 036681.com 038859.com 036665.com 036659.com 036635.com 036636.com 036689.com 23156.vip www.080351.cc www.036635.com www.036696.com www.033767.com www.036678.com 0336.app 503.app www.503.app 030303.vip 33903.com 030356.net 030658.net 030358.net 031352.net 030652.net 030751.net 070351.net 080351.net 030851.net 030251.net 033768.com 033774.com 033764.com 033767.com 033763.com 033769.com 032603.com 032903.com 032933.com 032906.com

Open Ports Detected

22 443 80

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2024-6387 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

• NetRange: 162.218.28.0 - 162.218.31.255
• CIDR: 162.218.28.0/22
• NetName: ANT-CLOUD
• NetHandle: NET-162-218-28-0-1
• Parent: NET162 (NET-162-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: QFISP LLC (QL-10)
• RegDate: 2013-07-31
• Updated: 2018-04-23
• Comment: http://www.qfisp.com
• Comment: Standard NOC hours are 7am to 11pm EST
• Ref: https://rdap.arin.net/registry/ip/162.218.28.0
• OrgName: QFISP LLC
• OrgId: QL-10
• Address: 48233 Warm Springs Blvd
• City: Fremont
• StateProv: CA
• PostalCode: 94539
• Country: US
• RegDate: 2013-07-08
• Updated: 2018-04-23
• Comment: Standard NOC hours are 7am to 11pm EST
• Ref: https://rdap.arin.net/registry/entity/QL-10
• OrgTechHandle: QNOC1-ARIN
• OrgTechName: QFISP Network Operations Center
• OrgTechPhone: +1-510-213-8099
• OrgTechEmail: kefu@qfisp.com
• OrgTechRef: https://rdap.arin.net/registry/entity/QNOC1-ARIN
• OrgAbuseHandle: QNOC1-ARIN
• OrgAbuseName: QFISP Network Operations Center
• OrgAbusePhone: +1-510-213-8099
• OrgAbuseEmail: kefu@qfisp.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/QNOC1-ARIN
• NetRange: 162.218.28.56 - 162.218.28.63
• CIDR: 162.218.28.56/29
• NetName: FAN-RUISHENG
• NetHandle: NET-162-218-28-56-1
• Parent: ANT-CLOUD (NET-162-218-28-0-1)
• NetType: Reassigned
• OriginAS:
• Customer: Fan Ruisheng (C04809267)
• RegDate: 2013-12-12
• Updated: 2013-12-12
• Ref: https://rdap.arin.net/registry/ip/162.218.28.56
• CustName: Fan Ruisheng
• Address: huicheng qu,jiao shi xin chun B-1 dong 1900
• City: Huizhou
• StateProv: GUANGDONG
• PostalCode: 516003
• Country: CN
• RegDate: 2013-12-12
• Updated: 2013-12-12
• Ref: https://rdap.arin.net/registry/entity/C04809267
• OrgTechHandle: QNOC1-ARIN
• OrgTechName: QFISP Network Operations Center
• OrgTechPhone: +1-510-213-8099
• OrgTechEmail: kefu@qfisp.com
• OrgTechRef: https://rdap.arin.net/registry/entity/QNOC1-ARIN
• OrgAbuseHandle: QNOC1-ARIN
• OrgAbuseName: QFISP Network Operations Center
• OrgAbusePhone: +1-510-213-8099
• OrgAbuseEmail: kefu@qfisp.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/QNOC1-ARIN