202.5.18.148 Threat Intelligence and Host Information

Apr 15, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 202.5.18.148 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

  • JARM: 29d29d00029d29d22c29d29d29d29d6a7bd8f51d54bfc07e1cd34e5ca50bb3

  • View other sources: Spamhaus VirusTotal

  • Country: United States
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: ofcosh.com wenorehomevip.com laikeqiangpu.com meijialu888.com billionsgift.com xuegefoods.com hansenmu-plastic.com cfcysy.com llysca.com www.315ulike.com truck-wheel.com www.truck-wheel.com 315ulike.com www.sg-wall.com sg-wall.com poshun1208.com bobolee1208.com wrolem.com eftprintsb.com hktthbkj.com xingzhihuatai.com ruilingtech.com www.iswiitech.com arunners.com www.mangogarment.com mangogarment.com iswiitech.com popityhome.shop larmliss.com xingzuo199581.com hailongking.com www.iyumuaua.com youqingmao.com www.angteela.com duodianzhenpin.xyz wujiyunkeji.xyz oktsun.com shuzizhihui.xyz rcmamakaop.com carmenouto.com nofvip.top yeskyeshop.com angteela.com hzcxj.com yiguotea.com kouqiya.com fabrictextile-dy.com wwwgztyscy.com xiangzhifu.xyz dongshanwotu.xyz huituoke.xyz taifodaofa.com lysy9.com jinhua-yc.com sanwenmark.com wanlchem.com www.wanlchem.com dingyongshihua.com wellyep.com eftfastprinting.com xinyu16899.com lecoverstore.com rulefiss.store andfive.store chalvhstore.com iyumuaua.com twgdhco.com ankepaz.com newrgygroup.com sundesk163.com lqmie.com www.lqmie.com chicfloriststudio.com 91xzxm001.com www.91xzxm001.com 91xzxm003.com www.91xzxm003.com www.91xzxm002.com 91xzxm002.com 91fengliuo.com

Open Ports Detected

22 3306 6588 6688

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465

Map

Whois Information

  • inetnum: 202.5.16.0 - 202.5.31.255
  • netname: STUB-202-5-16SLASH20
  • descr: Transferred to the ARIN region on 2016-06-20T22:38:28Z.
  • country: ZZ
  • admin-c: STUB-AP
  • tech-c: STUB-AP
  • abuse-c: AS2444-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-STUB
  • mnt-irt: IRT-STUB-AP
  • last-modified: 2023-05-17T13:13:16Z
  • irt: IRT-STUB-AP
  • address: N/A
  • e-mail: no-email@apnic.net
  • abuse-mailbox: no-email@apnic.net
  • admin-c: STUB-AP
  • tech-c: STUB-AP
  • mnt-by: APNIC-HM
  • last-modified: 2024-01-24T04:04:44Z
  • role: ABUSE STUBAP
  • address: N/A
  • country: ZZ
  • phone: +000000000
  • e-mail: no-email@apnic.net
  • admin-c: STUB-AP
  • tech-c: STUB-AP
  • nic-hdl: AS2444-AP
  • abuse-mailbox: no-email@apnic.net
  • mnt-by: APNIC-ABUSE
  • last-modified: 2024-01-24T04:05:14Z
  • person: STUB PERSON
  • address: N/A
  • country: ZZ
  • phone: +00 0000 0000
  • e-mail: no-email@apnic.net
  • nic-hdl: STUB-AP
  • mnt-by: APNIC-HM
  • last-modified: 2019-09-23T04:53:33Z

Links to attack logs

****** ****** ******

Share on: