202.79.168.8 Threat Intelligence and Host Information

Apr 15, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 202.79.168.8 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 37/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: Singapore
  • Network:
  • Noticed: 30 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: gxhxv87837.vip yvsvy115368.vip wdqxk120612.vip vxyvy32775.vip dafos117990.vip bbave102258.vip mcyrv119301.vip yqzqt23598.vip yqokn82593.vip domxa66861.vip njqgl83904.vip bmlfw85215.vip gadun115368.vip bvnsw51129.vip tjiri82593.vip rdqls66861.vip wsose99636.vip xfpsg43263.vip xrjck48507.vip jnzfn117990.vip nqxrr119301.vip ekgxz97014.vip dsfwd48507.vip martf24909.vip vivxw69483.vip sqyhb38019.vip rjugx28842.vip mikfu24909.vip qdzpv69483.vip qysec14421.vip yvaaj14421.vip gdhyt47196.vip rnmox99636.vip nvrdv119301.vip eyfdp32775.vip zahpm87837.vip wjofs22287.vip rngbw24909.vip bfvve115368.vip fublb120612.vip cdfae66861.vip izhqo86526.vip iuwjq22287.vip yglle22287.vip bmglc22287.vip jtadp76038.vip bplkl32775.vip kcmfv119301.vip aafvz82593.vip sqzad32775.vip lpemw119301.vip gbdob87837.vip wbaip51129.vip kbvex23598.vip srgmx82593.vip hkqhq43263.vip xbyrf98325.vip epauo82593.vip hvato28842.vip xkbgi85215.vip dvejs97014.vip vaztp38019.vip pkcdn70794.vip tvihh32775.vip bkgtd83904.vip jcvtt115368.vip qawzd51129.vip nrkgy72105.vip cqknc64239.vip qtsfr40641.vip ngwyz83904.vip bggtg38019.vip jutcs48507.vip fmign102258.vip medfw24909.com iakeu86526.com kskxk23598.com nzfrj72105.com sddql32775.com jjkaw24909.vip rtbfx99636.vip fmxrw72105.vip koerq86526.vip leigo47196.vip llocs14421.vip hcfsa66861.vip utder28842.vip ftrps86526.vip mrmpc48507.vip ioewq82593.vip qwscal47196.vip wscoh98325.com xczem72105.com duqpf38019.com ducol82593.com dpaew69483.com cucjs115368.com vppap102258.com hinmf86526.com muksv14421.com znvax51129.com qshyk24909.com qmgik23598.com zhsat22287.com ikgvw47196.com qghvm32775.com budwf85215.com pibfg99636.com jnyau119301.com gcuej66861.com ouwix120612.com oplpy70794.com odoap48507.com equoi117990.com edrov43263.com ruzut97014.com rpsms28842.com rojws83904.com fparz87837.com ftysc72105.vip xndfe72105.vip qkmkn102258.vip tdtoo14421.vip ztjsa87837.vip nhhpf66861.vip erzad14421.vip fkzdc85215.vip frggs72105.vip hcjjd82593.vip wgftg70794.vip wuupq97014.vip gnwds24909.vip tidhy117990.vip wosak38019.vip ehcge87837.vip ndrrg51129.vip xcpjk85215.vip ydcdd24909.vip zdqhp32775.vip mujan115368.vip dlfbw23598.vip wvqxc51129.vip ocqtx32775.vip tjbuw28842.vip utvoq24909.vip xfrsa98325.vip rsphz86526.vip wiywa38019.vip bdwmo22287.vip hhhpy22287.vip cdfvn22287.vip neiss97014.vip qqcqg43263.vip njwwr98325.vip ukvyd115368.vip idklu86526.vip raucf23598.vip bmaya119301.vip emrgf69483.vip wjydw14421.vip ldpqd82593.vip bgbvl47196.vip rbffx120612.vip zwxbt85215.vip boqis99636.vip xfint98325.vip iaoom66861.vip yrcne38019.vip kgzqh117990.vip lazxa47196.vip lnkdq70794.vip dqtlt43263.vip ghgya102258.vip oshae48507.vip ggtex48507.vip uajmi102258.vip sdctr51129.vip mihfy70794.vip jinls69483.vip hkrzd22287.vip wznah120612.vip oknma119301.vip snmhq43263.vip rhbmy64239.vip zeusz99636.vip afsbo87837.vip yjecc117990.vip umwuq83904.vip ttyjt83904.vip obnew82593.vip tbkeu119301.vip gksgm99636.vip kffry47196.vip ukbxf32775.vip rsmyc23598.vip qjaxx69483.vip ezeqe66861.vip fndyp28842.vip kuudx51129.vip fgkmt28842.vip ryqyg115368.vip fclwz86526.vip jmwqd64239.vip eohoo97014.vip pgpkg83904.vip julsz48507.vip qsufm120612.vip puhqc72105.vip ikdao82593.vip jcfdd48507.vip hcert47196.com ryzqw28842.com hdwak98325.vip www.ulfnp14421.vip ulfnp14421.vip www.hdwak98325.vip xywri66861.com wmrxu51129.com wyfoi119301.com aeezt38019.com dsann28842.com dsdta32775.com cdsro86526.com mtfcc82593.com lueuu117990.com lgvvd99636.com isdxn24909.com ickqs23598.com qwbci97014.com pnaat85215.com pdqxn22287.com gsbya87837.com gtslv70794.com jstwq83904.com ohenc69483.com ozbzq64239.com oxdpk102258.com ojtja14421.com ehjob120612.com egmrl48507.com nxuxk115368.com kukpl72105.com rsfgv98325.com rjphf43263.com ffykt47196.com aqzst70794.vip twiup47196.vip xsatg28842.vip xfeba85215.vip spevo69483.vip vvauf72105.vip wqmpu86526.vip tbngm23598.vip wjdos117990.vip totgw115368.vip dated24909.vip vvdte99636.vip wxump48507.vip wzgui28842.vip video72105.vip dxjbp99636.vip dyotb51129.vip dhdyd14421.vip dluue28842.vip cvcoo66861.vip dldgf51129.vip hyarj24909.vip cmkjc99636.vip sugbz97014.vip ckvyv22287.vip ifyjg117990.vip hlebi86526.vip hyjyf69483.vip sxhax82593.vip zciep86526.vip hqzfx22287.vip vsouq38019.vip iupsg97014.vip zwmtq102258.vip hfigx69483.vip lgpic87837.vip zeudj47196.vip muswv98325.vip ltifo38019.vip qfmnl82593.vip mnivx119301.vip hpsgd72105.vip mldkq83904.vip pissn64239.vip ijiwe119301.vip mrhiu66861.vip zvcak47196.vip igoqr97014.vip ishyg85215.vip oxnyk43263.vip ilkug32775.vip bdzim115368.vip iigye64239.vip lfshp72105.vip qsxhm86526.vip oioqi22287.vip urorc87837.vip ycdlh24909.vip pxqtz83904.vip pving66861.vip bckho43263.vip pemum64239.vip uhagd83904.vip jldws120612.vip gmcst117990.vip oyvho22287.vip uzohv51129.vip egihw32775.vip npotk38019.vip euyos98325.vip nlksr102258.vip egorj48507.vip elcea32775.vip erhgv87837.vip gaisj23598.vip gzvbb23598.vip eduzu120612.vip uhtff119301.vip nmnbo43263.vip ndapb102258.vip etyvw70794.vip rzagr66861.vip fmnfh70794.vip fknrf82593.vip fgrif47196.vip khdxz85215.vip faqbp14421.vip frckz115368.vip fkfmq98325.vip kbobj48507.vip www.qopzd66861.vip qopzd66861.vip kcdda48507.vip www.kcdda48507.vip cfvbm14421.com www.odnxz72105.vip odnxz72105.vip blwxs168.com 8877hj.com 8877hj.com bbs.systemapi.cloud jianghusf.com wz.hlmyg.cn hlmyg.cn www.hlmyg.cn kumaoyuedu.xyz

Malware Detected on Host

Count: 2 a490b9517f6b932c91a78a6b4283a78ad2c38dc7e2ae2f1454d7ba9bb42f22f5 9e9faee0e1f4c3895891ef12bb12bf5b1c3958685f2e5d53606b223077ecabaa

Map

Whois Information

  • inetnum: 202.79.168.0 - 202.79.175.255
  • netname: CTG79-168-KR
  • descr: CTG Server Ltd.
  • country: KR
  • admin-c: RCPL3-AP
  • tech-c: RCPL3-AP
  • abuse-c: AC2487-AP
  • status: ALLOCATED NON-PORTABLE
  • mnt-by: MAINT-RCPL-SG
  • mnt-irt: IRT-CTG-HK
  • last-modified: 2022-03-30T17:10:01Z
  • irt: IRT-CTG-HK
  • address: 202 ,2/F Kam Sang BLDG 257,Des Voeux RD Central Hong Kong
  • e-mail: cs.mail@ctgserver.com
  • abuse-mailbox: cs.mail@ctgserver.com
  • admin-c: RCPL3-AP
  • tech-c: RCPL3-AP
  • mnt-by: MAINT-RCPL-SG
  • last-modified: 2025-01-15T01:11:37Z
  • role: ABUSE CTGHK
  • country: ZZ
  • address: 202 ,2/F Kam Sang BLDG 257,Des Voeux RD Central Hong Kong
  • phone: +000000000
  • e-mail: cs.mail@ctgserver.com
  • admin-c: RCPL3-AP
  • tech-c: RCPL3-AP
  • nic-hdl: AC2487-AP
  • abuse-mailbox: cs.mail@ctgserver.com
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-01-15T01:11:59Z
  • role: RACKIP CONSULTANCY PTE LTD administrator
  • address: 399 Chai Wan Road, Chai Wan, Hong Kong
  • country: SG
  • phone: +603-7806-1316
  • fax-no: +603-7806-1316
  • e-mail: abuse@rackip.com
  • admin-c: RCPL3-AP
  • tech-c: RCPL3-AP
  • nic-hdl: RCPL3-AP
  • mnt-by: MAINT-RCPL-SG
  • last-modified: 2021-08-30T06:13:42Z
  • route: 202.79.168.0/24
  • origin: AS152194
  • descr: RACKIP CONSULTANCY PTE. LTD.
  • mnt-by: MAINT-RCPL-SG
  • last-modified: 2024-03-31T12:40:53Z
  • route: 202.79.168.0/24
  • origin: AS64050
  • descr: RACKIP CONSULTANCY PTE. LTD.
  • mnt-by: MAINT-RCPL-SG
  • last-modified: 2020-05-20T05:25:47Z

Links to attack logs

bruteforce-ip-list-2021-02-26 ****** ****** ****** bruteforce-ip-list-2021-02-27

Share on: