203.218.162.57 Threat Intelligence and Host Information

Dec 16, 2024 ipinfopage

General

IP Address

203.218.162.57

IPv4 Address

Location

🇭🇰 Central, Hong Kong

Network

AS4760

HKT Limited

Threat Score

61/100

High Risk

cowriemaliciousportscansftpssh

Attack Intelligence

MITRE ATT&CK Techniques

T1078 - Valid Accounts, T1083 - File and Directory Discovery, T1098.004 - SSH Authorized Keys, T1105 - Ingress Tool Transfer, T1110.004 - Credential Stuffing, T1110 - Brute Force

Open Ports Detected

1723

Geographic Location

Country

Hong Kong

City

Central

Region

Central and Western District

Coordinates

22.2908, 114.1501

Network Information

ASN

AS4760

Organization

HKT Limited

Network

AS4760 HKT Limited

WHOIS Information

inetnum

203.218.128.0 - 203.218.255.255

netname

NETVIGATOR

descr

PCCW IMS Limited

country

admin-c

WC109-AP

tech-c

WC109-AP

abuse-c

AH981-AP

status

ASSIGNED NON-PORTABLE

mnt-by

MAINT-HK-IMS-CS

mnt-lower

MAINT-HK-IMS-CS

mnt-routes

MAINT-HK-IMS-WILSON

mnt-irt

IRT-HKTIMS-HK

last-modified

2020-09-28T01:46:02Z

irt

IRT-HKTIMS-HK

address

Hong Kong

e-mail

pmaster@netvigator.com

abuse-mailbox

noc@imsbiz.com

role

NETVIGATOR ADMINISTRATORS

phone

+852-2888-2888

nic-hdl

NA45-AP

route

203.218.162.0/24

origin

AS4760

Attack Logs

Date	Target Location	Protocol	Link
2024-11-25	Perth, Australia	MULTIPLE	View Log

Country: Hong Kong
Network:
Noticed: 3 times
Protocols Attacked: SSH
Countries Attacked: Poland, Sweden
Passive DNS Results: pcd372057.netvigator.com

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2019-16905 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767

Disclaimer

This page contains threat intelligence information for the IPv4 address 203.218.162.57 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.