207.148.36.234 Threat Intelligence and Host Information

Apr 21, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 207.148.36.234 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • JARM: 2ad2ad16d2ad2ad22c2ad2ad2ad2adc80334825071f8ff93376ac14c5a331f

  • View other sources: Spamhaus VirusTotal

  • Country: Hong Kong
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: yinhe9998888yh.com hhd88.xyz hc6678.xyz 8876js.xyz 88dd8.xyz 6aa88.xyz js665.xyz 78hk.xyz 66kk7.xyz hc6678.icu 66kk7.icu 66aa8.icu js665.icu 78hk.icu 1hz8899.com fhzz.shop fhzz.online yhzvip.com bomao003.com bomao002.com 2hzvip.com 2hzsvip.com 1hzsvip.com 1hzvip.com fhzz2024.com boyuyouxi.com boyu004.com boyu006.com boyu003.com boyu005.com boyu5632admin.com boyu002.com ioosycvl.cc mde3rh.vip ob3bvrd2.cc 91rz8w19.cc tg3r2g.vip mlacqx.vip erbn5h.vip l2fw1ley.cc kwijh7.vip shj9ixde.cc 4hx2zst1.cc xq7t5j.vip 6hrut3dj.cc qwz4ocgf.cc 4b886c.vip 1znb0q.vip df0ljrep.cc xwfncn.com dvjx38.com z1glcw.com 7d0i7b.com kurde.vip dhnug.vip rpccu.vip smdgk.vip xppb3.com c2y9n.com vu7th.com 6vm87.com 22319.com 66836.com www.22319.com www.22516.com 22516.com www.15311.com www.83799.com www.66836cc.com 66836hh.com www.66836bb.com www.66836hh.com www.66836pp.com 66836pp.com www.66836oo.com 66836oo.com www.42977.com www.06400.com 66836cc.com www.09400.com 42977.com 66836qq.com 83799.com 15311.com 66836aa.com www.66836qq.com www.66836aa.com www.66836gg.com 66836gg.com www.42077.com 42077.com 09400.com 66836bb.com www.66836.com www.15211.com 06400.com 15211.com 66836w.com 66836h.com 66836o.com 66836r.com 66836u.com 66836t.com 66836l.com 66836f.cc 66836a.cc 66836g.cc 66836c.cc 88360ccwww66836com.com 88350ccwww66836com.com 88340ccwww66836com.com 66836d.cc 66836e.cc www.06400.cc 06400a.com www.09400a.com 888168.cc h5h5.88340ccwww66836com.com 09400b.com www.09400b.com www.888168.cc www.15311a.com 06400b.com www.09400.cc www.888188.cc 66836e.com 66836x.com 09400a.com 09400.cc h5h5.88360ccwww66836com.com 06400.cc 66836k.com www.06400a.com www.15311b.com 66836c.com 66836g.com 15311a.com 66836a.com 66836b.com www.09400c.com 66836n.com www.06400c.com 66836f.com www.15311c.com 888188.cc 15311c.com www.06400b.com h5h5.88350ccwww66836com.com 09400c.com 15311b.com 66836m.com 66836s.com 06400c.com 66836q.com 907808.com 780626.com v073lxh.yunjidns8.com 668039.com jlb696609.com 716606.com 896609.com jlbbet.com 506616.com 303225.com 695505.com 559059.com 696609.com w271guy.yunjidns8.com

Open Ports Detected

80

Map

Whois Information

  • NetRange: 207.148.32.0 - 207.148.47.255
  • CIDR: 207.148.32.0/20
  • NetName: APNIC
  • NetHandle: NET-207-148-32-0-1
  • Parent: NET207 (NET-207-0-0-0-0)
  • NetType: Early Registrations, Transferred to APNIC
  • OriginAS:
  • Organization: Asia Pacific Network Information Centre (APNIC)
  • RegDate: 2018-01-11
  • Updated: 2018-01-11
  • Ref: https://rdap.arin.net/registry/ip/207.148.32.0
  • OrgName: Asia Pacific Network Information Centre
  • OrgId: APNIC
  • Address: PO Box 3646
  • City: South Brisbane
  • StateProv: QLD
  • PostalCode: 4101
  • Country: AU
  • RegDate:
  • Updated: 2012-01-24
  • Ref: https://rdap.arin.net/registry/entity/APNIC
  • OrgTechHandle: AWC12-ARIN
  • OrgTechName: APNIC Whois Contact
  • OrgTechPhone: +61 7 3858 3188
  • OrgTechEmail: search-apnic-not-arin@apnic.net
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • OrgAbuseHandle: AWC12-ARIN
  • OrgAbuseName: APNIC Whois Contact
  • OrgAbusePhone: +61 7 3858 3188
  • OrgAbuseEmail: search-apnic-not-arin@apnic.net
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • inetnum: 207.148.32.0 - 207.148.47.254
  • netname: DNC-HK
  • descr: DNC-HK
  • country: HK
  • admin-c: DNCL1-AP
  • tech-c: DNCL1-AP
  • abuse-c: AD934-AP
  • status: ALLOCATED NON-PORTABLE
  • mnt-by: MAINT-DNC-HK
  • mnt-irt: IRT-DNC-HK
  • last-modified: 2021-01-26T21:43:18Z
  • irt: IRT-DNC-HK
  • address: SONG LING IND BLDG, TA CHUEN PING ST KWAI CHUNG NT, HONG KONG
  • e-mail: netadm@dimensionet.com
  • abuse-mailbox: abuse@dimensionet.com
  • admin-c: DNCL1-AP
  • tech-c: DNCL1-AP
  • mnt-by: MAINT-DNC-HK
  • last-modified: 2025-01-14T13:17:00Z
  • role: ABUSE DNCHK
  • country: ZZ
  • address: SONG LING IND BLDG, TA CHUEN PING ST KWAI CHUNG NT, HONG KONG
  • phone: +000000000
  • e-mail: netadm@dimensionet.com
  • admin-c: DNCL1-AP
  • tech-c: DNCL1-AP
  • nic-hdl: AD934-AP
  • abuse-mailbox: abuse@dimensionet.com
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-01-14T13:17:23Z
  • role: Dimension Network Communication Limited administ
  • address: SONG LING IND BLDG, TA CHUEN PING ST KWAI CHUNG NT,, HONG KONG, Hong Kong
  • country: HK
  • phone: +852-2169-0183
  • fax-no: +852-2169-0599
  • e-mail: abuse@dimensionet.com
  • admin-c: DNCL1-AP
  • tech-c: DNCL1-AP
  • nic-hdl: DNCL1-AP
  • mnt-by: MAINT-DNC-HK
  • last-modified: 2022-04-12T05:17:36Z

Links to attack logs

****** ****** ******

Share on: