208.81.166.94 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 208.81.166.94 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: www.lxlds.cn www.awer.cn henhaoji.cn gzxrsm.com nbhzc.com lingbou.asia top9527.com zijiecapital.com njrzh.com.cn njusmt.com homsune.com 3um.xyz hankoufund.com goodjoblist.com yiweieducation.com www.999t8.com lyjxgy.com nbhuajian.com tgcad.com chenboting.com hbrenmu.com yydlpcb.com 1024c.live piaopiaom.top chenwn.com zs-jiaxin.com www.liuruitest.cn www.liurui123.love rhtxf.com www.gdtaijiguan.cn gdtaijiguan.cn zhongjiaoyihang.com www.zhongjiaoyihang.com chhelloworld.asia 96186.net gtjyw.net sgr.asia pxxxhxx.com www.meetwan.com nbwansen.com gzjjswl.com iyuye.com xiaoqiu.asia jinzhouwangluo.com www.sd-haiyue.com hpdz17.com mayapackaging.com gzsjrzs.com www.enuo.cc enuo.cc mishengyu.com evshining.com dayz.run www.dayz.run www.45635.com czzcc.top shkuboo.com www.cicgg.com cicgg.com xg18.top huxqiray.top 820z.com mojizai.store szyxys168.com e0215.com fycion.com nauxiu.ltd examorg.top qndianli.com royaler.top yuan33.com hxkjzl.com hwke.cn 89jxc.com f0753.com hgpm.net 45635.com thshuibeng.com gdvolcano.com fofagency.com vip-sauna.com 72hotel.com xmxsz.com huaiit.com eouchina.com sdsuxin.com zjzygc.com 1047.net amitchem.com xuxiaohang.com hnthpump.com con-than.com www.thshuibeng.com shaantong.com wenjing1998.xyz liyaozong.xyz zhenteliu.vip jianglai.live heyuhang.live aric.club baiwu.net szjsxjm.com zhaoxiaohan.com ly-optic.com ledkjg.com hantingren.com money52.cn 0539buxiugang.com xy12345.xyz jingcanglass.com wrspm.com 0558RENCAI.COM HBXINYOU.NET china-tianyou.cn u108.cn MALL-BRAND.COM atue.net jinrongpeitao.cn chinaringcom.com bilili.top jiarenruanjian.com cftianshi.cc xn–2qqw1jn0e23chrcv6am5ijrhf2eox4m.xn–fiqs8s szhljc.com 3d-tex.com www.3d-tex.com

Open Ports Detected

80

CVEs Detected

CVE-2005-2089 CVE-2008-1446 CVE-2009-1535 CVE-2009-2521 CVE-2009-4444 CVE-2009-4445 CVE-2015-9251 CVE-2017-7269 CVE-2019-11358 CVE-2020-11022 CVE-2020-11023

Map

Whois Information

• NetRange: 208.81.164.0 - 208.81.167.255
• CIDR: 208.81.164.0/22
• NetName: CNSERVERS-PDX
• NetHandle: NET-208-81-164-0-1
• Parent: NET208 (NET-208-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS6939, AS17048
• Organization: CNSERVERS LLC (CL-17)
• RegDate: 2011-04-11
• Updated: 2012-03-02
• Ref: https://rdap.arin.net/registry/ip/208.81.164.0
• OrgName: CNSERVERS LLC
• OrgId: CL-17
• City: CLACKAMAS
• StateProv: OR
• PostalCode: 97015
• Country: US
• RegDate: 2011-03-30
• Updated: 2016-06-13
• Ref: https://rdap.arin.net/registry/entity/CL-17
• OrgNOCHandle: NOC11755-ARIN
• OrgNOCName: NOC
• OrgNOCPhone: +1-971-227-5671
• OrgNOCEmail: HOSTMASTER@cnservers.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/NOC11755-ARIN
• OrgAbuseHandle: NOC11755-ARIN
• OrgAbuseName: NOC
• OrgAbusePhone: +1-971-227-5671
• OrgAbuseEmail: HOSTMASTER@cnservers.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/NOC11755-ARIN
• OrgTechHandle: NOC11755-ARIN
• OrgTechName: NOC
• OrgTechPhone: +1-971-227-5671
• OrgTechEmail: HOSTMASTER@cnservers.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC11755-ARIN
• NetRange: 208.81.166.0 - 208.81.166.255
• CIDR: 208.81.166.0/24
• NetName: CNSERVERS-PDX
• NetHandle: NET-208-81-166-0-1
• Parent: CNSERVERS-PDX (NET-208-81-164-0-1)
• NetType: Reassigned
• OriginAS: AS174, AS6939, AS17048
• Customer: Meyu Technology INC. (C02911550)
• RegDate: 2011-12-28
• Updated: 2012-10-21
• Ref: https://rdap.arin.net/registry/ip/208.81.166.0
• CustName: Meyu Technology INC.
• Address: 921 SW Washington
• City: Portland
• StateProv: OR
• PostalCode: 97015
• Country: US
• RegDate: 2011-12-28
• Updated: 2012-10-21
• Ref: https://rdap.arin.net/registry/entity/C02911550
• OrgNOCHandle: NOC11755-ARIN
• OrgNOCName: NOC
• OrgNOCPhone: +1-971-227-5671
• OrgNOCEmail: HOSTMASTER@cnservers.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/NOC11755-ARIN
• OrgAbuseHandle: NOC11755-ARIN
• OrgAbuseName: NOC
• OrgAbusePhone: +1-971-227-5671
• OrgAbuseEmail: HOSTMASTER@cnservers.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/NOC11755-ARIN
• OrgTechHandle: NOC11755-ARIN
• OrgTechName: NOC
• OrgTechPhone: +1-971-227-5671
• OrgTechEmail: HOSTMASTER@cnservers.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC11755-ARIN

Links to attack logs

****** ****** ******