47.98.245.42 Threat Intelligence and Host Information

Aug 16, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 47.98.245.42 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

Tags: awsbah, bruteforce, cyber security, ioc, malicious, Nextray, phishing, redis, tsec
View other sources: Spamhaus VirusTotal

Country: China
Network:
Noticed: 47 times
Protocols Attacked: redis
Countries Attacked: Bahrain, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
Passive DNS Results: www.zhangls.xyz zhangls.xyz

Open Ports Detected

10000 10001 10011 10030 10033 10035 10042 10049 10081 10090 10093 10134 1023 10250 1028 1029 104 10443 10554 1080 10909 10911 10934 11000 111 11112 11288 113 11300 1153 1200 12001 12084 12118 12120 12137 12149 12162 12194 12201 12208 12212 12218 12225 12229 12244 12261 12262 12276 12283 12285 12293 12301 12317 12339 12369 12379 12388 12410 12440 12458 12463 12476 12493 12504 12521 12542 12545 12547 12565 12573 12579 1283 13333 135 1387 14082 1414 1433 14330 14344 1458 1459 1460 15 15018 1515 1521 1588 1599 16008 16031 1604 16057 16075 16076 16082 16086 16095 17 1723 175 179 1800 18003 18009 1801 18011 18024 18045 18067 18075 18080 18101 18245 1883 19 1911 1926 1947 1962 1966 1982 1985 1988 19999 2000 20000 2002 2003 20040 2008 20151 2018 20202 20256 2030 2059 2067 2068 2070 2081 2087 20880 20894 21025 2109 21100 2121 21240 21244 21245 21250 21257 21266 21273 2130 21304 21328 21379 2154 22022 221 22556 22609 2266 22705 23 23023 23084 2323 234 2344 2376 2404 243 2455 25 25001 25005 2548 2551 25565 25782 2626 2628 27015 27017 2762 28015 30001 30002 30003 3001 30010 30025 3004 3008 30112 30473 3062 3072 3073 3079 3080 3096 3109 3112 31337 3143 3151 3156 3184 32101 3260 3268 3299 33060 3310 3389 3409 3479 35000 3551 3553 3558 3563 3580 36501 36505 3780 3790 389 4000 40029 4022 4023 4064 4100 4150 4155 4157 41800 4242 427 4282 43 43009 4321 4369 44158 44301 44309 44310 4432 4435 444 4443 4457 4463 447 4500 45001 45006 4506 4545 46001 4620 465 47990 48018 4899 49 4911 4949 50000 50008 5001 5006 5007 5009 5010 50102 502 5025 50257 503 513 515 5150 5172 5201 5222 5226 5253 5264 5265 5275 53 53200 54138 5432 548 5495 55000 5503 55388 55481 55553 55554 55555 5595 5603 5609 5640 5672 5673 57778 587 5906 5920 5938 5986 60000 6001 60021 60023 6003 6005 6009 60129 6022 6161 61616 62443 63260 636 6379 6503 6543 6601 6622 6650 6653 666 6661 6667 6697 6775 70 7001 7020 7070 7078 7080 7084 7218 7283 7434 7480 7493 7548 7634 7788 7799 789 79 8013 8021 8022 8048 8075 808 8080 8081 8089 8097 8099 811 8122 8124 8126 8139 8140 8149 8150 8179 8193 8200 8239 8252 8385 8407 8433 8443 8456 8467 8494 8500 8505 8515 8531 8551 8554 8557 8566 8567 8575 8591 8593 8602 8605 8649 8728 8733 8789 8810 8812 8815 8826 8834 8835 8873 8880 8884 8901 8906 8990 8999 9001 9002 9019 9031 9033 9051 9091 9095 9113 9124 9129 9131 9134 9147 9149 9151 9160 9165 9173 9176 9195 9198 9199 9201 9202 9215 9245 9247 9273 9280 9333 9398 9399 9418 9455 947 9530 9600 9633 9658 97 9700 9761 9803 9888 9898 990 9919 993 9930 9939 995 998 9998 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2010-4478 CVE-2010-4755 CVE-2010-5107 CVE-2011-4327 CVE-2011-5000 CVE-2012-0814 CVE-2014-1692 CVE-2014-2532 CVE-2014-2653 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2016-0777 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2016-1908 CVE-2016-20012 CVE-2016-3115 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-16905 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2024-6387 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

NetRange: 47.98.0.0 - 47.112.255.255
CIDR: 47.98.0.0/15, 47.100.0.0/14, 47.104.0.0/13, 47.112.0.0/16
NetName: APNIC
NetHandle: NET-47-98-0-0-1
Parent: NET47 (NET-47-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2015-04-01
Updated: 2015-04-01
Ref: https://rdap.arin.net/registry/ip/47.98.0.0
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
inetnum: 47.98.0.0 - 47.99.255.255
netname: ALISOFT
descr: Aliyun Computing Co., LTD
descr: 5F, Builing D, the West Lake International Plaza of S&T
descr: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
country: CN
admin-c: ZM1015-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
tech-c: ZM875-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-ALISOFT-CN
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
last-modified: 2023-11-28T00:58:18Z
irt: IRT-ALISOFT-CN
address: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
e-mail: didong.jc@alibaba-inc.com
abuse-mailbox: didong.jc@alibaba-inc.com
admin-c: ZM877-AP
tech-c: ZM877-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2021-09-05T23:38:36Z
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2024-07-30T11:55:46Z
person: Li Jia
address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
country: CN
phone: +86-0571-85022088
e-mail: jiali.jl@alibaba-inc.com
nic-hdl: ZM1015-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:12:42Z
person: Guoxin Gao
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen’er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: anti-spam@list.alibaba-inc.com
nic-hdl: ZM875-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2014-07-30T01:56:01Z
person: security trouble
e-mail: abuse@alibaba-inc.com
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
last-modified: 2025-07-01T07:06:11Z
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen’er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: abuse@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-07-01T07:05:46Z
route: 47.98.0.0/15
descr: Hangzhou Alibaba Advertising Co.,Ltd.
country: CN
origin: AS37963
mnt-by: MAINT-CNNIC-AP
last-modified: 2019-08-07T23:28:06Z

Links to attack logs

awsbah-redis-bruteforce-ip-list-2022-04-22 ****** ****** ******

Share on: