47.99.114.151 Threat Intelligence and Host Information

Oct 06, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 47.99.114.151 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: awsbah, bruteforce, cyber security, ioc, malicious, Nextray, phishing, telnet, tsec

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 34 times
  • Protocols Attacked: telnet
  • Countries Attacked: Bahrain, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: www.msmy.shop mst.fqywl.com

Open Ports Detected

10000 10023 10082 10123 10134 10200 1023 1025 10380 104 10477 1080 10911 11 11000 11075 11084 11112 11180 11210 11288 11701 1177 12109 12140 12172 12180 12185 12222 12246 12337 1234 12345 12346 1235 12371 12417 12425 12441 12457 12462 12485 12491 12513 12533 12559 12563 12568 12587 13 1337 1343 1414 14147 1433 14344 1443 14909 15 154 15502 15831 16011 16039 1604 16041 16054 16095 17 1700 1723 17770 17773 17780 179 1800 18004 18039 18048 18060 18110 18245 1883 19 19000 1901 1911 1926 195 1958 2 2000 2003 20053 2008 20110 20256 20440 2053 20547 2056 2060 2080 2081 2083 2087 20880 2095 21025 21082 211 21244 21246 21253 21268 21270 2130 21302 21323 21379 2154 22000 221 2222 2250 22556 23 2323 234 2345 2376 2404 24510 25 25001 25003 25007 25084 2552 2556 25565 2567 2628 27015 2761 28015 30002 30003 3001 30027 30050 30113 3012 3066 3072 3079 3082 31001 3122 3154 3181 3260 3268 3299 3306 33060 3400 3410 34225 35000 35101 37 385 389 39001 3950 3953 40000 4043 4063 4155 4244 427 4282 4321 4369 440 44158 44307 4432 44334 4434 4439 444 4443 4451 451 4643 465 47990 48018 48888 50010 5002 5007 5009 50100 50105 502 5025 50500 50580 51007 51200 51201 5122 5135 5222 52311 5249 5255 5269 52951 5321 54138 5432 5435 5495 55443 55470 55475 55554 5568 5598 5599 5605 5640 5672 5721 57779 59012 5902 591 5918 5919 5938 5986 6001 60129 61613 61616 62016 62078 63256 6379 64477 65 6565 6580 6653 666 6667 6779 70 7001 7071 7082 7170 7548 7634 782 8004 8009 8011 8057 8085 8089 8095 8099 8101 8110 8119 8126 8128 8140 8154 8158 8200 8222 8239 8250 8282 8333 8407 8416 8422 8459 8461 8462 8464 8480 8488 85 8500 8545 8548 8553 8601 8703 873 8745 8787 8791 8820 8823 8834 8856 8857 8879 8883 9000 9001 9019 9023 9040 9042 9051 9071 9074 9081 9086 9100 9109 9131 9151 9155 9236 9280 9306 9310 9398 9418 9633 9674 9690 9696 9761 9876 9908 9990 9998 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2010-4478 CVE-2010-4755 CVE-2010-5107 CVE-2011-4327 CVE-2011-5000 CVE-2012-0814 CVE-2014-1692 CVE-2014-2532 CVE-2014-2653 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2016-0777 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2016-1908 CVE-2016-20012 CVE-2016-3115 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-16905 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

  • NetRange: 47.98.0.0 - 47.112.255.255
  • CIDR: 47.100.0.0/14, 47.112.0.0/16, 47.104.0.0/13, 47.98.0.0/15
  • NetName: APNIC
  • NetHandle: NET-47-98-0-0-1
  • Parent: NET47 (NET-47-0-0-0-0)
  • NetType: Early Registrations, Transferred to APNIC
  • OriginAS:
  • Organization: Asia Pacific Network Information Centre (APNIC)
  • RegDate: 2015-04-01
  • Updated: 2015-04-01
  • Ref: https://rdap.arin.net/registry/ip/47.98.0.0
  • OrgName: Asia Pacific Network Information Centre
  • OrgId: APNIC
  • Address: PO Box 3646
  • City: South Brisbane
  • StateProv: QLD
  • PostalCode: 4101
  • Country: AU
  • RegDate:
  • Updated: 2012-01-24
  • Ref: https://rdap.arin.net/registry/entity/APNIC
  • OrgTechHandle: AWC12-ARIN
  • OrgTechName: APNIC Whois Contact
  • OrgTechPhone: +61 7 3858 3188
  • OrgTechEmail: search-apnic-not-arin@apnic.net
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • OrgAbuseHandle: AWC12-ARIN
  • OrgAbuseName: APNIC Whois Contact
  • OrgAbusePhone: +61 7 3858 3188
  • OrgAbuseEmail: search-apnic-not-arin@apnic.net
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • inetnum: 47.98.0.0 - 47.99.255.255
  • netname: ALISOFT
  • descr: Aliyun Computing Co., LTD
  • descr: 5F, Builing D, the West Lake International Plaza of S&T
  • descr: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • country: CN
  • admin-c: ZM1015-AP
  • tech-c: ZM877-AP
  • tech-c: ZM876-AP
  • tech-c: ZM875-AP
  • abuse-c: AC1601-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-CNNIC-AP
  • mnt-irt: IRT-ALISOFT-CN
  • mnt-lower: MAINT-CNNIC-AP
  • mnt-routes: MAINT-CNNIC-AP
  • last-modified: 2023-11-28T00:58:18Z
  • irt: IRT-ALISOFT-CN
  • address: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • e-mail: didong.jc@alibaba-inc.com
  • abuse-mailbox: didong.jc@alibaba-inc.com
  • admin-c: ZM877-AP
  • tech-c: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2021-09-05T23:38:36Z
  • role: ABUSE CNNICCN
  • country: ZZ
  • address: Beijing, China
  • phone: +000000000
  • e-mail: ipas@cnnic.cn
  • admin-c: IP50-AP
  • tech-c: IP50-AP
  • nic-hdl: AC1601-AP
  • abuse-mailbox: ipas@cnnic.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-09-19T17:20:32Z
  • person: Li Jia
  • address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
  • country: CN
  • phone: +86-0571-85022088
  • e-mail: jiali.jl@alibaba-inc.com
  • nic-hdl: ZM1015-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2025-07-01T07:12:42Z
  • person: Guoxin Gao
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022600
  • fax-no: +86-0571-85022600
  • e-mail: anti-spam@list.alibaba-inc.com
  • nic-hdl: ZM875-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2014-07-30T01:56:01Z
  • person: security trouble
  • e-mail: abuse@alibaba-inc.com
  • address: Hangzhou, Zhejiang, China
  • phone: +86-0571-85022600
  • country: CN
  • mnt-by: MAINT-CNNIC-AP
  • nic-hdl: ZM876-AP
  • last-modified: 2025-07-01T07:06:11Z
  • person: Guowei Pan
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022088-30763
  • fax-no: +86-0571-85022600
  • e-mail: abuse@alibaba-inc.com
  • nic-hdl: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2025-07-01T07:05:46Z
  • route: 47.99.0.0/16
  • descr: Aliyun Computing Co., LTD
  • country: CN
  • origin: AS45102
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2018-01-19T08:12:02Z

Links to attack logs

awsbah-telnet-bruteforce-ip-list-2022-05-15 ****** ****** ******

Share on: