58.18.83.205 Threat Intelligence and Host Information

Jun 19, 2024 ipinfopage

General

IP Address
58.18.83.205
IPv4 Address
Location
🇨🇳 Wuhai, China
CN
Network
AS4837
CHINA UNICOM China169 Backbone
Threat Score
55/100
High Risk
abuseipdbBlacklistcowriecybersecurityDNSBLiocmalicious
Attack Intelligence
MITRE ATT&CK Techniques
T1046 - Network Service Scanning, T1078 - Valid Accounts, T1083 - File and Directory Discovery, T1098.004 - SSH Authorized Keys, T1105 - Ingress Tool Transfer, T1110.003 - Password Spraying, T1110.004 - Credential Stuffing, T1110 - Brute Force, T1583.005 - Botnet
Open Ports Detected
22
Geographic Location
Country
China
City
Wuhai
Region
Inner Mongolia Autonomous Region
Coordinates
39.6786, 106.8171
Network Information
ASN
AS4837
Organization
CHINA UNICOM China169 Backbone
Network
AS4837 CHINA UNICOM China169 Backbone
WHOIS Information
inetnum
58.18.83.0 - 58.18.83.255
netname
IAGL
country
CN
descr
CNC Group CHINA169 Neimeng Province Network
admin-c
HY690-AP
tech-c
HY690-AP
status
ASSIGNED NON-PORTABLE
mnt-by
MAINT-CNCGROUP-RR
last-modified
2008-09-04T07:54:33Z
person
honghui yuan
nic-hdl
HY690-AP
e-mail
oo@public.hh.nm.cn
address
NO.169 hulun south road Huhhot Inner Mongolia, 010028,China
phone
+86-471-6268961
fax-no
+86-471-6291559
route
58.18.0.0/16
origin
AS4837
Attack Logs
Date Target Location Protocol Link
2024-05-19 Perth, Australia MULTIPLE View Log

  • Country: China
  • Network: AS4837 china unicom china169 backbone
  • Noticed: 50 times
  • Protocols Attacked: SSH
  • Countries Attacked: Belgium, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
Disclaimer
This page contains threat intelligence information for the IPv4 address 58.18.83.205 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.