59.82.58.65 Threat Intelligence and Host Information

Aug 10, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 59.82.58.65 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 34/100

Host and Network Information

  • Mitre ATT&CK IDs: T1027 - Obfuscated Files or Information, T1547 - Boot or Logon Autostart Execution

  • Tags: 1000, 1688, activexobject, alipay, android, aplusscore, apoorv saxena, area, arial, array, body, button, cfunction, chrome, copyright, createclass, date, delete, detect ie, e6e7eb, error, f2f3f7, f7f8fa, false, ff6a00, function, gmt contenttype, head, helvetica, helvetica neue, html5, http response, json, jupdate, kraken, lazada, license, math, mozilla, mtopwvplugin, null, nullj, nundefined, object, opacity0, opacity100, options, patch, post, promise, regexp, s1e4, span, substring, symbol, tahoma, this, trace, typeerror, typeof, typeof define, typeof document, typeof e, typeof lib, typeof n, typeof require, typeof self, typeof symbol, typeof t, unknown, vary, void, webpackrequire, webview, xdomainrequest, xfunction, xmlhttprequest, xuexi, yunos, zfunction, 阿里巴巴,1688,微商,微店,货源,女装批发,男装,b2b,批发,采购, 阿里巴巴,采购批发,1688,行业门户,网上贸易,b2b,电子商务,内贸,外贸,批发,行业资讯,网上贸易,网上交易,交易市场,在

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: member.gamexi.cn mz.chenggua.com sychlon.com fliggy.net yuanjingos.com uai.lydaas.com zqchome.jiyoujia.com juantuanzhang.com xtianlang.com kovwxyaj.com d.design 1-t.cn z-real.com.cn klndaqdk.com tgdfutmk.com mmcops.com u.design hvdjxzlj.com xlnqeywz.com hyarzbkv.com lyjrbwva.com skmlscob.com rmdmhqdg.com zituydyr.com xwrxgkhg.com zvnstvyt.com dekrwasb.com clvolvgu.com adttzkhj.com sergouzi.com nmbbrudw.com oqoveeqb.com mxuxkzvj.com tbsqxpev.com tmhuaarz.com sboiwoco.com umlcmeed.com mspsdpla.com yrdaskgb.com dktfwxhk.com mezrqrch.com dualstack-zb-443.alibaba.alibaba-inc.com.gds.alibabadns.com bljezpnh.com ydbdvmcv.com pcphvlht.com oshxagta.com qaxjpgzp.com ukldhugr.com anhyzhen.com diantaoshare.cn ntjclevq.com alibabafonts.com qeguoezg.com odalwhiy.com lbtxulvl.com iyrzcyil.com zrbrmtuw.com szplmmfs.com liglmvpn.com tlksdojj.com fkqwgtuz.com kovjwili.com kiuefmuh.com oihiutbp.com omihpcwc.com iqplqylz.com uczklpna.com taoshushenqi.com tcgf-digitalcore.com fusion.design diantaoshare.com weexapp.com kyxingyuan.com tooseeeart.com wapa.tianmallyp.com miaozhen.atm.youku.com alltan.cn tzdf.cc open.1688.com zb-443.alibaba.alibaba-inc.com.gds.alibabadns.com tmallgenie.com sycm.1688.com alibabachengdun.com alibabachengdun.net hzchengdun.net hzchengdun.com orange-class.com unifycarbon.com ding.design zhongcarbon.com shejijia.com yuanjingio.com yuanjingss.com homearch.com.cn homearch.cn homearch.com api.chenggua.com aookaa.com aookaa.net aookaa.com.cn aookaa.cn alibabastars.com koubeiren.com uai-oxs.xixikf.cn mefenlife.com uaioxs.xixikf.cn jingcainewsk.com uai.xixikf.cn dchain.10219.com ays.cn rextech.cn

Malware Detected on Host

Count: 2 aac44ab33a3ac88c713af8c826168567cdd3aa203b6c9adb08c5d8b81c731a6c efcda32fd5f66de13699b99f4319e0b3b5f23be238e48d72aa2289f2423611eb

Open Ports Detected

221 4150 443 5007 636 80 8126 9117 9600

Map

Whois Information

  • inetnum: 59.82.0.0 - 59.82.255.255
  • netname: ALIBABA-CN-NET
  • descr: Hangzhou Alibaba Advertising Co.,Ltd.
  • descr: No.699, Wangshang RD., Hangzhou, China
  • country: CN
  • admin-c: ZM678-AP
  • tech-c: ZM877-AP
  • tech-c: ZM876-AP
  • abuse-c: AC1601-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-CNNIC-AP
  • mnt-irt: IRT-ALIBABA-CN-NET-CN
  • mnt-lower: MAINT-CNNIC-AP
  • mnt-routes: MAINT-CNNIC-AP
  • last-modified: 2023-11-28T00:58:21Z
  • irt: IRT-ALIBABA-CN-NET-CN
  • address: No.699, Wangshang RD., Hangzhou, China
  • e-mail: didong.jc@alibaba-inc.com
  • abuse-mailbox: didong.jc@alibaba-inc.com
  • admin-c: ZM678-AP
  • tech-c: ZM678-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2021-09-05T23:38:38Z
  • role: ABUSE CNNICCN
  • country: ZZ
  • address: Beijing, China
  • phone: +000000000
  • e-mail: ipas@cnnic.cn
  • admin-c: IP50-AP
  • tech-c: IP50-AP
  • nic-hdl: AC1601-AP
  • abuse-mailbox: ipas@cnnic.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2024-07-30T11:55:46Z
  • person: Shuo Yu
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022600
  • e-mail: anti-spam@list.alibaba-inc.com
  • nic-hdl: ZM678-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2021-04-13T23:21:57Z
  • person: security trouble
  • e-mail: abuse@alibaba-inc.com
  • address: Hangzhou, Zhejiang, China
  • phone: +86-0571-85022600
  • country: CN
  • mnt-by: MAINT-CNNIC-AP
  • nic-hdl: ZM876-AP
  • last-modified: 2025-07-01T07:06:11Z
  • person: Guowei Pan
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022088-30763
  • fax-no: +86-0571-85022600
  • e-mail: abuse@alibaba-inc.com
  • nic-hdl: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2025-07-01T07:05:46Z
  • route: 59.82.58.0/24
  • origin: AS37963
  • descr: China Internet Network Information Center
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2020-02-18T01:17:12Z
  • route: 59.82.58.0/24
  • origin: AS45102
  • descr: China Internet Network Information Center
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2020-02-18T01:19:05Z

Links to attack logs

****** ****** ******

Share on: