61.241.49.98 Threat Intelligence and Host Information

Dec 25, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 61.241.49.98 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • Country: China
  • Network: AS17623 china unicom
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Passive DNS Results: baiheng-automation.com futurepool.top zhuanzhusj.com haikuang.net dalong1314.club oubert.com metal-hangers.com bingye88.com cqjiutian.com sinyeo-tech.com haochengtech.net xw.gdsljob.com longquan0578.cn s7ck.com mxbiz2.qq.com

Malware Detected on Host

Count: 361 981720e25dc7664d3c8649617f7e83c29e5fb608a0fae114cea98bd862a95f85 36699d933c5d4713e1a5b404454df7e7d92ab3496044d0a97d70c0f15ee9fe80 007bc11fc1bef7323bdac43453eaac1353d5603b0888fb8ea8028fd3ed99fa87 8affa417994914732e35a02505657c088957f58fcfb52f52b3ca6471ba3ae3a1 9c84acfb990e25e3fc82fda3c9512bbfad8d168af767146ea3dc86fb599f6bb4 dab76b0fa89244b7f87e6ed3654c5665528a2c07ad783fc28689ba6f840e0660 2b415076bb0e47f1942e230b3aaa9df037ff65ef5859b197170c47411e9d7911 f5d58bdb566ff99e466dc83f4151bc09c114cd41925f1519042c38eb1855b965 7c1aac57f41517a51863897440dd1ad2440b72a449ee795534098c63afff2d41 bead1673162f8f417e86b9bb6097eace63d8cfd13cb22e7b7bb667d97d28bf65

Map

Whois Information

  • inetnum: 61.240.0.0 - 61.243.255.255
  • netname: UNICOM
  • descr: China Unicom
  • descr: No.21 Financial Street,Xicheng District,
  • descr: Beijing 100140 ,P.R.China
  • country: CN
  • admin-c: YW6851-AP
  • tech-c: YW6851-AP
  • abuse-c: AC1601-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-CNNIC-AP
  • mnt-irt: IRT-UNICOM-CN
  • mnt-lower: MAINT-CNNIC-AP
  • mnt-routes: MAINT-CNCGROUP-RR
  • last-modified: 2023-11-28T00:58:22Z
  • irt: IRT-UNICOM-CN
  • address: No.21 Financial Street,Xicheng District,
  • address: Beijing 100140 ,P.R.China
  • e-mail: zhaoyz3@chinaunicom.cn
  • abuse-mailbox: zhaoyz3@chinaunicom.cn
  • admin-c: YW6851-AP
  • tech-c: YW6851-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2023-11-22T07:54:46Z
  • role: ABUSE CNNICCN
  • address: Beijing, China
  • country: ZZ
  • phone: +000000000
  • e-mail: ipas@cnnic.cn
  • admin-c: IP50-AP
  • tech-c: IP50-AP
  • nic-hdl: AC1601-AP
  • abuse-mailbox: ipas@cnnic.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2020-05-14T11:19:01Z
  • person: Yuzhen Zhao
  • address: No.21 Financial Street,Xicheng District,
  • address: Beijing 100140 ,P.R.China
  • country: CN
  • phone: +86-10-66258500
  • fax-no: +86-10-66259626
  • e-mail: zhaoyz3@chinaunicom.cn
  • e-mail: hqs-ipabuse@chinaunicom.cn
  • nic-hdl: YW6851-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2017-09-21T03:48:02Z
  • route: 61.241.0.0/18
  • descr: China Unicom CHINA169 Guangdong Network
  • country: CN
  • origin: AS17623
  • mnt-by: MAINT-CNCGROUP-RR
  • last-modified: 2018-06-21T02:30:02Z

Links to attack logs

****** ****** ******

Share on: