8.134.139.219 Threat Intelligence and Host Information

Share on:
Jun 15, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 8.134.139.219 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Mitre ATT&CK IDs: T1498 - Network Denial of Service, T1499 - Endpoint Denial of Service, T1499.002 - Service Exhaustion Flood
  • Tags: DDOS, DDoS, HEAD Floods, KillNet, Killnet, T1498, T1499, cc.py

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network: AS37963 hangzhou alibaba advertising co. ltd.
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy

Open Ports Detected

10134 10243 104 10443 11 111 11112 119 14265 1471 1723 1935 2006 2021 2087 2121 2150 2222 2259 2323 2404 25105 2525 2550 2559 2563 3060 3061 3075 3078 3081 3084 311 3110 3111 3112 3121 3268 3306 3460 3542 3570 3791 3794 389 3951 4040 4369 444 44818 4782 4848 49152 5000 5080 5269 55000 554 5555 55553 5603 5672 5907 6001 6005 6036 6080 6161 636 6662 7001 7081 7171 7465 7779 79 80 8011 8037 8069 8084 8086 82 8200 8222 8248 8407 8432 8433 8803 8822 8889 9001 9009 9014 902 9024 9039 9044 9106 9204 9215 9251 9295 9310 9311 95 9530 9994

CVEs Detected

CVE-2005-2946 CVE-2005-2969 CVE-2006-2937 CVE-2006-2940 CVE-2006-3738 CVE-2006-4339 CVE-2006-4343 CVE-2006-7250 CVE-2007-3108 CVE-2007-4995 CVE-2007-5135 CVE-2008-0166 CVE-2008-5077 CVE-2008-7270 CVE-2009-0590 CVE-2009-0591 CVE-2009-0789 CVE-2009-1377 CVE-2009-1378 CVE-2009-1386 CVE-2009-1387 CVE-2009-2409 CVE-2009-3245 CVE-2009-3555 CVE-2009-4355 CVE-2010-0433 CVE-2010-0740 CVE-2010-0742 CVE-2010-0928 CVE-2010-3864 CVE-2010-4180 CVE-2010-4252 CVE-2010-5298 CVE-2011-0014 CVE-2011-1473 CVE-2011-1945 CVE-2011-3210 CVE-2011-4108 CVE-2011-4109 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 CVE-2012-0027 CVE-2012-0884 CVE-2012-1165 CVE-2012-2110 CVE-2012-2333 CVE-2013-0166 CVE-2013-0169 CVE-2013-6449 CVE-2014-0076 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-3470 CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3508 CVE-2014-3509 CVE-2014-3510 CVE-2014-3511 CVE-2014-3512 CVE-2014-3513 CVE-2014-3566 CVE-2014-3567 CVE-2014-3568 CVE-2014-3570 CVE-2014-3571 CVE-2014-3572 CVE-2014-5139 CVE-2014-8176 CVE-2014-8275 CVE-2015-0204 CVE-2015-0205 CVE-2015-0206 CVE-2015-0209 CVE-2015-0286 CVE-2015-0287 CVE-2015-0288 CVE-2015-0289 CVE-2015-0292 CVE-2015-0293 CVE-2015-1788 CVE-2015-1789 CVE-2015-1790 CVE-2015-1791 CVE-2015-1792 CVE-2015-3194 CVE-2015-3195 CVE-2015-3196 CVE-2015-3197 CVE-2015-4000 CVE-2015-9253 CVE-2016-0702 CVE-2016-0703 CVE-2016-0704 CVE-2016-0705 CVE-2016-0797 CVE-2016-0798 CVE-2016-0799 CVE-2016-0800 CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2108 CVE-2016-2109 CVE-2016-2176 CVE-2016-2177 CVE-2016-2178 CVE-2016-2179 CVE-2016-2180 CVE-2016-2181 CVE-2016-2182 CVE-2016-2183 CVE-2016-2842 CVE-2016-6302 CVE-2016-6303 CVE-2016-6304 CVE-2016-6306 CVE-2016-7056 CVE-2017-3735 CVE-2017-7272 CVE-2017-7963 CVE-2018-19395 CVE-2018-19396 CVE-2019-9637 CVE-2019-9638 CVE-2019-9639 CVE-2019-9641 CVE-2021-4044 CVE-2022-31628 CVE-2022-31629

Map

Whois Information

  • NetRange: 8.128.0.0 - 8.191.255.255
  • CIDR: 8.128.0.0/10
  • NetName: APNIC
  • NetHandle: NET-8-128-0-0-1
  • Parent: NET8 (NET-8-0-0-0-0)
  • NetType: Early Registrations, Transferred to APNIC
  • OriginAS:
  • Organization: Asia Pacific Network Information Centre (APNIC)
  • RegDate: 2018-04-24
  • Updated: 2018-04-24
  • Ref: https://rdap.arin.net/registry/ip/8.128.0.0
  • OrgName: Asia Pacific Network Information Centre
  • OrgId: APNIC
  • Address: PO Box 3646
  • City: South Brisbane
  • StateProv: QLD
  • PostalCode: 4101
  • Country: AU
  • RegDate:
  • Updated: 2012-01-24
  • Ref: https://rdap.arin.net/registry/entity/APNIC
  • OrgAbuseHandle: AWC12-ARIN
  • OrgAbuseName: APNIC Whois Contact
  • OrgAbusePhone: +61 7 3858 3188
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • OrgTechHandle: AWC12-ARIN
  • OrgTechName: APNIC Whois Contact
  • OrgTechPhone: +61 7 3858 3188
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • inetnum: 8.128.0.0 - 8.159.255.255
  • netname: ALICLOUD
  • descr: Aliyun Computing Co.LTD
  • country: CN
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • abuse-c: AA1926-AP
  • status: ALLOCATED NON-PORTABLE
  • mnt-by: MAINT-ASEPL-SG
  • mnt-irt: IRT-ASEPL-SG
  • last-modified: 2021-04-14T01:11:45Z
  • irt: IRT-ASEPL-SG
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • mnt-by: MAINT-ASEPL-SG
  • last-modified: 2023-03-17T01:27:26Z
  • role: ABUSE ASEPLSG
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • nic-hdl: AA1926-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2023-03-17T01:28:27Z
  • role: Alibabacom Singapore E-Commerce Private Limited a
  • country: SG
  • phone: +86-571-85022088
  • fax-no: +86-571-85022088
  • e-mail: [email protected]
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • nic-hdl: ASEP1-AP
  • mnt-by: MAINT-ASEPL-SG
  • last-modified: 2015-12-10T01:04:19Z
  • route: 8.134.139.0/24
  • origin: AS37963
  • descr: Alibaba.com Singapore E-Commerce Private Limited
  • mnt-by: MAINT-ASEPL-SG
  • last-modified: 2020-02-25T09:22:36Z

Links to attack logs

anonymous-proxy-ip-list-2023-05-19 anonymous-proxy-ip-list-2023-05-20 roxy-ip-list-2023-05-17 anonymous-proxy-ip-list-2023-05-17 anonymous-proxy-ip-list-2023-05-18 anonymous-proxy-ip-list-2023-05-21 anonymous-proxy-ip-list-2023-05-22 anonymous-proxy-ip-list-2023-05-23