8.136.125.148 Threat Intelligence and Host Information

Share on:
May 06, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Possibly Malicious Host 🟢 15/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network: AS37963 hangzhou alibaba advertising co. ltd.
  • Noticed: 1 times
  • Protcols Attacked: SSH

Open Ports Detected

21 22 3128 3306

CVEs Detected

CVE-2019-12519 CVE-2020-11945 CVE-2020-14058 CVE-2020-15049 CVE-2020-15810 CVE-2020-15811 CVE-2020-24606 CVE-2020-25097 CVE-2021-28116 CVE-2021-28651 CVE-2021-28652 CVE-2021-28662 CVE-2021-31806 CVE-2021-31807 CVE-2021-31808 CVE-2021-33620 CVE-2021-46784 CVE-2022-41317 CVE-2022-41318

Map

Whois Information

  • NetRange: 8.128.0.0 - 8.191.255.255
  • CIDR: 8.128.0.0/10
  • NetName: APNIC
  • NetHandle: NET-8-128-0-0-1
  • Parent: NET8 (NET-8-0-0-0-0)
  • NetType: Early Registrations, Transferred to APNIC
  • OriginAS:
  • Organization: Asia Pacific Network Information Centre (APNIC)
  • RegDate: 2018-04-24
  • Updated: 2018-04-24
  • Ref: https://rdap.arin.net/registry/ip/8.128.0.0
  • OrgName: Asia Pacific Network Information Centre
  • OrgId: APNIC
  • Address: PO Box 3646
  • City: South Brisbane
  • StateProv: QLD
  • PostalCode: 4101
  • Country: AU
  • RegDate:
  • Updated: 2012-01-24
  • Ref: https://rdap.arin.net/registry/entity/APNIC
  • OrgTechHandle: AWC12-ARIN
  • OrgTechName: APNIC Whois Contact
  • OrgTechPhone: +61 7 3858 3188
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • OrgAbuseHandle: AWC12-ARIN
  • OrgAbuseName: APNIC Whois Contact
  • OrgAbusePhone: +61 7 3858 3188
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • inetnum: 8.128.0.0 - 8.159.255.255
  • netname: ALICLOUD
  • descr: Aliyun Computing Co.LTD
  • country: CN
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • abuse-c: AA1926-AP
  • status: ALLOCATED NON-PORTABLE
  • mnt-by: MAINT-ASEPL-SG
  • mnt-irt: IRT-ASEPL-SG
  • last-modified: 2021-04-14T01:11:45Z
  • irt: IRT-ASEPL-SG
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • mnt-by: MAINT-ASEPL-SG
  • last-modified: 2023-03-17T01:27:26Z
  • role: ABUSE ASEPLSG
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • nic-hdl: AA1926-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2023-03-17T01:28:27Z
  • role: Alibabacom Singapore E-Commerce Private Limited a
  • country: SG
  • phone: +86-571-85022088
  • fax-no: +86-571-85022088
  • e-mail: [email protected]
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • nic-hdl: ASEP1-AP
  • mnt-by: MAINT-ASEPL-SG
  • last-modified: 2015-12-10T01:04:19Z
  • route: 8.136.125.0/24
  • origin: AS37963
  • descr: Alibaba.com Singapore E-Commerce Private Limited
  • mnt-by: MAINT-ASEPL-SG
  • last-modified: 2020-02-25T09:28:29Z

Links to attack logs

roxy-ip-list-2023-05-03 roxy-ip-list-2023-05-05