8.218.102.147 Threat Intelligence and Host Information

Dec 01, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 8.218.102.147 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

  • Country: Hong Kong
  • Network: AS45102 alibaba (us) technology co. ltd.
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Passive DNS Results: www.xt918.com lookisbest.com qdgep.com ywzsdyf.com 0594xsd.com xiuwenlp.com we0888.com cdhongdou.com skk996.com qingfengshi.com 8rvd.com baisichina.com xungenzhilu.com heidahan.com beimingds.com zgxiangruilong.com gaoxiangcy.com dongxionline.com daluhuanbao.com miaojinnang.com yuntengcaishui.com jinshuoesc.com hryjmall.com yuanfa141319.com yuanjushenghuo.com raglad.com ysquantong.com foundoves.com kamaishangxue.com lrjc88.com oexiamen.com xycarry.com doutushangmao.com sichuanliangku.com chengjinmy.com sdzhanying.com hubeihuisheng.com jyspbz.com xmcxjt.com acxljy.com tuosenjixie.com hbpxcy.com jyongche.com fytcmc.com xcshensuofeng.com sdrldgg.com hnsycgl.com rrsbj518.com szhyhs888.com ziyangzhaoming.com yangguangzhuli.com kangyuanzhihui.com heitianekeji.com hjty8.com yongliyoupin.com ydmhb.com angel618.com zaowanyouxuan.com youlinjiayuan.com yirenshifang.com jianfeishibai.com keyuan16.com wzbigdatacloud.com whxs3b.com sxxijing.com hbtangnuo.com jinkeouyu.com 91youmen.com 1976magic.com tianyilaoshi.com sukeo2o.com shengya56.com longhuilvyang.com gxhhsm8.com lanshicaijing.com quannengweibao.com wuyuetongcong.com shandongchengnuo.com lykache.com yangoujiaju.com xk-power.com wanshun668.com cdhljiaju.com zwx-connetor.com qingfengying.com yonghongdiping.com guoqidianshang.com juntuwangye.com awhjxyh.com sqkszs.com lyjhbjys.com zhizhenlidao.com aoqingxiang.com tianxingwenhua.com canyinwu.com shixingwenhua.com huayungd.com haituiku.com lexiangquanqiu.com zhuanjiaoshiguang.com jiliaoba.com ronghewenhua.com runtenghuitong.com wanjiapet.com dangbanfa.com teresadance.com clw7866.com shandongtengkun.com hbczrhgj.com 97466a.com ahxinyejiancai.com zhongjianxin01.com wushuibengzhan.com cjfsp.com mzchang.com jlccdz.com taolnan.com helinkeji.com shgxfs.com jmgoc.com cdynsw.com yixinvip3.com thesurfaceweb.com czgajx.com shanxiyunjian.com shangxiangprint.com mylinkedvape.com pushenlogistics.com payweishang.com bjskqt.com jobqunar.com jhlasermedical.com fengchao999.com szing888.com hbhuihonghuanbao.com ganxueedu.com jlsnjz.com wanwugonglian.com shopping968.com hongzhandz.com lengku1000.com ytpaohucha.com pudahb.com gzzrqwl.com gzyinjia88.com jqcjhj.com joinhandcn.com jnhdjxhg.com 7fuchina.com whalewbs.com ah-qichen.com dimuqi.com dezhenglianhe.com sjggnsp.com hfhui01.com lianxiangzhibing.com zhongduep.com zgckjyz.com xyw-edu.com xiexingjiaoyu.com cyt101.com clwzhou.com papaqiche.com gyzytjy.com bangbeics.com sanxinshengwu.com 7483on.com xjslhy.com xzjn18.com baichuangyouxuan.com 566qj.com huaxiadianci.com ymzsgrc.com jiaoliufengshan.com bataofang.com 03renli.com wenwenbk.com www.pushenlogistics.com www.wukangtech.com wukangtech.com wurankz.com wanfzy.com deluoshenfu.com cckjit.com szms836.com sskj17.com shiyishicai.com hebeidesheng.com malujupian.com qljhz.com pyhlscc.com prim-ky.com boansalesteam.com baohongcvip.com erlirack.com fushunxinkai.com dallmer-china.com fengshentoys.com fsdixiang.com xa-wuliu.com dn46s.com lambault-home.com itcippa.com 2021.zqr1104.xyz

Malware Detected on Host

Count: 1 38848fa7efafc0d29636354bc5d39c233ed8f64e5417fc75387c6840302f2de9

Open Ports Detected

22 3306 80 8888

CVEs Detected

CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408

Map

Whois Information

  • NetRange: 8.208.0.0 - 8.223.255.255
  • CIDR: 8.208.0.0/12
  • NetName: APNIC
  • NetHandle: NET-8-208-0-0-1
  • Parent: NET8 (NET-8-0-0-0-0)
  • NetType: Early Registrations, Transferred to APNIC
  • OriginAS:
  • Organization: Asia Pacific Network Information Centre (APNIC)
  • RegDate: 2018-04-24
  • Updated: 2018-04-24
  • Ref: https://rdap.arin.net/registry/ip/8.208.0.0
  • OrgName: Asia Pacific Network Information Centre
  • OrgId: APNIC
  • Address: PO Box 3646
  • City: South Brisbane
  • StateProv: QLD
  • PostalCode: 4101
  • Country: AU
  • RegDate:
  • Updated: 2012-01-24
  • Ref: https://rdap.arin.net/registry/entity/APNIC
  • OrgTechHandle: AWC12-ARIN
  • OrgTechName: APNIC Whois Contact
  • OrgTechPhone: +61 7 3858 3188
  • OrgTechEmail: search-apnic-not-arin@apnic.net
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • OrgAbuseHandle: AWC12-ARIN
  • OrgAbuseName: APNIC Whois Contact
  • OrgAbusePhone: +61 7 3858 3188
  • OrgAbuseEmail: search-apnic-not-arin@apnic.net
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • inetnum: 8.208.0.0 - 8.223.255.255
  • netname: ASEPL-SG
  • descr: Alibaba Cloud (Singapore) Private Limited
  • country: SG
  • org: ORG-ASEP1-AP
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • abuse-c: AA1926-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-ASEPL-SG
  • mnt-routes: MAINT-ASEPL-SG
  • mnt-irt: IRT-ASEPL-SG
  • last-modified: 2023-11-09T06:37:20Z
  • irt: IRT-ASEPL-SG
  • e-mail: anti-spam@list.alibaba-inc.com
  • abuse-mailbox: anti-spam@list.alibaba-inc.com
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • mnt-by: MAINT-ASEPL-SG
  • last-modified: 2023-10-04T13:08:46Z
  • organisation: ORG-ASEP1-AP
  • org-name: Alibaba Cloud (Singapore) Private Limited
  • org-type: LIR
  • country: SG
  • phone: +8657185022088-76449
  • e-mail: anti-spam@list.alibaba-inc.com
  • mnt-ref: APNIC-HM
  • mnt-by: APNIC-HM
  • last-modified: 2023-11-08T12:55:23Z
  • role: ABUSE ASEPLSG
  • country: ZZ
  • phone: +000000000
  • e-mail: anti-spam@list.alibaba-inc.com
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • nic-hdl: AA1926-AP
  • abuse-mailbox: anti-spam@list.alibaba-inc.com
  • mnt-by: APNIC-ABUSE
  • last-modified: 2023-10-04T13:09:59Z
  • role: Alibabacom Singapore E-Commerce Private Limited a
  • country: SG
  • phone: +86-571-85022088
  • fax-no: +86-571-85022088
  • e-mail: anti-spam@list.alibaba-inc.com
  • admin-c: ASEP1-AP
  • tech-c: ASEP1-AP
  • nic-hdl: ASEP1-AP
  • mnt-by: MAINT-ASEPL-SG
  • last-modified: 2015-12-10T01:04:19Z
  • route: 8.218.102.0/24
  • origin: AS134963
  • descr: Alibaba.com Singapore E-Commerce Private Limited
  • mnt-by: MAINT-ASEPL-SG
  • last-modified: 2020-01-20T07:56:28Z
  • route: 8.218.102.0/24
  • origin: AS45102
  • descr: Alibaba.com Singapore E-Commerce Private Limited
  • mnt-by: MAINT-ASEPL-SG
  • last-modified: 2020-01-20T07:26:21Z

Links to attack logs

****** ****** ******

Share on: