Publicité (Header Leaderboard)

Rapport IP : 161.189.117.155

Généré le 16/12/2025 13:20
← Retour
NEXUS AI THREAT REPORT
NEUTRAL
ANALYSIS INITIATED FOR TARGET: 161.189.117.155.
[STATUS]: ENTITY APPEARS CLEAN based on current intelligence databases.
[INTEL]: No negative signals detected in global registries.
[VERDICT]: MONITORING ADVISED BUT NO IMMEDIATE ACTION REQUIRED.
Route: Client → ISP → ASN → Target
Dark Web Leak Radar
Standby

Search for leaks associated with this IP in BreachCompilation, DeepMix, etc.

Stealth Proxy Hunter
Analyze VPN, TOR, and Anonymous Proxy signatures.
Botnet C2 Hunter
AWAITING TARGET ACQUISITION...

Map neighboring IP addresses and identify potential subnet associations.

Vulnerability Lab

Analyze detected services to identify known CVEs.

Identity & Summary
Organization / ISP
Asia Pacific Network Information Centre
IP Range (CIDR)
161.189.0.0/16
Key Dates
Created: 2018-06-28
Updated: 2018-06-28
Whois Data / Technical Raw Output

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange: 161.189.0.0 - 161.189.255.255
CIDR: 161.189.0.0/16
NetName: APNIC
NetHandle: NET-161-189-0-0-1
Parent: NET161 (NET-161-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2018-06-28
Updated: 2018-06-28
Ref: https://rdap.arin.net/registry/ip/161.189.0.0

ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois://whois.apnic.net


OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC

ReferralServer: whois://whois.apnic.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query

OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN

OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.apnic.net.

% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '161.189.0.0 - 161.189.255.255'

% Abuse contact for '161.189.0.0 - 161.189.255.255' is 'ec2-abuse-cn@amazonaws.cn'

inetnum: 161.189.0.0 - 161.189.255.255
netname: WESTCLOUDDATA
descr: Ningxia West Cloud Data Technology Co.Ltd.
descr: Room201, Building A, Zhongguancun Yuan, Zhongwei Xiaoqu,
descr: Ningxia University, Shapotou District, Zhongwei, Ningxia
country: CN
admin-c: YW7304-AP
tech-c: YW7304-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-WESTCLOUDDATA-CN
last-modified: 2023-11-21T09:07:35Z
source: APNIC

irt: IRT-WESTCLOUDDATA-CN
address: No. 55 West Road, 2 floor, Qingfeng Finance Bureau
address: Shapotou District, Zhongwei, Ningxia
e-mail: ec2-abuse-cn@amazonaws.cn
abuse-mailbox: ec2-abuse-cn@amazonaws.cn
admin-c: YW7304-AP
tech-c: YW7304-AP
auth: # Filtered
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-18T00:34:43Z
source: APNIC

role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC

person: Li Quan
address: 20th Floor, Yidi Port, No. 20 Jiuxianqiao Road,
address: Chaoyang District, Beijing
country: CN
phone: +86-17310656633
e-mail: lqua@nwcdcloud.cn
nic-hdl: YW7304-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2023-11-21T09:04:11Z
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.34 (WHOIS-UK2)


Dictionary
ASN

Autonomous System Number (ASN) defines a group of IP networks run by one operator.

Handle

A unique identifier assigned by registrars (RIPE, ARIN) to organizations or contacts.

Associated Domains / Passive DNS
Geolocation & Network
🌍

Loading...

-

ISP Provider
...
Organization
...
ASN
...
Timezone
...
Interactive Map
Risk Index SAFE
0%

Malicious Activity Probability

Reports
0
Reporters
0
Report this IP
Analyzing web server...
Latency (Live)
Standby Avg: - ms
Port Scanner

Check common open ports on this host.

AI Analysis & Summary

The IP address 161.189.117.155 is located in AU and is assigned to the Internet Service Provider Asia Pacific Network Information Centre. It is part of the network range 161.189.0.0 - 161.189.255.255. We have not actively detected malicious activity from this IP in our database recently, but it may still be part of a compromised subnet. You can perform a full Port Scan or Whois Lookup to get more details.

IP Abuse Reports for 161.189.117.155:

No abuse reports found for this IP address.

ads_placeholder
Historique
No recent search.
Recent Global Scans (SEO Index)
103.187.147.16 178.62.253.97 195.178.110.30 116.110.149.157 116.110.151.38 195.96.138.145 216.10.247.49 193.46.255.99 80.94.93.119 92.118.39.87 80.94.93.233 116.177.172.64 103.47.226.141 43.159.230.49 193.46.255.20 80.94.92.168 45.148.10.121 160.22.122.35 195.178.110.30 45.134.26.238 104.214.58.50 80.94.95.115 193.46.255.33 186.96.145.241 193.46.255.217 103.187.147.16 92.118.39.62 193.46.255.103 164.92.94.204 195.20.236.212 193.46.255.20 193.46.255.159 52.174.67.71 80.94.92.40 92.118.39.87 45.134.26.236 188.166.76.107 179.43.184.242 80.94.92.167 160.22.122.35 80.94.95.116 80.94.95.115 110.32.34.138 118.193.45.106 104.214.58.50 186.96.145.241 20.243.136.122 103.187.147.16 193.46.255.7 43.159.230.49

Cybersecurity Knowledge Base

Understanding the threats detected by our systems.

SSH Brute Force

An automated attack where a script attempts to guess the password of a Secure Shell (SSH) server by trying thousands of combinations. This is a common method used by botnets to gain unauthorized access to servers.

Port Scanning

The practice of sending packets to specific ports on a host to identify open services. While used by administrators for auditing, it is often the first step in an attack to find vulnerabilities.

Botnet Activity

A network of compromised computers (bots) controlled by a third party. They are often used to coordinate DDoS attacks, send spam, or perform distributed brute-force attacks.