113.141.83.96 Threat Intelligence and Host Information

May 23, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 113.141.83.96 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: bruteforce, cyber security, digital ocean, ioc, malicious, mssql, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 30 times
  • Protocols Attacked: mssql
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

10000 10013 10016 1002 10025 10031 10032 10046 10071 10084 10089 10100 10123 10201 10210 1023 1024 10240 10243 10250 10254 10255 10443 10480 10810 10892 10909 10933 10936 1099 11000 11075 111 11112 1119 11211 11288 11371 11434 11443 1153 11596 11601 1195 12000 12001 12019 12084 12106 12107 12121 12122 12128 12129 12132 12133 12135 12148 12151 12160 12168 12180 12182 12183 12189 12192 12193 12195 12197 12199 12200 12204 12209 12210 12211 12218 12224 12226 12239 12241 12243 12245 12246 12249 12252 12257 12259 12274 12282 12287 12289 12290 12294 12295 12299 12302 12306 12312 12314 12324 12325 12327 12329 12343 12344 12348 12356 12366 12368 12373 12377 12383 12387 12399 12405 12414 12430 12436 12440 12441 12445 1245 12450 12473 12486 12492 12497 12504 12508 12510 12511 12517 12518 12523 12538 12543 12544 12558 12562 12571 12575 12576 12577 12578 12583 1291 13000 13082 1311 13333 1337 1344 13443 13579 1365 13780 14024 14082 14130 14147 14184 14401 1443 1446 1447 1455 1471 14894 14896 15000 15001 15018 15038 15082 15084 1521 15443 15502 15504 1557 15672 1599 16007 16010 16015 16021 16029 16035 16037 1604 16040 16043 16044 1605 16052 16056 16065 16067 16068 16069 16085 16089 16092 16096 16104 16403 1650 16666 17000 17082 17100 1723 17774 17776 18010 18027 18029 18037 18039 18042 18046 18052 18060 18064 18071 18073 18078 18092 18100 18104 18239 1833 18368 18443 1883 19000 19022 19071 19084 19100 1911 1926 1962 1967 19776 1983 1990 2000 20000 2002 2003 2053 2067 2079 2081 2086 2087 2090 2096 2100 2154 2156 22 2202 2210 2259 2320 2323 2332 2345 2375 2376 2379 2404 2423 2435 2480 2525 2554 2555 2557 2561 2599 2602 2650 2761 2762 2985 3000 3001 3004 3007 3011 3015 3048 3051 3058 3060 3065 3068 3074 3075 3082 3087 3091 3092 3095 3099 3100 3101 3102 3104 3107 3117 3120 3123 3130 3131 3138 3139 3154 3155 3160 3168 3169 3171 3174 3175 3184 3191 3195 3197 3198 3200 3260 3268 3269 3299 3301 3310 3337 3349 3388 3389 3402 3405 3407 3479 3498 3503 3542 3549 3551 3552 3560 3567 3570 3780 3790 3794 3838 3953 4000 4001 4040 4043 4063 4064 4080 4103 4147 4150 4242 4321 4344 4400 4433 4434 4439 4444 4447 4455 4461 4499 4500 4506 4545 4567 4664 4700 4782 4786 4840 4949 5000 5001 5003 5005 5006 5007 5009 5025 5083 5090 5122 5140 5201 5230 5245 5247 5251 5253 5258 5268 5277 5357 5435 5555 5557 5567 5568 5591 5592 5600 5601 5607 5672 5673 5678 5801 5822 5853 5858 5900 5901 5911 5912 5913 5914 5917 5938 5984 5985 5986 5989 5990 5991 5994 6000 6001 6002 6003 6005 6080 6081 6264 6380 6440 6443 6503 6511 6513 6556 6560 6653 6662 6667 6686 6697 6700 6748 6755 6887 6955 7001 7002 7006 7011 7071 7078 7080 7088 7100 7105 7171 7218 7272 7401 7441 7443 7634 7654 7777 7778 7790 7801 7822 7980 7989 8000 8001 8006 8007 8009 8010 8012 8017 8023 8029 8033 8041 8045 8047 8048 8051 8055 8056 8057 8058 8060 8063 8069 8074 8081 8082 8083 8085 8087 8089 8090 8097 8103 8106 8109 8110 8111 8112 8113 8117 8119 8120 8123 8129 8139 8147 8148 8150 8154 8157 8159 8161 8164 8166 8174 8178 8181 8186 8188 8189 8197 8200 8252 8283 8291 8315 8317 8333 8388 8393 8406 8414 8415 8416 8417 8420 8422 8432 8434 8435 8444 8446 8447 8449 8453 8455 8456 8461 8465 8484 8485 8493 8502 8530 8548 8549 8551 8553 8558 8568 8582 8602 8606 8637 8649 8666 8686 8688 8723 8733 8800 8801 8804 8812 8819 8822 8823 8830 8850 8852 8856 8857 8868 8873 8877 8879 8886 8888 8889 8902 8906 9000 9002 9007 9011 9019 9020 9035 9038 9041 9042 9054 9063 9064 9065 9068 9082 9084 9086 9087 9090 9091 9095 9097 9098 9100 9104 9111 9113 9121 9128 9137 9145 9147 9150 9158 9159 9160 9172 9173 9178 9179 9183 9186 9191 9200 9201 9210 9215 9218 9236 9242 9243 9247 9253 9256 9273 9283 9295 9300 9306 9309 9313 9333 9350 9351 9376 9389 9398 9441 9443 9465 9480 9488 9507 9510 9530 9553 9595 9600 9606 9611 9658 9700 9743 9758 9761 9800 9810 9861 9869 9872 9876 9928 9929 9966 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465

Map

Whois Information

  • inetnum: 113.136.0.0 - 113.143.255.255
  • netname: CHINANET-SN
  • descr: CHINANET SHAANXI PROVINCE NETWORK
  • descr: China Telecom
  • descr: No.56,gaoxin street
  • descr: Beijing 100032
  • country: CN
  • admin-c: XC9-AP
  • tech-c: XC9-AP
  • abuse-c: AC1573-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-CHINANET-SHAANXI
  • mnt-routes: MAINT-CHINANET-SHAANXI
  • mnt-irt: IRT-CHINANET-CN
  • last-modified: 2021-06-15T08:06:14Z
  • irt: IRT-CHINANET-CN
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • e-mail: anti-spam@chinatelecom.cn
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • mnt-by: MAINT-CHINANET
  • last-modified: 2025-04-24T03:21:26Z
  • role: ABUSE CHINANETCN
  • country: ZZ
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • phone: +000000000
  • e-mail: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • nic-hdl: AC1573-AP
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-04-24T03:21:54Z
  • person: Xianghong Cao
  • address: Shanxi provice data communication Bureau
  • address: Xi’an city, Shanxi provice 710061
  • country: CN
  • phone: +8629-523-3633
  • fax-no: +8629-522-8093
  • e-mail: sxic@public.xa.sn.cn
  • nic-hdl: XC9-AP
  • mnt-by: MAINT-CHINANET
  • last-modified: 2017-03-17T01:44:04Z

Links to attack logs

dolondon-mssql-bruteforce-ip-list-2023-04-28 ****** ****** ****** ******

Share on: