113.249.156.123 Threat Intelligence and Host Information

Aug 15, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 113.249.156.123 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing, Scanner, scanning, smtp, ssh, tcp, Webattack

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 50 times
  • Protocols Attacked: redis
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

10000 10001 10022 10032 10033 10037 10041 10043 10049 10050 10051 10075 10080 10082 10089 10100 10106 10123 10181 1023 10243 10249 10250 10251 10255 10302 10324 10390 10393 10443 10444 1080 10911 1099 11000 11001 11002 111 1110 11112 11182 11184 11210 11211 11288 11300 11371 11434 11443 1153 11680 11701 1181 1198 12000 12107 12108 12110 12127 12135 12136 12150 12160 12161 12164 12168 12171 12172 12176 12181 12185 12186 12189 12190 12196 12200 12205 12210 12212 12214 12229 12230 12240 12245 12246 12249 12255 12260 12267 12271 12272 12275 12282 12284 12287 12298 12309 12313 12314 12322 12324 12328 12332 12334 12335 12339 12340 12345 12346 12354 12377 12379 12380 12389 12396 12400 12403 12406 12414 12423 12424 12426 12430 12432 12440 12451 12452 12459 12463 12464 12469 12472 12479 12480 12481 12482 12485 12493 12498 12520 12529 12535 12540 12543 12555 12556 12558 12565 12567 12574 12577 12582 12585 12590 12601 1311 13443 13579 13780 1400 14082 1414 14147 14182 14184 1433 14400 1443 14443 1452 1471 14873 14897 14900 14909 15044 15084 1521 15673 1577 1599 16001 16005 16010 16018 16024 16027 16030 16031 16032 16041 16045 16049 16056 16058 16061 16063 16064 16081 16082 16085 16086 16089 16093 16097 16100 1660 16992 16993 17000 17001 17070 17102 1723 1741 17775 17777 1801 18024 18037 18042 18058 18061 18071 18073 18074 18079 18081 18086 18092 18093 18097 18102 18110 1820 18264 1883 19000 19014 19090 1911 1925 1926 1935 1959 1962 1964 1968 1976 1982 1988 2000 20000 2002 2003 2020 2031 2051 2067 2072 2080 2081 2082 2083 2087 2095 2103 2108 2111 2154 22 2220 2222 2223 2232 2266 2271 2320 2323 2332 2345 2363 2375 2376 2379 2404 2551 2558 2559 2563 2568 2572 2761 2762 2806 3001 3005 3007 3008 3014 3017 3022 3050 3068 3075 3079 3084 3086 3092 3095 3100 3102 3108 3114 3118 3123 3125 3132 3142 3143 3145 3152 3154 3160 3165 3168 3186 3188 3189 3196 3197 3200 3211 3260 3268 3269 3301 3306 3310 3333 3365 3389 3406 3479 3510 3521 3530 3541 3542 3551 3555 3558 3689 3780 3790 3842 3950 3951 4002 4040 4063 4064 4103 4118 4150 4242 4321 4369 4401 4433 4434 4439 4443 4457 4463 4488 4500 4502 4506 4520 4523 4567 4664 4700 4782 4840 4848 4911 4949 4999 5000 5005 5006 5007 5009 5010 5025 5100 5105 5180 5201 5228 5248 5249 5276 5278 5357 5431 5432 5435 5439 5544 5552 5555 5560 5597 5599 5601 5620 5650 5672 5673 5678 5698 5800 5801 5853 5858 5900 5901 5905 5909 5915 5938 5985 5986 5994 5998 5999 6000 6001 6002 6005 6010 6011 6020 6022 6036 6080 6081 6102 6262 6348 6363 6379 6380 6400 6433 6443 6588 6633 6653 6664 6667 6668 6686 6688 6697 6755 6779 6998 7001 7018 7071 7079 7105 7171 7172 7173 7434 7443 7445 7465 7474 7500 7547 7548 7603 7654 7657 7676 7771 7776 7777 7778 7779 7782 7788 7790 7900 7989 8000 8001 8009 8010 8012 8028 8030 8040 8042 8043 8046 8053 8054 8059 8062 8069 8073 8081 8083 8084 8085 8086 8087 8090 8091 8096 8098 8101 8105 8109 8110 8112 8115 8119 8121 8123 8129 8132 8137 8139 8140 8141 8143 8152 8155 8156 8158 8165 8179 8181 8188 8194 8195 8200 8241 8248 8250 8282 8291 8318 8333 8334 8343 8388 8409 8413 8414 8417 8418 8423 8427 8452 8453 8464 8466 8470 8481 8501 8502 8510 8514 8515 8528 8544 8545 8558 8561 8566 8574 8590 8593 8606 8622 8630 8643 8723 8724 8728 8731 8790 8791 8801 8809 8825 8831 8834 8837 8846 8847 8857 8858 8865 8873 8876 8878 8880 8888 8889 8891 8902 8912 8988 8989 8990 8991 9000 9001 9002 9009 9014 9017 9018 9023 9024 9030 9031 9041 9042 9045 9054 9063 9070 9071 9080 9083 9087 9088 9090 9091 9092 9098 9099 9100 9106 9110 9117 9129 9132 9135 9137 9138 9142 9145 9160 9165 9172 9175 9176 9178 9182 9184 9191 9193 9199 9200 9203 9204 9230 9236 9250 9253 9257 9304 9305 9306 9333 9353 9387 9398 9400 9443 9455 9465 9488 9510 9513 9530 9550 9595 9600 9711 9765 9800 9869 9876 9888 9898 9901 9908 9918 9926 9929 9943 9944 9966 9977 9981 9997 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

  • inetnum: 113.248.0.0 - 113.251.255.255
  • netname: CHINANET-CQ
  • descr: CHINANET Chongqing Province Network
  • descr: Data Communication Division
  • descr: China Telecom
  • country: CN
  • admin-c: CH93-AP
  • tech-c: CQ235-AP
  • abuse-c: AC1573-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-CHINANET-CQ
  • mnt-routes: MAINT-CHINANET-CQ
  • mnt-irt: IRT-CHINANET-CN
  • last-modified: 2021-06-15T08:05:58Z
  • irt: IRT-CHINANET-CN
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • e-mail: anti-spam@chinatelecom.cn
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • mnt-by: MAINT-CHINANET
  • last-modified: 2025-04-24T03:21:26Z
  • role: ABUSE CHINANETCN
  • country: ZZ
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • phone: +000000000
  • e-mail: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • nic-hdl: AC1573-AP
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-04-24T03:21:54Z
  • role: CHINANET CQ
  • address: The mainstreet 3 daping ,chongqing data communication bureau
  • country: CN
  • phone: +862368614888
  • fax-no: +862368602314
  • e-mail: ipmanager.cq@chinatelecom.cn
  • admin-c: ZL235-AP
  • tech-c: ZL235-AP
  • nic-hdl: CQ235-AP
  • notify: ipmanager.cq@chinatelecom.cn
  • mnt-by: MAINT-CHINANET-CQ
  • last-modified: 2022-02-23T04:23:29Z
  • person: Chinanet Hostmaster
  • nic-hdl: CH93-AP
  • e-mail: anti-spam@chinatelecom.cn
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • phone: +86-10-58501724
  • fax-no: +86-10-58501724
  • country: CN
  • mnt-by: MAINT-CHINANET
  • last-modified: 2022-02-28T06:53:44Z

Links to attack logs

awsjap-redis-bruteforce-ip-list-2022-04-29 awsjap-redis-bruteforce-ip-list-2022-04-22 ****** awsindia-redis-bruteforce-ip-list-2022-05-22 awsjap-redis-bruteforce-ip-list-2022-04-26 awsindia-redis-bruteforce-ip-list-2022-04-29 ****** ****** awsjap-redis-bruteforce-ip-list-2022-05-16

Share on: