115.159.48.235 Threat Intelligence and Host Information

Feb 01, 2026 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 115.159.48.235 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

View other sources: Spamhaus VirusTotal

Country: China
Network:
Noticed: 1 times
Protocols Attacked: Anonymous Proxy
Passive DNS Results: cha.taofeiche.com cs.sleep0.com

Open Ports Detected

10000 10001 10134 10181 1023 10243 10250 10443 1080 10909 10911 1099 11111 11112 11210 11211 11288 11300 11434 1153 1167 12000 12101 12112 12141 12161 12163 12191 12259 12283 12344 12359 12388 12404 12420 12469 12491 12510 12529 12539 12574 1290 1311 1337 1344 13579 1400 1414 14147 14344 1443 1471 15040 1599 16010 16017 16021 16030 16034 1604 16095 16992 16993 17000 1701 1723 1741 17779 1801 18010 18069 18072 18081 18092 18096 18109 18245 18789 1883 18888 19000 19014 19091 1935 1964 1977 1984 2000 20000 2002 2003 2006 2031 2067 2081 2082 2083 2086 2087 2121 2154 22 2323 2332 2345 2375 2376 2404 2435 2480 2553 2559 2761 3000 3001 3002 3022 3050 3098 3121 3127 3134 3140 3149 3152 3159 3164 3174 3260 3268 3299 3301 3306 3310 3345 3388 3389 3460 3541 3542 3551 3554 3557 3570 3689 3950 4000 4040 4064 4150 4242 4321 4369 4402 4430 4433 4434 4436 4443 4444 4500 4506 4530 4664 4747 4782 4911 4949 5000 5001 5003 5004 5006 5007 5009 5010 5227 5257 5357 5432 5435 5443 5555 5560 5569 5596 5601 5800 5801 5858 5900 5901 5904 5911 5938 5984 5986 5991 6001 6020 6080 6161 6379 6432 6443 6482 6511 6514 6580 6622 6633 6653 6667 6668 7001 7021 7071 7171 7218 7434 7443 7547 7548 7657 7989 8000 8001 8008 8009 8010 8014 8036 8040 8046 8060 8080 8085 8086 8087 8089 8098 8099 8100 8112 8123 8135 8167 8181 8188 8198 8200 8318 8333 8334 8410 8426 8443 8461 8514 8519 8545 8558 8567 8575 8728 8771 8788 8800 8811 8827 8834 8880 8883 8888 8889 8910 8935 9000 9001 9002 9009 9013 9031 9037 9042 9043 9071 9080 9082 9091 9092 9095 9097 9100 9118 9120 9123 9126 9128 9131 9160 9170 9191 9195 9199 9200 9201 9244 9291 9292 9295 9306 9333 9345 9383 9398 9443 9513 9530 9595 9600 9710 9711 9761 9800 9869 9876 9898 9943 9992 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

inetnum: 115.159.0.0 - 115.159.255.255
netname: TencentCloud
descr: Tencent cloud computing (Beijing) Co., Ltd.
descr: Floor 6, Yinke Building,38 Haidian St,
descr: Haidian District Beijing
country: CN
admin-c: JT1125-AP
tech-c: JX1747-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-TENCENTCLOUD-CN
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
last-modified: 2023-11-28T00:56:55Z
irt: IRT-TencentCloud-CN
address: 9F, FIYTA Building, Gaoxinnanyi Road, Southern
address: District of Hi-tech Park, Shenzhen
e-mail: tencent_noc@tencent.com
admin-c: JT1125-AP
tech-c: JX1747-AP
abuse-mailbox: abuse@tencent.com
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-18T00:34:40Z
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
person: James Tian
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-84952
e-mail: johnsonqu@tencent.com
nic-hdl: JT1125-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2024-03-19T08:21:31Z
person: Jimmy Xiao
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-80224
e-mail: klayliang@tencent.com
nic-hdl: JX1747-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2021-09-17T00:38:09Z
route: 115.159.0.0/16
descr: Shenzhen Tencent Computer Systems Company Limited
country: CN
origin: AS45090
notify: jimmyxiao@tencent.com
mnt-by: MAINT-CNNIC-AP
last-modified: 2014-07-31T05:24:01Z

Links to attack logs

Share on: