115.230.126.49 Threat Intelligence and Host Information

May 31, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 115.230.126.49 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 40/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 29 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: www.qqaspf.com

Malware Detected on Host

Count: 178 71118a1febd1238efe10d2d06f54b7cf056d555bef14ecfed990e57d4f79f965 a39cbda84f37213c4c11774592800aa2de4b2f9b18dac95b32b7ac0dabc72279 e5319ac50503d5601774efcbe837528eb65ce2ac4bbf1d0933b3db74fb9eccd5 cc60c8072b1496625941287f8f564f3293f12662561981865c0e12b04f4ffda4 0e5d93b5b3848510fc61dce51ee143a5a7204d85f8da544fa4b74018364f0d56 544929b818bb040cd204a14b0ecad838ddac79aeee8ac204bb18d1806e2267bd 27b989a16a04c5d0d084ffc03f5cbff4aca963a57a9b3f04aacdb859c7ee2a53 58eadec685f2507ba3fafc322d7b796a52a4fd292c2628a0e16b29e582139681 103e1f63e737c506198cd279b33019505b2149220ec4f3371f94b9b6d073ec2b 80187ad4b715d5c09ce11256a73ba44bdc5b95d1c5b28d9c294383714b22974b

Map

Whois Information

  • inetnum: 115.230.126.0 - 115.230.126.255
  • netname: MOVEINTERNET-NETWORK
  • descr: MoveInternet Network Technology Co.,Ltd.
  • descr:
  • country: CN
  • admin-c: CJ1872-AP
  • tech-c: CS64-AP
  • abuse-c: AC1602-AP
  • status: ASSIGNED NON-PORTABLE
  • mnt-by: MAINT-CN-CHINANET-ZJ-SX
  • mnt-irt: IRT-CHINANET-ZJ
  • last-modified: 2021-06-24T07:44:16Z
  • irt: IRT-CHINANET-ZJ
  • address: Hangzhou, 288 fucun Road, China
  • e-mail: antispam_zjnoc@163.com
  • abuse-mailbox: antispam_zjnoc@163.com
  • admin-c: CZ61-AP
  • tech-c: CZ61-AP
  • mnt-by: MAINT-CHINANET-ZJ
  • last-modified: 2025-04-24T05:53:54Z
  • role: ABUSE CHINANETZJ
  • country: ZZ
  • address: Hangzhou, 288 fucun Road, China
  • phone: +000000000
  • e-mail: antispam_zjnoc@163.com
  • admin-c: CZ61-AP
  • tech-c: CZ61-AP
  • nic-hdl: AC1602-AP
  • abuse-mailbox: antispam_zjnoc@163.com
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-04-24T05:55:18Z
  • role: CHINANET-ZJ Shaoxing
  • address: No.9 Sima Road,Shaoxing,Zhejiang.312000
  • country: CN
  • phone: +86-575-5136199
  • fax-no: +86-575-5114449
  • e-mail: antispam_sx@zjnoc.hz.zj.cn
  • admin-c: CH109-AP
  • tech-c: CH109-AP
  • nic-hdl: CS64-AP
  • mnt-by: MAINT-CHINANET-ZJ
  • last-modified: 2023-06-28T01:46:12Z
  • person: ChenJi Jiang
  • nic-hdl: CJ1872-AP
  • e-mail: jijang2190@126.com
  • address: No.86 meilonghu Rd.,Shaoxing
  • phone: +86-18005750001
  • country: CN
  • mnt-by: MAINT-CN-CHINANET-ZJ-SX
  • last-modified: 2013-07-30T04:24:01Z

Links to attack logs

****** nmap-scanning-hosts-2020-09-29 mssql-bruteforce-ip-list-2020-09-29 ****** ******

Share on: