116.248.88.225 Threat Intelligence and Host Information

Jun 13, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 116.248.88.225 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Mitre ATT&CK IDs: T1595 - Active Scanning

  • Tags: cyber security, ioc, malicious, Nextray, nmap, phishing, port-scan, scan, sip, sipvicious, ssh, tsec

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 50 times
  • Protocols Attacked: mssql
  • Countries Attacked: Australia, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: 116.248.88.225

Malware Detected on Host

Count: 1 c9531d194ca1e65a6bffa3e0922d153e5fe7e7a0902fd19eb16cea6d8c432b00

Open Ports Detected

10000 10001 10004 10011 10015 10017 10018 10020 10024 10026 10027 10031 10048 10052 10068 10071 10081 10089 10090 10134 10180 102 10200 10205 10209 1023 10250 10251 10255 10302 10348 10380 10398 104 10443 10533 1063 1080 10909 10911 10933 1099 11 11000 11027 11082 111 11110 11112 11210 11288 113 11401 11443 1153 11680 11701 1177 119 12000 12001 12084 12088 12104 12106 12107 12112 12113 12114 12116 12117 12118 12124 12125 12130 12132 12136 12138 12140 12142 12144 12165 12171 12176 12182 12183 12188 12191 12198 12207 12208 12214 12217 12220 12225 12240 12244 12247 12248 12253 12255 12265 12269 12272 12279 12283 12286 12288 12289 12290 12293 12300 12301 12312 12317 12322 12325 12327 12329 12333 12336 1234 12340 12341 12344 12345 12346 1235 12351 12354 12356 12363 12364 12365 12366 12367 12382 12384 12385 12386 12389 12390 12404 12407 12410 12412 12416 12417 12422 12428 12430 12432 12439 12441 12444 12450 12462 12465 12469 12471 12473 12479 12483 12486 12493 12494 12496 12503 12507 12509 12513 12516 12522 12523 12531 12544 12546 12550 12553 12555 12556 12559 12560 12567 12575 12577 12585 12587 1293 13 13082 1337 1364 14130 1414 14265 143 14344 1443 1450 14523 1454 1455 1456 14873 14894 14896 14900 14909 15 1515 15151 1521 15503 1599 16003 16006 16008 16013 16016 16018 16021 16023 16025 16035 16037 1604 16040 16041 16048 16052 16054 16058 16059 16061 16063 16070 16073 16077 16078 16083 16089 16094 16311 16400 16601 16888 17 17000 17001 17082 17102 17184 1723 175 177 17774 17777 17778 17780 179 180 1800 18009 18010 18012 18013 18019 18025 18026 18034 18046 18047 18048 18053 18056 18057 18059 18070 18074 18077 18078 18081 18082 18088 18091 18094 18101 18102 18181 1820 18200 18245 1830 18443 1883 189 19 1911 19233 1926 195 1957 1962 1964 1977 1980 1983 1986 1988 19999 20 2000 20000 2001 2002 2003 2008 20100 20110 20200 20256 2030 20325 20547 2055 2060 2061 2063 2067 2072 2080 2081 2083 2087 20880 2095 2096 21 21001 21002 2101 21025 2103 21081 21084 211 2121 2122 21234 21237 21243 21244 21248 21250 21255 21256 21258 2126 21260 21264 21265 21273 21276 21277 21285 21286 21293 21305 21314 21317 21322 21327 2133 21330 21379 21381 2154 2156 2181 22107 22206 2222 2226 2232 2248 22556 2259 22703 2271 23 23023 23182 2323 2332 2344 2345 2376 2404 243 2433 2453 25 25001 2551 2552 2556 2559 2628 264 27015 27017 2761 28015 285 29798 29799 30002 30003 30008 3001 30015 30025 30050 3010 3011 30112 30113 3012 3014 3018 3020 3022 30473 3052 3054 3060 3067 3068 3074 3080 3082 3083 3085 3089 3092 3097 3102 3103 311 3115 3119 3129 3135 3137 31380 3139 31443 3146 3154 3157 3165 3167 3168 3174 3176 3177 3178 3188 3191 3194 32001 3260 3268 3269 32764 3299 3301 3306 33060 3349 3388 3389 3402 3403 3409 3410 343 34500 3500 35000 3503 3510 35100 35101 35153 3540 3551 3552 35524 35531 3562 3572 3622 36505 3690 37 3790 385 389 3950 400 4000 40001 40005 4002 40070 4022 4063 4064 40894 4147 4157 41800 42208 42235 4242 4250 427 4282 43 4321 43221 4369 4401 44100 44158 443 44304 44320 4433 4434 4435 4436 44365 4438 444 4440 44444 4449 44500 4463 4477 44818 4500 4505 4506 45111 4520 4523 4531 4543 4550 4602 4646 465 47080 4747 4786 47990 48000 48018 48019 4808 48100 4821 4840 488 48888 4899 49 49080 4911 49200 4949 49688 49690 50000 50001 50004 50007 50009 5001 5006 5007 50073 50080 5009 5010 50100 50101 50105 5011 50113 5025 503 50443 5051 5083 50998 5100 51001 5119 51200 51201 5123 51235 513 5135 515 5160 5172 5190 5201 52010 5222 52230 5226 5228 5240 5246 5249 52536 5257 5262 5265 5269 5278 5279 53 53480 53484 53490 5351 54022 541 54138 5435 54545 548 5495 55000 55055 55080 5523 55350 554 5542 5544 55443 555 55553 55554 5569 5591 5597 5600 5609 5614 5640 5672 5696 5721 57778 57782 57786 58000 5822 58443 58603 5912 5913 5938 5984 5986 5991 5998 6000 6001 6002 60023 60129 6020 61557 6161 62078 6308 63210 63256 63260 6331 6379 6400 6405 6433 6443 6505 6510 6513 6514 6543 6550 6601 6602 6603 6633 6653 666 6662 6666 6697 6748 6887 6955 70 7001 7003 7013 7022 7057 7070 7080 7105 7171 7218 7349 7401 7415 7434 7443 7493 7548 7634 771 7788 7801 7822 785 7887 789 7900 7998 8009 801 8011 8012 8018 8023 8027 8031 8034 8039 8041 8042 8045 805 8052 8055 8058 8059 8065 8068 8070 8081 8083 8085 8087 8089 809 8097 8099 8101 8102 8106 811 8111 8114 8117 8121 8126 8133 8139 8140 8146 8152 8156 8161 8164 8167 8176 8181 8183 8190 8191 8196 8203 8238 8249 8283 8284 8291 830 8333 8350 8382 8383 8385 8388 8405 8410 8412 8422 8429 8433 8443 8444 8449 8450 8453 8456 8457 8460 8463 8466 8470 8500 8514 8515 8523 8528 8529 8531 8533 8543 8545 8549 8553 8554 8563 8564 8566 8567 8568 8571 8575 8578 8587 8594 8597 8605 8607 8621 8640 8641 8649 8702 8705 8706 8709 8723 8728 873 8731 8765 8767 8779 8782 8784 8787 8788 8789 8807 8809 8811 8812 8819 8820 8829 8834 8836 8846 8847 8849 885 8852 8857 8858 8864 8871 8878 8879 888 8880 8889 8899 8902 8908 8911 8912 8935 8980 8990 8991 9000 9001 9002 9003 9005 9006 9010 9015 9016 9023 9026 9037 9038 9042 9048 9049 9051 9063 9065 9071 9074 9079 9082 9088 9091 9092 9095 9098 91 9100 9103 9106 9114 9116 9117 9119 9126 9133 9140 9144 9145 9149 9151 9152 9153 9154 9158 9161 9165 9169 9170 9171 9175 9185 9196 9197 9199 92 9206 9215 9219 9230 9273 9283 9291 93 9306 9308 9310 9333 9387 9389 9398 9400 9418 9441 9443 9455 95 9501 9513 953 9530 9550 9600 9633 9754 9758 9761 9876 9898 9899 99 9900 9908 992 9923 9926 993 9943 995 9998 9999

Map

Whois Information

  • inetnum: 116.248.0.0 - 116.249.255.255
  • netname: CHINANET-YN
  • descr: CHINANET YUNNAN PROVINCE NETWORK
  • descr: China Telecom
  • descr: No.31,jingrong street
  • descr: Beijing 100032
  • country: CN
  • admin-c: ZL48-AP
  • tech-c: ZL48-AP
  • abuse-c: AC1573-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-CHINANET
  • mnt-lower: MAINT-CHINANET-YN
  • mnt-irt: IRT-CHINANET-CN
  • last-modified: 2021-06-15T08:05:39Z
  • irt: IRT-CHINANET-CN
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • e-mail: anti-spam@chinatelecom.cn
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • mnt-by: MAINT-CHINANET
  • last-modified: 2025-04-24T03:21:26Z
  • role: ABUSE CHINANETCN
  • country: ZZ
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • phone: +000000000
  • e-mail: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • nic-hdl: AC1573-AP
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-04-24T03:21:54Z
  • person: zhiyong liu
  • nic-hdl: ZL48-AP
  • e-mail: ynipmail@163.com
  • address: 136 beijin roadkunmingchina
  • phone: +86-871-68226585
  • fax-no: +86-871-8221536
  • country: CN
  • mnt-by: MAINT-CHINANET-YN
  • last-modified: 2018-12-27T01:58:34Z

Links to attack logs

dosing-mssql-bruteforce-ip-list-2022-01-07 ****** dofrank-mssql-bruteforce-ip-list-2021-03-25 nmap-scanning-list-2021-06-19 dosing-mssql-bruteforce-ip-list-2021-11-11 nmap-scanning-list-2023-06-16 nmap-scanning-list-2021-06-15 nmap-scanning-list-2020-11-03 nmap-scanning-list-2022-01-18 ****** aws-mssql-bruteforce-ip-list-2021-03-04 dosing-mssql-bruteforce-ip-list-2021-08-31 ****** awsau-mssql-bruteforce-ip-list-2022-03-10

Share on: