116.62.229.154 Threat Intelligence and Host Information

Sep 23, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 116.62.229.154 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 30 times
  • Protocols Attacked: redis
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Malware Detected on Host

Count: 1 7e301348cb82e4ed8163faf5f47e6cac0e7fccd0c7f5529c313393a4ecc8ff44

Open Ports Detected

10001 10021 10052 10075 10083 101 10123 10210 10250 104 10443 10477 10554 1099 11 11000 11101 11112 11211 113 11601 1200 12149 12150 12161 12163 12175 12178 12195 12265 12277 12289 12301 12309 12310 12345 1235 12350 12370 12381 12393 12422 12460 12488 12491 12502 12504 12509 12521 12539 12556 13 1414 143 1433 15 15038 15831 16021 16033 1604 16073 16993 17000 1723 175 18012 18016 18022 18050 18070 18092 18101 18109 1883 19000 1911 1926 195 1958 1959 1962 1979 1980 20000 2002 2003 2008 20256 2051 2067 2081 2083 2087 20880 21232 21236 21247 21248 21276 21290 21330 21443 2154 22000 2202 22084 221 2222 2233 22556 23 23023 2332 2345 2351 24 2453 2455 25000 25001 25565 2572 2628 263 264 27015 27105 27571 2762 29798 30002 30121 3050 3058 3061 3067 3085 3091 31017 3106 3123 3133 31337 3135 3163 3179 3188 3195 3260 3268 3299 3301 3305 33060 3337 3500 37 3793 3841 389 4000 4064 4159 427 42901 4321 44158 4431 44333 44500 446 4530 465 4786 4899 49 49688 50009 5001 5007 50103 502 5025 503 50443 50996 50998 5150 5201 52200 5222 5273 5278 541 54138 55000 55553 5558 5598 5608 5680 5721 58000 5912 593 5938 5986 6000 6001 6002 6006 61613 63210 63256 63260 6379 6405 64295 6464 6503 6513 6514 6561 66 6653 666 6666 7001 7002 7014 7071 7081 7171 7218 7415 7537 771 7774 7801 785 80 800 8009 8028 805 8061 8070 8085 8087 8099 8111 8144 8166 8199 8243 8291 8315 8411 8416 8427 8443 8449 8453 8455 8462 8463 8482 8500 8519 8545 8595 8723 8808 8818 8833 8840 8853 8856 886 8881 8999 9023 9024 9051 9091 91 9100 9118 9158 9160 9217 9221 9241 9305 9333 9383 9398 9455 9515 9606 9704 9898 9943 9998

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2010-4478 CVE-2010-4755 CVE-2010-5107 CVE-2011-4327 CVE-2011-5000 CVE-2012-0814 CVE-2014-1692 CVE-2014-2532 CVE-2014-2653 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2016-0777 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2016-1908 CVE-2016-20012 CVE-2016-3115 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-16905 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

  • inetnum: 116.62.0.0 - 116.62.255.255
  • netname: ALISOFT
  • descr: Aliyun Computing Co., LTD
  • descr: 5F, Builing D, the West Lake International Plaza of S&T
  • descr: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • country: CN
  • admin-c: ZM1015-AP
  • tech-c: ZM877-AP
  • tech-c: ZM876-AP
  • tech-c: ZM875-AP
  • abuse-c: AC1601-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-CNNIC-AP
  • mnt-irt: IRT-ALISOFT-CN
  • last-modified: 2023-11-28T00:56:56Z
  • irt: IRT-ALISOFT-CN
  • address: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • e-mail: didong.jc@alibaba-inc.com
  • abuse-mailbox: didong.jc@alibaba-inc.com
  • admin-c: ZM877-AP
  • tech-c: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2021-09-05T23:38:36Z
  • role: ABUSE CNNICCN
  • country: ZZ
  • address: Beijing, China
  • phone: +000000000
  • e-mail: ipas@cnnic.cn
  • admin-c: IP50-AP
  • tech-c: IP50-AP
  • nic-hdl: AC1601-AP
  • abuse-mailbox: ipas@cnnic.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-09-19T17:20:32Z
  • person: Li Jia
  • address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
  • country: CN
  • phone: +86-0571-85022088
  • e-mail: jiali.jl@alibaba-inc.com
  • nic-hdl: ZM1015-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2025-07-01T07:12:42Z
  • person: Guoxin Gao
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022600
  • fax-no: +86-0571-85022600
  • e-mail: anti-spam@list.alibaba-inc.com
  • nic-hdl: ZM875-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2014-07-30T01:56:01Z
  • person: security trouble
  • e-mail: abuse@alibaba-inc.com
  • address: Hangzhou, Zhejiang, China
  • phone: +86-0571-85022600
  • country: CN
  • mnt-by: MAINT-CNNIC-AP
  • nic-hdl: ZM876-AP
  • last-modified: 2025-07-01T07:06:11Z
  • person: Guowei Pan
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022088-30763
  • fax-no: +86-0571-85022600
  • e-mail: abuse@alibaba-inc.com
  • nic-hdl: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2025-07-01T07:05:46Z
  • route: 116.62.128.0/17
  • descr: CNC Group CHINA169 Fujian Province Network
  • descr: Addresses from CNNIC(KUANCOM)
  • country: CN
  • origin: AS4837
  • mnt-by: MAINT-CNCGROUP-RR
  • last-modified: 2008-09-04T07:55:16Z

Links to attack logs

****** dotoronto-redis-bruteforce-ip-list-2021-03-28 ****** ******

Share on: