119.28.76.164 Threat Intelligence and Host Information

Feb 03, 2026 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 119.28.76.164 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 31/100

Host and Network Information

Tags: botnet iocs, botnet mirai, ddos, gorillabot, gs251386, gs2513862, gs251387, gs2518120, gs2518122, gs25181222, gs2519125, gs2519126, gs2519129, gs2519131, iocs, ipv4, linux, malware, mirai, mirai botnet, mirai internet, outlaw, things, twitter, xmrig
View other sources: Spamhaus VirusTotal

Country: Hong Kong
Network:
Noticed: 3 times
Protocols Attacked: Anonymous Proxy
Passive DNS Results: broccoliable.site polk.cn jo.judi.com franker.belmont.cn www.canlan.com sekisui.cn stonesoft.com.cn www.8.app atech.cn ngmchina.com gjdj.app i999.app stsy.app plsy.app pmdj.app dysy.app psdj.app w666.app wydj.app pddj.app xgsy.app gtyl.app p999.app dqsy.app xfyl.app j999.app htdj.app njsy.app x999.app ysyl.app snyl.app wfdj.app d999.app pcdj.app r999.app bkdj.app wcyl.app k999.app mhsy.app s999.app kbsy.app wndj.app y666.app mzyl.app s666.app jrsy.app t666.app xsyl.app b666.app jmdj.app xdsy.app kgsy.app y999.app fxsy.app d666.app fcsy.app yjsy.app mpyl.app yqsy.app ctsy.app nkdj.app xssy.app ybdj.app e666.app ppsy.app zbdj.app hcdj.app yksy.app xryl.app b999.app mlsy.app ybsy.app m666.app ltsy.app yb8.app qp533.app 066qp.app qp799.app qp388.app qp933.app 277qp.app qp588.app 977qp.app 4567qp.app qp377.app qp033.app qp366.app 5678qp.app 755qp.app 1111qp.app qp4567.app qp09.app 533qp.app 2345qp.app qp1234.app qp2222.app 233qp.app qp5555.app qp633.app qp6789.app 06qp.app qp788.app 099qp.app qp4444.app 633qp.app 855qp.app qp266.app qp155.app 677qp.app 833qp.app 877qp.app qp966.app qp955.app 6cai.app qp05.app ccqp.app syqp.app byqp.app ns1.dogor.cn tyxg.com cywl.com gskg.com gsgj.com dimensiondata.cn www.argusmedia.cn sysmex.cn 38188.com sbgj.com glassdoor.cn ebel.com.cn americanfunds.cn www.equiniti.cn bareescentuals.cn netflights.cn NS2.DOGOR.CN ecotricity.cn ceridian.cn ganghua.cn eulerhermes.com.cn ebio.cn smartertravel.cn 12228888.com ippbx.cn mica.cn comelit.cn dakim.cn digicert.com.cn pokernews.cn sampo.cn qdgp.com goodsearch.cn landor.com.cn aeropuertosgap.com fozzy.cn nbzw.com zapd.cn fudi.com worthpoint.cn optitex.cn medison.com.cn crc.cn youngy.cn drucker.cn brand-rex.com.cn typepad.cn calibex.cn givaudan.com.cn grapplemobile.cn 88928888.COM vantagehospitality.cn eftec.cn superchips.cn lubrizol.com.cn edox.com.cn corvette.cn smithweb.cn artron.com clsyfw.jryl.com muegge.cn equiniti.cn gw.cn lucozade.cn greatwestlifeco.cn videoarts.cn 11158888.com 13338888.com medapps.cn shunra.cn adage.com.cn simier.com dogor.cn fuld.cn hyip.cn COLLINS.CN qczl.com.cn howard.com.cn maria.cn dragonherbs.cn infoblox.cn cduniverse.cn metaflux.cn toromont.cn quickparts.cn jivesoftware.cn toodledo.cn wellyou.cn rkmp.cn molex.cn tvsn.cn taubert.cn lyleandscott.com.cn metacafe.com.cn safety-kleen.cn mercadolivre.cn hydroinc.cn eyeem.cn tishmanspeyer.com.cn depositfiles.cn jcbk.com altour.cn alternativeapparel.cn capgroup.cn symphonyenvironmental.cn descartes.cn gelifesciences.cn bijan.com.cn sumitomokenki.cn bradescoseguros.cn coldstonecreamery.cn melochemonnex.cn murakami.cn duolingo.com.cn oneida.com.cn ecotricity.com.cn espncricinfo.cn atubo.com.cn metrostyle.cn matrikonopc.com.cn jiachi.com.cn cruciani.cn tricoproducts.cn lumination.com.cn forexyard.cn whattoexpect.cn expat-blog.cn onlinefilefolder.cn rrdonnelley.cn americantower.cn anderol.cn sunshines.cn

Open Ports Detected

Map

Whois Information

inetnum: 119.28.0.0 - 119.29.255.255
netname: TencentCloud
descr: Tencent cloud computing (Beijing) Co., Ltd.
descr: Floor 6, Yinke Building,38 Haidian St,
descr: Haidian District Beijing
country: HK
admin-c: JT1125-AP
tech-c: JX1747-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-TENCENTCLOUD-CN
mnt-routes: MAINT-TENCENT-NET-AP-CN
last-modified: 2023-11-28T00:56:59Z
irt: IRT-TencentCloud-CN
address: 9F, FIYTA Building, Gaoxinnanyi Road, Southern
address: District of Hi-tech Park, Shenzhen
e-mail: tencent_noc@tencent.com
admin-c: JT1125-AP
tech-c: JX1747-AP
abuse-mailbox: abuse@tencent.com
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-18T00:34:40Z
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
person: James Tian
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-84952
e-mail: johnsonqu@tencent.com
nic-hdl: JT1125-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2024-03-19T08:21:31Z
person: Jimmy Xiao
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-80224
e-mail: klayliang@tencent.com
nic-hdl: JX1747-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2021-09-17T00:38:09Z
route: 119.28.64.0/19
descr: ComsenzNet routes
origin: AS133478
mnt-by: MAINT-COMSENZ1-CN
last-modified: 2015-12-14T12:36:14Z

Links to attack logs

anonymous-proxy-ip-list-2026-02-02

Share on: