123.138.87.62 Threat Intelligence and Host Information

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Host and Network Information

• Tags: Scanner, Webattack, awsjap, bruteforce, mssql, nmap, port-scan, scanning, smtp, ssh, tcp, tsec

• View other sources: Spamhaus VirusTotal

• Country: China
• Network: AS4837 china unicom china169 backbone
• Noticed: 26 times
• Protcols Attacked: mssql
• Countries Attacked: Australia, Germany, Japan

Open Ports Detected

5001 8443 8999 9000

Map

Whois Information

• inetnum: 123.138.87.0 - 123.138.87.255
• netname: PPPoe
• country: CN
• descr: XiAnCity-IpAddressPool-144
• admin-c: CH679-AP
• tech-c: CH679-AP
• status: ASSIGNED NON-PORTABLE
• mnt-by: MAINT-CNCGROUP-SN
• last-modified: 2008-11-13T02:40:50Z
• person: CNCGroup-SN Hostmaster
• nic-hdl: CH679-AP
• e-mail: [email protected]
• address: China Network Communication ,SVT
• address: NO.2 GuangDe Road, High Tec Zone
• address: Xi’an, Shannxi, China
• phone: +86-29-88192060
• fax-no: +86-29-88192037
• country: CN
• mnt-by: MAINT-CNCGROUP-SN
• last-modified: 2008-09-04T07:35:34Z
• route: 123.138.0.0/15
• descr: CNC Group CHINA169 Shanni Province Network
• country: CN
• origin: AS4837
• mnt-by: MAINT-CNCGROUP-RR
• last-modified: 2008-09-04T07:54:55Z

Links to attack logs

awsjap-mssql-bruteforce-ip-list-2022-01-21 dolondon-mssql-bruteforce-ip-list-2021-11-21 nmap-scanning-list-2021-12-10 awsjap-mssql-bruteforce-ip-list-2022-04-23