123.153.3.117 Threat Intelligence and Host Information

Feb 17, 2026 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 123.153.3.117 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

Tags: cyber security, ioc, malicious, Nextray, phishing
View other sources: Spamhaus VirusTotal

Country: China
Network:
Noticed: 29 times
Protocols Attacked: mssql
Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
Passive DNS Results: wx.huxh.com

Open Ports Detected

10001 10086 12000 3306 443 4433 5001 7001 7443 8001 8060 8081 8090 81 9092

CVEs Detected

CVE-2010-1899 CVE-2010-2730 CVE-2010-3972 CVE-2014-4078 CVE-2023-22032 CVE-2023-22059 CVE-2023-22066 CVE-2023-22068 CVE-2023-22070 CVE-2023-22078 CVE-2023-22084 CVE-2023-22095 CVE-2023-22097 CVE-2023-22103 CVE-2023-22114 CVE-2023-44487 CVE-2024-20961 CVE-2024-20963 CVE-2024-20965 CVE-2024-20967 CVE-2024-20969 CVE-2024-20971 CVE-2024-20973 CVE-2024-20975 CVE-2024-20977 CVE-2024-20981 CVE-2024-20985 CVE-2024-21047 CVE-2024-21061 CVE-2024-21062 CVE-2024-21069 CVE-2024-21087 CVE-2024-21096 CVE-2024-21101 CVE-2024-21102 CVE-2024-21171 CVE-2025-23419

Map

Whois Information

inetnum: 123.152.0.0 - 123.159.255.255
netname: UNICOM-ZJ
descr: China Unicom Zhejiang province network
descr: China Unicom
country: CN
admin-c: CH1302-AP
tech-c: JQ16-AP
abuse-c: AC1718-AP
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-ZJ
mnt-routes: MAINT-CNCGROUP-RR
mnt-irt: IRT-CU-CN
last-modified: 2025-01-22T13:16:17Z
irt: IRT-CU-CN
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
e-mail: zhaoyz3@chinaunicom.cn
abuse-mailbox: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
mnt-by: MAINT-CNCGROUP
last-modified: 2025-11-18T00:26:20Z
role: ABUSE CUCN
country: ZZ
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
phone: +000000000
e-mail: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
nic-hdl: AC1718-AP
abuse-mailbox: zhaoyz3@chinaunicom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-10-17T02:26:56Z
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: hqs-ipabuse@chinaunicom.cn
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
mnt-by: MAINT-CNCGROUP
last-modified: 2017-08-17T06:13:16Z
person: Jianhuaq Qian
nic-hdl: JQ16-AP
e-mail: zj_ipmaster@126.com
address: No 1336,BinAn Road,Hangzhou, Zhejiang,China
phone: +86-571-28868063
fax-no: +86-571-28868069
country: CN
mnt-by: MAINT-CNCGROUP-ZJ
last-modified: 2013-07-09T07:43:26Z
route: 123.152.0.0/13
descr: CNC Group CHINA169 Zhejiang Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
last-modified: 2008-09-04T07:54:55Z

Links to attack logs

****** ****** dofrank-mssql-bruteforce-ip-list-2021-09-12 ******

Share on: