125.138.115.99 Threat Intelligence and Host Information

Mar 04, 2026 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 125.138.115.99 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: 2026-02, Automated, cisco, cowrie, dionaea, fatt, honeytrap, mailoney, malicious, OpenCTI, p0f, sensor-tagged, sentrypeer, sftp, sip, ssh, suricata, tanner, telnet, tpot

  • View other sources: Spamhaus VirusTotal

  • Country: South Korea
  • Network:
  • Noticed: 6 times
  • Protocols Attacked: portscan telnet

Open Ports Detected

123 49152 9000

CVEs Detected

CVE-2013-5211 CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296 CVE-2014-9750 CVE-2014-9751 CVE-2015-1798 CVE-2015-1799 CVE-2015-5146 CVE-2015-5300 CVE-2015-7691 CVE-2015-7692 CVE-2015-7701 CVE-2015-7702 CVE-2015-7703 CVE-2015-7704 CVE-2015-7705 CVE-2015-7848 CVE-2015-7849 CVE-2015-7850 CVE-2015-7851 CVE-2015-7852 CVE-2015-7853 CVE-2015-7854 CVE-2015-7855 CVE-2015-7871 CVE-2015-7973 CVE-2015-7974 CVE-2015-7975 CVE-2015-7976 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8138 CVE-2015-8158 CVE-2016-1547 CVE-2016-2518 CVE-2016-4953 CVE-2016-4954 CVE-2016-4955 CVE-2016-4956 CVE-2016-7426 CVE-2017-6458 CVE-2018-7170 CVE-2018-7185 CVE-2019-8936 CVE-2020-11868 CVE-2020-13817

Map

Whois Information

  • query : 125.138.115.99
  • IPv4주소 : 125.128.0.0 - 125.159.255.255 (/11)
  • 기관명 : 주식회사 케이티
  • 서비스명 : KORNET
  • 주소 : 경기도 성남시 분당구 불정로 90
  • 우편번호 : 13606
  • 할당일자 : 20050822
  • 이름 : IP주소 담당자
  • 전화번호 : +82-2-500-6630
  • 전자우편 : kornet_ip@kt.com
  • IPv4주소 : 125.138.115.0 - 125.138.115.255 (/24)
  • 기관명 : (주) 케이티
  • 네트워크 구분 : CUSTOMER
  • 주소 : 경기도 성남시 분당구 불정로 90
  • 우편번호 : 13606
  • 할당내역 등록일 : 20241023
  • 이름 : IP주소 담당자
  • 전화번호 : +82-2-500-6630
  • 전자우편 : kornet_ip@kt.com
  • IPv4 Address : 125.128.0.0 - 125.159.255.255 (/11)
  • Organization Name : Korea Telecom
  • Service Name : KORNET
  • Address : Gyeonggi-do Bundang-gu, Seongnam-si Buljeong-ro 90
  • Zip Code : 13606
  • Registration Date : 20050822
  • Name : IP Manager
  • Phone : +82-2-500-6630
  • E-Mail : kornet_ip@kt.com
  • IPv4 Address : 125.138.115.0 - 125.138.115.255 (/24)
  • Organization Name : Korea Telecom
  • Network Type : CUSTOMER
  • Address : 90 Buljeongro Bundang-Gu Seongnam-Si Gyeonggi-Do
  • Zip Code : 13606
  • Registration Date : 20241023
  • Name : IP Manager
  • Phone : +82-2-500-6630
  • E-Mail : kornet_ip@kt.com

Links to attack logs

digitaloceanlondon-telnet-bruteforce-ip-list-2026-03-03

Share on: