139.224.198.168 Threat Intelligence and Host Information

Oct 19, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 139.224.198.168 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 29 times
  • Protocols Attacked: redis
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

100 10000 10001 10003 10025 10029 10041 10134 10210 1025 10250 10393 10554 1063 1080 10909 10911 1099 11 11000 11001 11065 111 1119 11210 11288 11300 11601 1177 119 1190 11920 1195 1200 12112 12119 12138 12158 12166 12169 12174 12178 12179 12185 12196 122 12201 12208 12211 12222 12239 12241 12255 12267 12271 12273 12288 12297 12332 12339 1234 12345 12346 12355 12358 12371 12381 12404 12417 12423 12425 12429 12438 12447 12460 12470 12476 12478 12480 12481 12482 1250 12503 12506 12511 12522 12547 12548 12549 12550 12553 12554 12567 12582 12583 12586 12588 1292 13 13084 1337 1364 14104 1414 14265 143 14344 1446 1454 14909 1494 15 15001 15038 15123 1515 1521 15672 1599 16002 16003 16008 16021 1604 16054 16063 16069 16078 16080 16083 16085 16093 16096 16101 16104 16402 16403 16667 17000 17771 17772 17779 17780 179 1800 18006 18011 18012 18024 18026 18028 18031 18033 18038 18056 18063 18074 18080 18081 18085 18089 18095 18097 18181 18245 19 19000 19017 19022 19082 1911 1926 1954 1960 1962 1967 1971 1975 1977 1978 1983 1987 1989 199 19998 2002 2003 20053 20060 2008 20082 20100 20151 20202 20208 20256 2030 2051 20547 2058 2067 2068 2078 2083 2087 20880 2096 2121 21234 21240 21243 21251 21255 21257 2126 21273 21292 21293 21294 21296 21301 21313 21318 21326 21327 21330 2156 2181 2200 22000 2209 221 22103 2222 22380 2250 22556 2259 22705 23082 23182 2323 2327 2332 2345 2353 2376 2404 24181 2423 2455 25 25001 25008 2552 25565 2569 2572 2602 2628 264 27017 2762 28015 2806 2850 29799 2995 29984 30006 3001 3002 30021 3006 3011 3012 3014 3050 3088 3091 311 3118 3124 3133 31337 3140 31444 3145 3148 3154 3165 3178 3179 3182 3196 3198 32001 3260 3268 3269 32764 3301 3342 3388 3389 3400 3443 35000 35002 35100 3522 35241 3531 3549 3551 3567 36505 36982 37 37080 3790 3838 38520 389 4000 4022 4064 4080 4150 4157 41800 4242 42443 427 4282 43 4344 4369 44021 44158 44300 44304 44309 4431 4433 4434 44345 4438 4443 4444 4451 44510 44520 4463 44818 450 4500 4510 4530 45788 4700 47000 48019 4899 49 4949 49690 50000 50007 5006 5007 5010 50100 50160 5061 50777 5093 51002 5119 5123 51235 5135 515 5172 5222 5225 5226 5232 5236 5248 5249 5254 5255 5258 5261 5264 5269 5270 52951 53 53480 53484 5351 541 5432 5435 5446 548 55000 55481 55554 5557 5568 5593 5595 5603 5613 5671 5672 5680 5696 5698 57782 58443 5858 58603 5911 5913 5918 5938 5987 6000 6001 60129 6020 6036 6060 61613 61616 61617 62078 62443 6308 63256 63260 63443 6379 64295 6432 6513 65432 6565 6633 6653 666 6697 6699 6887 70 7001 7002 7014 7015 7018 7100 7105 7171 7218 7331 7415 7434 7441 7473 7548 7634 7773 7774 7878 79 7946 7980 80 8009 801 8013 8015 8016 8021 8026 8032 8043 8064 8078 8079 8087 8089 809 8103 8126 8139 8140 8141 8147 8160 8181 8194 8197 833 8384 8411 8422 8435 8440 8444 8445 8453 8461 8462 8463 8488 8502 8510 8513 8519 8524 8545 8548 8553 8560 8568 8571 8575 8589 8590 8592 87 8728 873 8745 8766 8801 8826 8833 8834 8839 8845 8859 8862 8868 8875 8884 8988 9000 9002 9016 9018 9019 9021 9038 9042 9047 9054 9059 9061 9062 9068 9079 9092 9110 9116 9119 9121 9122 9132 9136 9140 9142 9175 9187 9199 9201 9208 9211 9244 9245 9256 9291 9306 9333 9400 9410 9418 943 9455 9500 9600 9700 9704 9758 9761 9800 9802 9872 9876 9902 9908 993 9930 9943 9988 9994 9998 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2010-4478 CVE-2010-4755 CVE-2010-5107 CVE-2011-4327 CVE-2011-5000 CVE-2012-0814 CVE-2014-1692 CVE-2014-2532 CVE-2014-2653 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2016-0777 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2016-1908 CVE-2016-20012 CVE-2016-3115 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-16905 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2024-6387 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

  • NetRange: 139.224.0.0 - 139.224.255.255
  • CIDR: 139.224.0.0/16
  • NetName: APNIC-ERX-139-224-0-0
  • NetHandle: NET-139-224-0-0-1
  • Parent: NET139 (NET-139-0-0-0-0)
  • NetType: Early Registrations, Transferred to APNIC
  • OriginAS:
  • Organization: Asia Pacific Network Information Centre (APNIC)
  • RegDate: 2010-11-03
  • Updated: 2010-11-17
  • Comment: This IP address range is not registered in the ARIN database.
  • Comment: This range was transferred to the APNIC Whois Database as
  • Comment: part of the ERX (Early Registration Transfer) project.
  • Comment: For details, refer to the APNIC Whois Database via
  • Comment:
  • Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
  • Comment: for the Asia Pacific region. APNIC does not operate networks
  • Comment: using this IP address range and is not able to investigate
  • Comment: spam or abuse reports relating to these addresses. For more
  • Ref: https://rdap.arin.net/registry/ip/139.224.0.0
  • OrgName: Asia Pacific Network Information Centre
  • OrgId: APNIC
  • Address: PO Box 3646
  • City: South Brisbane
  • StateProv: QLD
  • PostalCode: 4101
  • Country: AU
  • RegDate:
  • Updated: 2012-01-24
  • Ref: https://rdap.arin.net/registry/entity/APNIC
  • OrgTechHandle: AWC12-ARIN
  • OrgTechName: APNIC Whois Contact
  • OrgTechPhone: +61 7 3858 3188
  • OrgTechEmail: search-apnic-not-arin@apnic.net
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • OrgAbuseHandle: AWC12-ARIN
  • OrgAbuseName: APNIC Whois Contact
  • OrgAbusePhone: +61 7 3858 3188
  • OrgAbuseEmail: search-apnic-not-arin@apnic.net
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • inetnum: 139.224.0.0 - 139.224.255.255
  • netname: ALISOFT
  • descr: Aliyun Computing Co., LTD
  • descr: 5F, Builing D, the West Lake International Plaza of S&T
  • descr: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • country: CN
  • admin-c: ZM1015-AP
  • tech-c: ZM877-AP
  • tech-c: ZM876-AP
  • tech-c: ZM875-AP
  • abuse-c: AC1601-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-CNNIC-AP
  • mnt-irt: IRT-ALISOFT-CN
  • last-modified: 2023-11-28T00:57:06Z
  • irt: IRT-ALISOFT-CN
  • address: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • e-mail: didong.jc@alibaba-inc.com
  • abuse-mailbox: didong.jc@alibaba-inc.com
  • admin-c: ZM877-AP
  • tech-c: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2021-09-05T23:38:36Z
  • role: ABUSE CNNICCN
  • country: ZZ
  • address: Beijing, China
  • phone: +000000000
  • e-mail: ipas@cnnic.cn
  • admin-c: IP50-AP
  • tech-c: IP50-AP
  • nic-hdl: AC1601-AP
  • abuse-mailbox: ipas@cnnic.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-09-19T17:20:32Z
  • person: Li Jia
  • address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
  • country: CN
  • phone: +86-0571-85022088
  • e-mail: jiali.jl@alibaba-inc.com
  • nic-hdl: ZM1015-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2025-07-01T07:12:42Z
  • person: Guoxin Gao
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022600
  • fax-no: +86-0571-85022600
  • e-mail: anti-spam@list.alibaba-inc.com
  • nic-hdl: ZM875-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2014-07-30T01:56:01Z
  • person: security trouble
  • e-mail: abuse@alibaba-inc.com
  • address: Hangzhou, Zhejiang, China
  • phone: +86-0571-85022600
  • country: CN
  • mnt-by: MAINT-CNNIC-AP
  • nic-hdl: ZM876-AP
  • last-modified: 2025-07-01T07:06:11Z
  • person: Guowei Pan
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022088-30763
  • fax-no: +86-0571-85022600
  • e-mail: abuse@alibaba-inc.com
  • nic-hdl: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2025-07-01T07:05:46Z
  • route: 139.224.198.0/24
  • origin: AS37963
  • descr: China Internet Network Information Center
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2020-02-18T01:32:39Z
  • route: 139.224.198.0/24
  • origin: AS45102
  • descr: China Internet Network Information Center
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2020-02-18T01:33:57Z

Links to attack logs

****** aws-redis-bruteforce-ip-list-2021-07-12 ****** ******

Share on: