211.239.181.182 Threat Intelligence and Host Information
Mar 26, 2026
ipinfopage
General
IP Address
211.239.181.182
Location
🇰🇷 South Korea
Network
AS9848
Threat Score
60/100
Attack Intelligence
MITRE ATT&CK Techniques
T1110.001 - Password Guessing, T1110.002 - Password Cracking, T1110.003 - Password Spraying, T1110 - Brute Force
Open Ports Detected
161
Geographic Location
Country
South Korea
City
Unknown
Region
Unknown
Coordinates
37.5112, 126.9741
Network Information
ASN
AS9848
Organization
Sejong Telecom
Network
AS9848 Sejong Telecom
WHOIS Information
query
211.239.181.182
IPv4주소
211.239.181.0 - 211.239.181.255 (/24)
기관명
코스메틱랜드
서비스명
SEJONG
주소
서울 강남구 역삼동
우편번호
06253
할당일자
20010419
이름
IP주소 담당자
전화번호
+82-2-563-2722
전자우편
eastbest@cosmetic.co.kr
네트워크 구분
CUSTOMER
할당내역 등록일
20001208
IPv4 Address
211.239.181.0 - 211.239.181.255 (/24)
Organization Name
Cosmetic Land
Service Name
SEJONG
Address
Yeoksam-dong Gangnam-gu Seoul
Zip Code
06253
Registration Date
20001208
Name
IP Manager
Phone
+82-2-563-2722
E-Mail
eastbest@cosmetic.co.kr
Network Type
CUSTOMER
Attack Logs
| Date | Target Location | Protocol | Link |
|---|---|---|---|
| 2026-03-17 | Vultrtokyo | SSH | View Log |
- Country: South Korea
- Network:
- Noticed: 35 times
- Protocols Attacked: portscan ssh
- Countries Attacked: Belgium, Finland, France, Germany, Malaysia, Poland, United States of America
CVEs Detected
CVE-2015-9251 CVE-2018-16843 CVE-2018-16844 CVE-2018-16845 CVE-2019-11358 CVE-2019-20372 CVE-2019-9511 CVE-2019-9513 CVE-2019-9516 CVE-2020-11022 CVE-2020-11023 CVE-2021-23017 CVE-2021-3618 CVE-2023-44487 CVE-2025-23419
Disclaimer
This page contains threat intelligence information for the IPv4 address 211.239.181.182 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.