222.74.27.42 Threat Intelligence and Host Information

Aug 04, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 222.74.27.42 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 30 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

18888 19000 19071 19080 19082 19084 19100 19233 19776 19999 20000 20018 20040 20060 20090 20110 20121 20256 20440 20547 20800 20880 21002 21025 21100 21231 21233 21238 21240 21244 21246 21251 21256 21257 21263 21264 21269 21273 21275 21276 21280 21281 21286 21289 21290 21291 21295 21296 21301 21313 21314 21315 21320 21321 21325 21379 21381 21500 22000 22084 22345 22380 22403 22705 23023 23182 23424 24082 24181 25001 25002 25004 25006 25007 25009 25105 25565 25782 27015 27017 28015 28017 28080 29798 30002 30004 30005 30015 30023 30101 30112 30122 30444 30452 30479 30501 30701 31210 31337 31444 32400 32444 32746 32764 33060 35000 35153 35240 35522 35524 35559 35560 36505 36982 36984 37215 37443 37777 40001 40892 41800 42235 42424 42901 44158 44301 44307 44332 44337 44341 44345 44350 44365 44444 44500 44818 45000 45001 45039 45333 45677 47000 47001 47989 47990 48000 49152 49153 49200 49690 49767 50000 50002 50009 50010 50013 50050 50070 50085 50100 50102 50104 50106 50500 50580 50997 50998 50999 51004 51005 51106 51200 51235 52311 52536 52869 52881 52931 53483 53490 53806 54022 54138 54545 54857 55000 55442 55443 55475 55481 55490 55553 55554 57778 57780 57781 57785 57787 58443 60000 60001 60010 60030 60099 60129 61234 61613 61616 61617 62078 62080 62865 63210 63256 63260 63443 64295 64477 65000

CVEs Detected

CVE-2017-20005 CVE-2017-7529 CVE-2018-16843 CVE-2018-16844 CVE-2018-16845 CVE-2019-20372 CVE-2019-9511 CVE-2019-9513 CVE-2019-9516 CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

Map

Whois Information

  • inetnum: 222.74.0.0 - 222.74.255.255
  • netname: CHINANET-NM
  • descr: CHINANET neimeng province network
  • descr: China Telecom
  • descr: No.31,jingrong street
  • descr: Beijing 100032
  • country: CN
  • admin-c: CY690-AP
  • tech-c: CH93-AP
  • abuse-c: AC1573-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-CHINANET-NM
  • mnt-routes: MAINT-CHINANET-NM
  • mnt-irt: IRT-CHINANET-CN
  • last-modified: 2021-06-15T08:04:55Z
  • irt: IRT-CHINANET-CN
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • e-mail: anti-spam@chinatelecom.cn
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • mnt-by: MAINT-CHINANET
  • last-modified: 2025-04-24T03:21:26Z
  • role: ABUSE CHINANETCN
  • country: ZZ
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • phone: +000000000
  • e-mail: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • nic-hdl: AC1573-AP
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-04-24T03:21:54Z
  • person: Chinanet Hostmaster
  • nic-hdl: CH93-AP
  • e-mail: anti-spam@chinatelecom.cn
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • phone: +86-10-58501724
  • fax-no: +86-10-58501724
  • country: CN
  • mnt-by: MAINT-CHINANET
  • last-modified: 2022-02-28T06:53:44Z
  • person: Cao Yong Gang
  • nic-hdl: CY690-AP
  • e-mail: linjianfeng.nm@chinatelecom.cn
  • address: the 8th floorses of Postal service mansion,Train station east street,Huhhot,010020
  • phone: +86-471-3386960
  • fax-no: +86-471-3380003
  • country: CN
  • mnt-by: MAINT-CHINANET-NM
  • last-modified: 2021-05-06T02:10:03Z

Links to attack logs

****** mssql-bruteforce-ip-list-2021-02-10 ****** ******

Share on: