42.248.78.118 Threat Intelligence and Host Information

Aug 18, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 42.248.78.118 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 30 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: 42.248.78.118

Open Ports Detected

10000 10001 10005 10006 10018 10025 10028 10034 10041 10045 10082 10084 10181 1023 1024 10243 10256 10393 10399 10443 10533 1080 10810 10892 10911 1099 11000 11075 11082 11110 11112 11180 11210 11211 11288 11300 11371 11434 1153 11681 12000 1207 12082 12084 12114 12125 12126 12131 12133 12137 12139 12144 12145 12151 12156 12159 12162 12164 12165 12166 12167 12170 12173 12178 12184 12197 12201 12203 12216 12245 12248 12257 12258 12262 12279 12292 12305 12308 12309 12316 12318 12322 12329 12341 12361 12366 12370 12377 12379 12380 12390 12398 12401 12405 12406 12408 12414 12418 12419 12422 12426 12437 12441 12446 12451 12454 12455 12459 12469 12474 12475 12478 12479 12481 12509 12512 12513 12519 12524 12525 12529 12536 12556 12558 12563 12571 12583 12585 12588 12589 12902 1293 1311 13333 1337 13579 1400 14082 1414 14147 14182 1433 14403 1443 1444 1452 1453 1458 1471 14905 14909 15042 1521 15443 15555 15673 1599 16010 16011 16030 16031 16035 16036 16038 1604 16041 16042 16044 16047 16060 16066 16072 16079 16080 16096 16100 16102 16443 16601 16666 16993 1701 17010 1723 1741 17778 18000 1801 18016 18017 18019 18046 18047 18057 18064 18065 18071 18076 18081 18087 18090 18093 18100 18107 18239 18245 18264 1883 19000 19015 19071 19082 1911 19233 1925 1926 1935 1953 1954 1957 1959 1965 1971 19999 20000 2002 2003 2030 2058 2062 2064 2065 2067 2070 2077 2081 2082 2083 2086 2087 2091 2095 2101 2130 2133 2134 2154 2156 22 2201 2221 2222 2232 2323 2332 2345 2353 2375 2376 2379 2382 2404 2480 2525 2549 2550 2552 2554 2563 2761 3000 3001 3002 3004 3021 3047 3051 3053 3056 3058 3065 3068 3077 3079 3084 3090 3091 3093 3107 3116 3123 3127 3129 3131 3133 3134 3138 3143 3147 3149 3156 3163 3171 3177 3187 3193 3260 3268 3269 3299 3301 3306 3310 3333 3352 3388 3389 3404 3409 3412 3510 3541 3542 3551 3553 3557 3559 3590 3689 3749 3780 3790 3792 3910 4000 4001 4040 4063 4064 4085 4117 4150 4172 4200 4300 4321 4343 4369 4430 4433 4434 4439 4443 4444 4500 4510 4567 4664 4700 4747 4782 4786 4821 4840 4848 4911 4933 4949 5000 5001 5005 5006 5007 5009 5070 5080 5180 5201 5223 5229 5240 5241 5254 5431 5432 5435 5446 5454 5456 5555 5601 5606 5613 5620 5630 5672 5673 5800 5801 5858 5901 5906 5914 5938 5984 5985 5986 5987 5990 5997 5998 6000 6002 6005 6022 6036 6080 6100 6134 6331 6379 6400 6443 6503 6505 6550 6601 6633 6653 6661 6664 6667 6668 6887 6955 7001 7004 7007 7018 7057 7078 7079 7086 7088 7171 7218 7348 7434 7441 7443 7444 7474 7480 7537 7547 7548 7634 7777 7790 7887 7946 7980 7989 7998 8000 8001 8008 8009 8010 8015 8026 8028 8034 8040 8043 8045 8054 8056 8070 8075 8078 8081 8083 8085 8086 8087 8089 8090 8096 8098 8099 8100 8103 8105 8111 8112 8113 8118 8123 8134 8135 8137 8138 8139 8141 8143 8145 8147 8148 8152 8156 8157 8164 8170 8173 8176 8181 8186 8187 8188 8190 8191 8192 8196 8200 8248 8251 8252 8291 8333 8334 8343 8388 8419 8421 8427 8430 8432 8433 8452 8461 8466 8470 8494 8503 8521 8528 8533 8544 8545 8549 8562 8566 8575 8587 8597 8630 8649 8706 8728 8764 8779 8782 8789 8811 8818 8823 8827 8830 8832 8834 8845 8852 8861 8864 8865 8867 8869 8872 8880 8883 8888 8889 8891 8980 8991 9000 9001 9002 9003 9009 9013 9019 9020 9021 9033 9034 9042 9043 9044 9060 9067 9069 9070 9071 9072 9075 9080 9085 9090 9091 9092 9095 9096 9100 9103 9110 9111 9113 9114 9117 9130 9148 9156 9161 9165 9172 9175 9180 9191 9192 9200 9216 9242 9244 9248 9250 9251 9252 9283 9303 9306 9311 9398 9399 9410 9443 9458 9465 9507 9530 9532 9553 9595 9600 9682 9711 9743 9761 9765 9773 9869 9876 9888 9909 9919 9929 9943 9944 9950 9981 9991 9994 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

  • inetnum: 42.248.0.0 - 42.255.255.255
  • netname: CHINANET-LN
  • descr: CHINANET Liaoning province network
  • descr: China Telecom
  • descr: No.31,jingrong street
  • descr: Beijing 100032
  • country: CN
  • admin-c: CC1699-AP
  • tech-c: CC1699-AP
  • abuse-c: AC1573-AP
  • status: ALLOCATED PORTABLE
  • notify: lnabuse@lntele.com
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-CHINANET-LN
  • mnt-irt: IRT-CHINANET-CN
  • last-modified: 2021-06-15T08:05:18Z
  • irt: IRT-CHINANET-CN
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • e-mail: anti-spam@chinatelecom.cn
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • mnt-by: MAINT-CHINANET
  • last-modified: 2025-04-24T03:21:26Z
  • role: ABUSE CHINANETCN
  • country: ZZ
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • phone: +000000000
  • e-mail: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • nic-hdl: AC1573-AP
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-04-24T03:21:54Z
  • person: CHINANET-LN Network Administrater Chinatelecom Liaoning Branch
  • nic-hdl: CC1699-AP
  • e-mail: shenchen.ln@chinatelecom.cn
  • address: No.6,feiyun Road,hunnan District,Shenyang
  • phone: +86-18940001400
  • fax-no: +86-24-31003370
  • country: CN
  • mnt-by: MAINT-CHINANET-LN
  • last-modified: 2019-11-05T13:31:49Z

Links to attack logs

****** bruteforce-ip-list-2021-01-28 ****** ******

Share on: