43.248.99.74 Threat Intelligence and Host Information

Mar 04, 2026 ipinfopage

General

IP Address
43.248.99.74
IPv4 Address
Location
🇨🇳 China
CN
Network
AS56046
China Mobile communications corporation
Threat Score
37/100
Medium Risk
01.10.202520252026-02Automatedbruteforceciscocowriedigital
Attack Intelligence
MITRE ATT&CK Techniques
T1595 - Active Scanning
Open Ports Detected
14101
Geographic Location
Country
China
City
Unknown
Region
Unknown
Coordinates
34.7732, 113.7220
Network Information
ASN
AS56046
Organization
China Mobile communications corporation
Network
AS56046 China Mobile communications corporation
WHOIS Information
inetnum
43.248.96.0 - 43.248.99.255
netname
DYIDC
descr
Runzhou District Zhenjiang City Jiangsu Province
country
CN
admin-c
IP50-AP
tech-c
IP50-AP
abuse-c
AC1601-AP
status
ALLOCATED PORTABLE
mnt-by
MAINT-CNNIC-AP
mnt-lower
MAINT-CNNIC-AP
mnt-routes
MAINT-CNNIC-AP
mnt-irt
IRT-DYIDC-CN
last-modified
2017-02-07T09:54:01Z
irt
IRT-DYIDC-CN
address
Runzhou District Zhenjiang City Jiangsu Province
e-mail
55561723@qq.com
abuse-mailbox
ipas@cnnic.cn
role
ABUSE CNNICCN
phone
+86-18505112228
nic-hdl
YW6713-AP
person
Yang jing
Attack Logs
Date Target Location Protocol Link
2026-02-27 Toronto, Canada MSSQL View Log

  • Country: China
  • Network:
  • Noticed: 11 times
  • Protocols Attacked: mssql portscan
  • Countries Attacked: Australia, Finland, France, Germany, Poland, United States of America
  • Passive DNS Results: luoyuebingxue.com vegie.cn ebud.cn www.ebud.cn

Malware Detected on Host

Count: 1 5726e05a6d21717b2fd025698f6e308aab839311545d844673b086461caedb6e

CVEs Detected

CVE-2014-4078

Disclaimer
This page contains threat intelligence information for the IPv4 address 43.248.99.74 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.