103.229.125.106 Threat Intelligence and Host Information

Apr 23, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 103.229.125.106 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 39/100

Host and Network Information

  • Tags: Brute-Forc, Bruteforce, Brute-Force, info, notice, SSH

  • View other sources: Spamhaus VirusTotal

  • Country: Taiwan
  • Network:
  • Noticed: 2 times
  • Protocols Attacked: SSH
  • Passive DNS Results: aabbbgg99.com aabbbggg66.com abg111com.net abgz22.net abg222com.net abg7777net.net adg222.net abg6666.top abg222.top abg111.top abg7777.top abg-222.com abg11l.com abgi11.com abbg111.com adg222.com abgl11.com abg1l1.com abg1i1.com aabg111.com abg11i.com abgz22.com abbg222.com abg22net.com abg222-net.com aabg222.com abbgg111.com bai23.xyz bai22.xyz bai96.xyz bai95.shop baidu95.live baidu94.live baidua3.live baidunan.live ztqj.net ztsij.com

Malware Detected on Host

Count: 1 85512f9970f4f3b062895bcb934930ac2ce8bd668f1b66e1f9e46d055781ee9e

Open Ports Detected

22 80

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465

Map

Whois Information

  • inetnum: 103.229.125.0 - 103.229.125.255
  • netname: MAINT-DHRC-TW
  • descr: Hosted in Cloudie Limited in Hong Kong
  • country: HK
  • geoloc: 22.335066 114.19588
  • admin-c: DHRC1-AP
  • tech-c: DHRC1-AP
  • abuse-c: AD986-AP
  • status: ASSIGNED NON-PORTABLE
  • mnt-by: MAINT-DHRC-TW
  • mnt-irt: IRT-DHRC-TW
  • last-modified: 2021-04-27T17:02:01Z
  • irt: IRT-DHRC-TW
  • address: No.2 WenChang street PingDeLi BeiTun distance TaiZhong city, TaiZhong TaiZhong
  • e-mail: zhangliangchangtw@gmail.com
  • abuse-mailbox: zhangliangchangtw@gmail.com
  • admin-c: DHRC1-AP
  • tech-c: DHRC1-AP
  • mnt-by: MAINT-DHRC-TW
  • last-modified: 2025-01-29T13:08:00Z
  • role: ABUSE DHRCTW
  • country: ZZ
  • address: No.2 WenChang street PingDeLi BeiTun distance TaiZhong city, TaiZhong TaiZhong
  • phone: +000000000
  • e-mail: zhangliangchangtw@gmail.com
  • admin-c: DHRC1-AP
  • tech-c: DHRC1-AP
  • nic-hdl: AD986-AP
  • abuse-mailbox: zhangliangchangtw@gmail.com
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-01-29T13:08:40Z
  • address: No.2 WenChang street PingDeLi BeiTun distance TaiZhong city, TaiZhong TaiZhong
  • country: TW
  • phone: +886-0933643674
  • fax-no: +886-0933643674
  • e-mail: zhangliangchangtw@gmail.com
  • admin-c: DHRC1-AP
  • tech-c: DHRC1-AP
  • nic-hdl: DHRC1-AP
  • mnt-by: MAINT-DHRC-TW
  • last-modified: 2014-04-11T02:04:32Z
  • route: 103.229.124.0/23
  • origin: AS55933
  • mnt-by: MAINT-HVISCL-HK
  • last-modified: 2020-01-24T10:56:14Z

Links to attack logs

bruteforce-ip-list-2025-04-23

Share on: