122.225.96.157 Threat Intelligence and Host Information

Share on:
Jul 19, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 122.225.96.157 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 25/100

Host and Network Information

  • Tags: Nextray, cyber security, ioc, malicious, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network: AS4134 chinanet
  • Noticed: 1 times
  • Protcols Attacked: mssql
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: m.miaomudi.com sic365.com www.sic365.com gxlplc.com zhuzi.miaomudi.com yunnan.miaomudi.com hehua.miaomudi.com shuishan.miaomudi.com wuhuaguo.miaomudi.com xibei.miaomudi.com pucheng.miaomudi.com hebei.miaomudi.com www.jw.lipu.gov.cn shan-xi.miaomudi.com huajiao.miaomudi.com putao.miaomudi.com poshu.miaomudi.com yulan.miaomudi.com www.qiye.lipu.gov.cn gxlpdj.gov.cn gljdw.net www.guilinjdly.cn xiaoyerong.miaomudi.com neimenggu.miaomudi.com jinyinhua.miaomudi.com www.gxlpdj.gov.cn miaomudi.com chaigang.net www.gljdw.net www.lipu.net pic.miaomudi.com 5308f27b4901190f.cdn.fhldns.com www.miaomudi.com

Malware Detected on Host

Count: 1 072c7de18a9720120e1ec18b52b2c2fa7a40440ec241377d7c243606b6575237

Open Ports Detected

21 80 873

Map

Whois Information

  • inetnum: 122.225.96.144 - 122.225.96.159
  • netname: HANGZHOU-MATRIX-TECHNOLIGY
  • country: CN
  • descr: Hangzhou Matrix Technology Co., Ltd.
  • descr:
  • admin-c: YC1625-AP
  • tech-c: CH119-AP
  • status: ASSIGNED NON-PORTABLE
  • mnt-by: MAINT-CN-CHINANET-ZJ-HU
  • last-modified: 2009-08-19T07:07:10Z
  • role: CHINANET-ZJ Huzhou
  • address: No.18 Hongqi Road,Huzhou,Zhejiang.313000
  • country: CN
  • phone: +86-572-2022163
  • fax-no: +86-572-2210609
  • e-mail: [email protected]
  • admin-c: CH50-AP
  • tech-c: CH50-AP
  • nic-hdl: CH119-AP
  • mnt-by: MAINT-CHINANET-ZJ
  • last-modified: 2020-05-26T03:06:09Z
  • person: Yun Chen
  • nic-hdl: YC1625-AP
  • e-mail: [email protected]
  • address: Huzhou,Zhejiang.Postcode:313000
  • phone: +86-571-56062600
  • phone: +86-13588116040
  • country: CN
  • mnt-by: MAINT-CN-CHINANET-ZJ-HU
  • last-modified: 2009-02-16T10:21:13Z

Links to attack logs

nmap-scanning-list-2020-12-06 dofrank-mssql-bruteforce-ip-list-2021-03-24