124.225.83.230 Threat Intelligence and Host Information

Oct 07, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 124.225.83.230 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Tags: bruteforce, cyber security, digital ocean, ioc, malicious, mssql, Nextray, nmap, phishing, port-scan, vultr

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 46 times
  • Protocols Attacked: mssql
  • Countries Attacked: Australia, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Singapore, Turkey, Ukraine, United Kingdom, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

10016 10018 10020 10029 10037 10041 10042 10047 10048 10075 10100 10106 10283 10324 10380 10810 11027 11075 11082 11084 11101 11481 1181 1195 12001 12056 12084 12130 12135 12137 12138 12140 12142 12146 12150 12151 12155 12160 12169 12172 12173 12180 12181 12184 12187 12191 12192 12194 12196 12204 12205 12206 12219 12224 12230 12238 12243 12248 12259 12272 12275 12319 12325 12326 12335 12338 12341 12347 12354 12359 12360 12374 12375 12389 12394 12399 12411 12418 12425 12431 12440 12444 12454 12468 12488 12493 12502 12504 12515 12522 12523 12527 12529 12530 12537 12552 12567 12569 12570 12577 12578 12601 12902 1291 1293 12980 13128 13443 14400 14894 14901 1494 15000 16002 16005 16014 16018 16031 16037 16038 16040 16042 16045 16054 16064 16067 16071 16077 16102 16831 17070 17774 17776 18004 18020 18022 18028 18037 18041 18046 18053 18056 18063 18066 18067 18071 18075 18080 18090 18095 18100 18103 1820 18443 18556 19013 19017 1950 1965 1968 1977 1981 1984 1987 1989 2055 2058 2060 2066 2072 2095 2096 2103 2201 2202 2223 2225 2232 2259 2320 2344 2382 2549 2551 2552 2559 2572 2806 3007 3021 3030 3042 3052 3064 3076 3094 3097 3099 3106 3112 3115 3122 3141 3148 3158 3162 3168 3170 3175 3176 3179 3183 3190 3199 3337 3402 3407 3540 3552 3690 3954 4002 4042 4101 4104 4159 4160 4190 4250 4439 4440 4459 4466 4520 4530 4531 4734 4933 5051 5070 5105 5130 5225 5237 5238 5243 5257 5258 5259 5270 5321 5440 5495 5569 5594 5630 5853 5907 5910 5916 5998 6005 6022 6050 6060 6070 6352 6512 6513 6581 6622 6650 6779 6799 6955 7000 7013 7078 7079 7082 7084 7473 7480 7654 7700 7780 7998 8003 8013 8016 8029 8030 8034 8041 8043 8050 8057 8071 8078 8092 8102 8116 8125 8146 8148 8149 8165 8170 8173 8177 8199 8243 8252 8300 8319 8322 8343 8350 8421 8423 8426 8429 8434 8442 8444 8450 8466 8472 8501 8526 8528 8532 8553 8564 8566 8573 8576 8577 8582 8586 8593 8594 8595 8607 8640 8643 8663 8706 8724 8731 8733 8782 8788 8804 8806 8810 8817 8821 8837 8838 8839 8843 8846 8848 8858 8867 8868 8873 8876 8901 8911 8916 8943 8969 8990 8999 9006 9012 9019 9031 9032 9044 9053 9054 9062 9066 9068 9074 9075 9078 9081 9089 9093 9105 9109 9113 9117 9120 9126 9130 9132 9147 9157 9170 9178 9181 9190 9195 9202 9204 9208 9226 9242 9248 9273 9291 9292 9299 9300 9307 9447 9488 9529 9532 9663 9704 9811 9900 9902 9908 9909 9922 9939 9990 9991

Map

Whois Information

  • inetnum: 124.225.80.0 - 124.225.83.255
  • netname: Hainan-TELECOM
  • descr: ZhongShan node Broad Band dialup pool 3
  • country: CN
  • admin-c: LZ8-AP
  • tech-c: LZ8-AP
  • mnt-by: MAINT-CN-CHINANET-HI
  • status: ASSIGNED NON-PORTABLE
  • last-modified: 2008-09-04T07:19:59Z
  • person: liuqing zheng
  • address: 20th Floor,TelecomCenter Building
  • address: NanHai Avenue,HaiKou HaiNan province
  • country: CN
  • phone: +86-898-66816971
  • fax-no: +86-898-66785993
  • e-mail: 089866775500@189.cn
  • nic-hdl: LZ8-AP
  • mnt-by: MAINT-CN-CHINANET-HI
  • last-modified: 2014-01-24T09:05:01Z
  • route: 124.225.0.0/16
  • descr: From Hainan Network of ChinaTelecom
  • origin: AS4134
  • mnt-by: MAINT-CHINANET
  • last-modified: 2008-09-04T07:54:48Z

Links to attack logs

dosing-mssql-bruteforce-ip-list-2022-08-12 dosing-mssql-bruteforce-ip-list-2022-08-11 nmap-scanning-list-2022-06-20 ****** dolondon-mssql-bruteforce-ip-list-2022-07-29 dofrank-mssql-bruteforce-ip-list-2022-07-09 vultrwarsaw-mssql-bruteforce-ip-list-2022-09-01 vultrparis-mssql-bruteforce-ip-list-2022-09-02 ****** ****** vultrparis-mssql-bruteforce-ip-list-2022-06-23

Share on: