125.227.198.181 Threat Intelligence and Host Information

Share on:
Jul 20, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 125.227.198.181 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

  • JARM: 14d14d09d14d14d08c14d14d14d14de3b0c44298fc1c149afbf4c8996fb924

  • View other sources: Spamhaus VirusTotal

  • Country: Taiwan
  • Network: AS3462 data communication business group
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Passive DNS Results: enimmune-backup.direct.quickconnect.to

Open Ports Detected

443 80

CVEs Detected

CVE-2020-1979 CVE-2020-1980 CVE-2020-1981 CVE-2020-1982 CVE-2020-1990 CVE-2020-1993 CVE-2020-1994 CVE-2020-1996 CVE-2020-1998 CVE-2020-1999 CVE-2020-2000 CVE-2020-2002 CVE-2020-2003 CVE-2020-2005 CVE-2020-2006 CVE-2020-2007 CVE-2020-2008 CVE-2020-2009 CVE-2020-2010 CVE-2020-2011 CVE-2020-2012 CVE-2020-2013 CVE-2020-2014 CVE-2020-2015 CVE-2020-2016 CVE-2020-2017 CVE-2020-2021 CVE-2020-2022 CVE-2020-2027 CVE-2020-2028 CVE-2020-2029 CVE-2020-2030 CVE-2020-2034 CVE-2020-2036 CVE-2020-2037 CVE-2020-2039 CVE-2020-2040 CVE-2020-2041 CVE-2020-2043 CVE-2020-2044 CVE-2020-2048 CVE-2020-2050 CVE-2021-3031 CVE-2021-3032 CVE-2021-3036 CVE-2021-3037 CVE-2021-3045 CVE-2021-3046 CVE-2021-3047 CVE-2021-3054 CVE-2021-3060 CVE-2021-3061 CVE-2021-3062 CVE-2021-3063 CVE-2022-0011 CVE-2022-0022 CVE-2022-0023 CVE-2022-0024 CVE-2022-0028 CVE-2022-0030 CVE-2023-0004 CVE-2023-0005 CVE-2023-0007 CVE-2023-0008 CVE-2023-0010

Map

Whois Information

  • inetnum: 125.224.0.0 - 125.231.255.255
  • netname: HINET-NET
  • descr: Data Communication Business Group,
  • descr: Chunghwa Telecom Co.,Ltd.
  • descr: No.21, Sec.1, Xinyi Rd., Taipei City
  • descr: 10048, Taiwan
  • country: TW
  • admin-c: HN27-AP
  • tech-c: HN27-AP
  • abuse-c: AT939-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-TW-TWNIC
  • mnt-irt: IRT-TWNIC-AP
  • last-modified: 2021-11-04T00:49:03Z
  • irt: IRT-TWNIC-AP
  • address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: TWA2-AP
  • tech-c: TWA2-AP
  • mnt-by: MAINT-TW-TWNIC
  • last-modified: 2021-11-04T00:59:51Z
  • role: ABUSE TWNICAP
  • address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: TWA2-AP
  • tech-c: TWA2-AP
  • nic-hdl: AT939-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2021-11-04T01:00:32Z
  • person: HINET Network-Adm
  • address: CHTD, Chunghwa Telecom Co., Ltd.
  • address: No. 21, Sec. 21, Hsin-Yi Rd.,
  • address: Taipei Taiwan 100
  • country: TW
  • phone: +886 2 2322 3495
  • phone: +886 2 2322 3442
  • phone: +886 2 2344 3007
  • fax-no: +886 2 2344 2513
  • fax-no: +886 2 2395 5671
  • e-mail: [email protected]
  • nic-hdl: HN27-AP
  • mnt-by: MAINT-TW-TWNIC
  • last-modified: 2011-08-22T06:04:01Z
  • inetnum: 125.227.198.0 - 125.227.198.255
  • netname: HINET-NET
  • descr: Chunghwa Telecom Co.,Ltd.
  • descr: No.21-3, Sec. 1, Xinyi Rd., Taipei 10048, Taiwan, R.O.C.
  • descr: Taipei Taiwan
  • country: TW
  • admin-c: HN184-TW
  • tech-c: HN184-TW
  • mnt-by: MAINT-TW-TWNIC
  • changed: [email protected] 20051020
  • status: ASSIGNED NON-PORTABLE
  • person: HINET Network-Adm
  • address: CHTD, Chunghwa Telecom Co., Ltd.
  • address: Data-Bldg. 6F, No. 21, Sec. 1, Hsin-Yi Rd.,
  • address: Taipei Taiwan
  • country: TW
  • phone: +886-2-2322-3495
  • fax-no: +886-2-2344-2513
  • e-mail: [email protected]
  • nic-hdl: HN184-TW
  • changed: [email protected] 20130307

Links to attack logs

nmap-scanning-list-2021-01-02 nmap-scanning-list-2021-06-17