222.185.244.178 Threat Intelligence and Host Information

Share on:

General

This page contains threat intelligence information for the IPv4 address 222.185.244.178 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 27/100

Host and Network Information

  • Tags: Nextray, alienvault ip, aws, bernal, botnet c2, bruteforce, carapicuiba, cyber security, dstip, feodo tracker, generic, ho chi, host at, host de, host in, host tw, ioc, ip blocklist, la, lafusioncenter, louisiana, malicious, malicious host, mssql, nmap, phishing, port-scan, tsec
  • View other sources: Spamhaus VirusTotal
  • Contained within other IP sets: ciarmy

  • Country: China
  • Network: AS4134 chinanet
  • Noticed: 1 times
  • Protcols Attacked: mssql
  • Countries Attacked: Australia, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: hsqgz.direct.quickconnect.to

Open Ports Detected

100 10000 10001 1012 10134 102 1024 10243 1025 1026 1028 10443 10554 106 1063 1080 1099 11 110 11000 111 11112 11210 11211 113 11300 11371 1167 1177 12000 121 1234 12345 1290 13 1311 1337 1355 1366 1400 14147 143 1471 15 1515 154 1554 1588 1599 16010 1604 16992 16993 17 17000 1723 1741 175 180 1801 18081 18245 19 19000 1911 1925 1935 1947 195 1990 2000 2002 2003 2006 2008 2010 2012 2018 2021 20256 2049 2052 20547 2055 2058 2062 2066 2067 2068 2070 2079 2082 2083 2086 2087 2100 21025 2111 2121 2126 21379 2154 2181 2200 2221 2222 225 2250 2259 23023 2320 2323 23424 2345 2375 2376 2379 24 2404 2443 2455 25001 2506 25105 2555 2556 25565 2557 2558 2559 2560 2568 2570 263 264 27015 27017 2761 28015 28017 2806 3000 3001 3002 3048 3049 3050 3052 3053 3054 3059 3063 3066 3072 3073 3076 3077 3078 3079 3080 3082 3083 3084 3085 3086 3087 3090 3091 3095 3097 3099 3102 3104 3105 3106 3108 311 3116 3118 3129 31337 3200 32400 3268 3269 32764 3299 3301 33060 3352 3388 3389 3400 3401 3402 3403 3404 3405 3409 3443 3460 35000 3503 3522 3523 3541 3548 3551 3552 3555 3557 3558 3559 3560 3561 3562 3567 3569 3570 3689 37 37215 37777 3780 3790 3793 38 3838 389 3950 3952 3953 4002 4022 4040 4043 4063 4064 4100 4117 4157 41800 4190 4200 4242 4243 427 4282 4321 4369 44158 4433 444 4443 4445 44818 449 4505 4506 4523 4524 4545 4550 4567 4643 465 4664 4700 4782 4786 4840 4848 4899 49 4911 49153 4949 5000 50000 5002 5003 5004 5005 50050 5006 5007 50070 5009 5010 50100 502 5025 503 5090 51106 51235 515 5150 5201 5209 5222 5269 5280 52869 53 5357 54138 5435 548 55000 5542 55443 5555 55553 55554 5560 5590 5591 5593 5595 5597 5601 5602 5603 5605 5606 5609 5672 5673 5800 5801 5822 5858 587 5900 5901 5908 5909 5938 5986 6000 60001 6001 6002 6008 60129 6080 6161 61613 61616 62078 6264 631 636 6363 6443 6561 6588 6600 6602 6603 6622 6633 6653 666 6662 6664 6666 6697 6789 6887 6955 70 7000 7001 7003 7004 7005 7081 7171 7218 7415 7474 7493 7500 7547 7548 7634 7654 771 772 777 7777 7778 7887 789 7979 7998 800 8000 8001 8003 8006 8008 8009 8010 8011 8012 8020 8021 8024 8025 8026 8029 8030 8033 8035 8037 8038 8039 8040 8042 8043 8045 8047 8048 8049 805 8052 8053 8054 8055 8058 8060 8071 8072 8081 8083 8084 8085 8086 8087 8089 8090 8092 8095 8096 8097 8098 81 8101 8104 8105 8106 8107 8110 8111 8112 8118 8123 8126 8139 8140 8143 8159 8180 8181 8184 8190 82 8200 8222 8236 8237 8238 8239 8248 8249 8282 8291 8334 84 8401 8402 8404 8405 8409 8410 8414 8418 8419 8422 8424 843 8430 8431 8442 8443 8445 85 8500 8545 8554 8586 8590 86 8621 8622 8623 8637 8649 8663 8688 8700 8728 873 8733 8789 8791 88 8800 8801 8807 8815 8817 8818 8821 8826 8828 8829 8830 8831 8832 8833 8834 8837 8838 8840 8842 8843 8849 8850 8852 8855 8856 8860 8861 8863 8867 8873 8874 8877 8878 888 8880 8888 8889 8988 8989 8990 8991 90 9000 9001 9002 9003 9004 9008 9009 9011 9012 9014 9015 9018 902 9020 9021 9022 9023 9028 9033 9034 9035 9036 9040 9042 9047 9070 9080 9090 9091 9092 9093 9095 9096 9099 9100 9102 9103 9106 9108 9109 9111 9151 9160 9191 92 9200 9203 9205 9208 9209 9211 9214 9217 9218 9219 9221 9222 9295 9300 9304 9306 9308 9309 9310 9311 9389 9418 943 9443 9445 9527 9530 9550 9595 9600 9633 9663 9682 97 9743 9761 9765 9800 9861 9876 9899 992 993 9943 9944 995 9950 9966 9981 9990 9991 9992 9998 9999

Map

Whois Information

  • inetnum: 222.185.244.176 - 222.185.244.183
  • netname: CHANGZHOU-HENGSHANQIAO-SCHOOL
  • descr: changzhou wujin hengshanqiao middle school
  • descr: Changzhou City
  • descr: Jiangsu Province
  • country: CN
  • admin-c: CH445-AP
  • tech-c: CH445-AP
  • status: ASSIGNED NON-PORTABLE
  • mnt-by: MAINT-CHINANET-JS
  • mnt-lower: MAINT-CHINANET-JS-CZ
  • last-modified: 2009-05-29T00:37:16Z
  • person: CHINANET-JS-CZ Hostmaster
  • address: No.168,HePing South Road,Changzhou 213000
  • country: CN
  • phone: +86-519-8130141
  • phone: +86-519-8150024
  • fax-no: +86-519-8150026
  • e-mail: [email protected]
  • nic-hdl: CH445-AP
  • mnt-by: MAINT-CHINANET-JS-CZ
  • last-modified: 2022-03-15T07:12:22Z

Links to attack logs

nmap-scanning-list-2020-12-13 nmap-scanning-list-2021-06-01 nmap-scanning-list-2021-06-14 nmap-scanning-list-2023-03-25 nmap-scanning-list-2020-11-24 nmap-scanning-hosts-2020-10-04 aws-mssql-bruteforce-ip-list-2021-07-15 nmap-scanning-list-2022-09-23 nmap-scanning-list-2020-11-03 dolondon-mssql-bruteforce-ip-list-2021-04-03 nmap-scanning-list-2020-10-19 nmap-scanning-list-2021-04-10 nmap-scanning-list-2022-09-13 nmap-scanning-list-2021-03-30