23.225.199.157 Threat Intelligence and Host Information

Aug 15, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 23.225.199.157 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

JARM: 29d29d20d29d29d22c29d29d29d29d8e917db1de9d33002d70770504a55ef7
View other sources: Spamhaus VirusTotal

Country: United States
Network:
Noticed: times
Protocols Attacked: SSH
Passive DNS Results: web.atmchat.top kjapi.atmchat.top dududy.vip ysdj.one atm26.top lhaapi.top weinr.one fuddj.com chatatm.top bdggap.top atm84.vip atm85.vip atm91.vip atm97.vip atm81.vip atm82.vip atm94.vip atm83.vip atm86.vip atm96.vip atm87.vip atm93.vip atm95.vip atm92.vip facaifc.vip atm10.vip atm16.vip atm18.vip atm8.top atapid.top patmapi.top 666laicai.vip atm98.vip 888laicai.vip a88.lat 888laicai.com 666laicai.com martin.racloud.top my531.aload.top lbjbofang.com csnb006.top csnb008.top ms9wc.top ihhpy.top ogxfj.top anqxc.top up66q.top ygnsm.top s8xa9.top ohp9h.top xafvd.top j6ynq.top crmhq.top upsdk.top 9h6ha.top fnrke.top amhhp.top app.edefer.top csnb007.top csnb009.top 265g.site

Malware Detected on Host

Count: 5 1326b9d1e3b3eb9c3b875981abb6f4f126ec0bfc50f0013644c01625e05b075b 6c11b0ad8c79872ab0cae5ee3db79faa1f113e09d0f17e82ab9492563c1b6030 032d1b08efe9b1fa4a4ec393311ba92df49a09587de4ba5657c3e4082abfa14b 05bd7a8e407a887e67e013b363876f7a86e762842bd1b81f648fa394801cf1bc 6854965c2fa8658d2cefbca115d0d8769a880f01662c83991e775da6b0fecde7

Open Ports Detected

22 443 80

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

NetRange: 23.224.0.0 - 23.225.255.255
CIDR: 23.224.0.0/15
NetName: DATA-CENTRE-LA
NetHandle: NET-23-224-0-0-1
Parent: NET23 (NET-23-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: CloudRadium L.L.C (CL-142)
RegDate: 2013-09-04
Updated: 2016-11-22
Comment: Abuse contact:abuse@ceranetworks.com
Comment: We will take care of all the abuse in time.
Comment: Standard NOC hours are 7am to 11pm EST
Ref: https://rdap.arin.net/registry/ip/23.224.0.0
OrgName: CloudRadium L.L.C
OrgId: CL-142
Address: 530 west 6th street
City: Los Angeles
StateProv: CA
PostalCode: 90014-1211
Country: US
RegDate: 2012-10-03
Updated: 2025-05-09
Ref: https://rdap.arin.net/registry/entity/CL-142
OrgNOCHandle: NOC12821-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-213-510-0990
OrgNOCEmail: jeason@globaldatainvestments.com
OrgNOCRef: https://rdap.arin.net/registry/entity/NOC12821-ARIN
OrgTechHandle: NOC12821-ARIN
OrgTechName: Network Operations Center
OrgTechPhone: +1-213-510-0990
OrgTechEmail: jeason@globaldatainvestments.com
OrgTechRef: https://rdap.arin.net/registry/entity/NOC12821-ARIN
OrgAbuseHandle: QIJIN-ARIN
OrgAbuseName: Qi, Jin
OrgAbusePhone: +1-213-510-0990
OrgAbuseEmail: abuse@ceranetworks.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/QIJIN-ARIN

Links to attack logs

mssql-bruteforce-ip-list-2020-12-25 ****** nmap-scanning-list-2020-12-25 ****** ******

Share on: