43.163.212.85 Threat Intelligence and Host Information

Oct 20, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 43.163.212.85 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Tags: Bruteforce, Brute-Force, cyber security, ioc, malicious, Nextray, phishing, SSH

  • JARM: 3fd3fd0003fd3fd21c42d42d000000bdfc58c9a46434368cf60aa440385763

  • View other sources: Spamhaus VirusTotal

  • Country: Singapore
  • Network:
  • Noticed: 50 times
  • Protocols Attacked: ssh
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: hbz.wangxia.xyz liguoqinga.com liguoqinga.top

Open Ports Detected

40001 40005 40029 40099 40471 40892 40894 41800 42208 42235 42420 42901 43009 43080 43200 43221 44021 44100 44158 443 44300 44303 44304 44305 44320 44333 44334 44336 44340 44341 44345 44350 44400 44420 44444 44510 44520 44818 45001 45003 45005 45111 45444 45555 45667 45668 45777 45788 45821 45886 46000 46001 46443 47001 47989 47990 48001 48002 48012 48018 48888 49080 49152 49153 49210 49443 49502 49592 49688 49692 49767 50000 50001 50003 50005 50006 50007 50010 50011 50012 50014 50022 50050 50070 50080 50085 50100 50101 50102 50103 50104 50106 50107 50113 50122 50443 50580 50996 50998 50999 51000 51001 51004 51005 51106 51201 51235 51294 51434 52010 52200 52230 52311 52536 52869 52931 52951 53480 53481 53484 53485 53490 53805 53806 54138 54327 54545 54857 55000 55055 55081 55350 55388 55442 55443 55481 55553 55554 55555 57782 57786 57787 58392 58532 58585 58603 59012 60000 80

Map

Links to attack logs

vultrmadrid-ssh-bruteforce-ip-list-2023-01-31 vultrwarsaw-ssh-bruteforce-ip-list-2023-02-07 ****** bruteforce-ip-list-2023-02-06 vultrmadrid-ssh-bruteforce-ip-list-2023-01-27 vultrparis-ssh-bruteforce-ip-list-2023-02-09 dosing-ssh-bruteforce-ip-list-2023-01-30 ****** ****** vultrmadrid-ssh-bruteforce-ip-list-2023-02-01

Share on: