103.133.214.139 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 103.133.214.139 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 47/100

Host and Network Information

• Tags: Nextray, Scanner, Webattack, a1sg, bedofwarragnar, bekcr, bertnit, cyber security, ioc, malicious, phishing, scanning, setup, smtp, ssh, tcp, updated, vcommand3002, ww11 https

• JARM: 29d29d16d29d29d00029d29d29d29d37e2bdb5ef36e9b9b56a7b46a1eb16a8

• View other sources: Spamhaus VirusTotal

• Contained within other IP sets: gpf_comics, greensnow, stopforumspam, stopforumspam_180d, stopforumspam_30d, stopforumspam_365d, stopforumspam_90d, vxvault

• Country: India
• Network: AS133643 ewebguru
• Noticed: 1 times
• Protcols Attacked: SSH
• Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
• Passive DNS Results: onlinelotterybook.com bhagvatisales.com smtp.cost2cost.org www.cost2cost.org pop.cost2cost.org ftp.cost2cost.org cost2cost.org drugdropship.com vishalenterprises7.com smtp.wamikamill.com wamikamill.com www.wamikamill.com ftp.wamikamill.com pop.wamikamill.com justaajpost.com www.shopie24.com www.elcomecabsolution.com smtp.elcomecabsolution.com elcomecabsolution.com pop.elcomecabsolution.com ftp.elcomecabsolution.com www.ciosgout.org smtp.ciosgout.org pop.ciosgout.org ftp.ciosgout.org www.gayatriwater.in.net gayatriwater.in.net ftp.gayatriwater.in.net pop.gayatriwater.in.net smtp.gayatriwater.in.net ftp.aquaanshwaterpurifier.in www.aquaanshwaterpurifier.in aquaanshwaterpurifier.in pop.aquaanshwaterpurifier.in smtp.aquaanshwaterpurifier.in smtp.mdtuffen.com www.mdtuffen.com pop.mdtuffen.com www.arfoverseas.in arfoverseas.in pop.arfoverseas.in ftp.arfoverseas.in smtp.arfoverseas.in ftp.jaimaacomputers.com directroader.com www.gkf.tempurl.pw gkf.tempurl.pw smtp.digitalvyaparseva.in.net www.digitalvyaparseva.in.net digitalvyaparseva.in.net pop.digitalvyaparseva.in.net ftp.digitalvyaparseva.in.net ftp.windowclik.com smtp.windowclik.com windowclik.com www.windowclik.com pop.windowclik.com ftp.onlinelotterybook.com smtp.onlinelotterybook.com smtp.dvshr.in.net app.spyqo.in www.app.spyqo.in destinymart.co.in www.destinymart.co.in ocv3.tempurl.pw www.ocv3.tempurl.pw ftp.solarwala24.in smtp.solarwala24.in pop.solarwala24.in solarwala24.in www.solarwala24.in tr.tempurl.pw www.tr.tempurl.pw ftp.gsworld.in smtp.gsworld.in www.gsworld.in gsworld.in pop.gsworld.in ftp.fineflooring.in smtp.fineflooring.in fineflooring.in pop.fineflooring.in innovativeconcept.in.net ftp.innovativeconcept.in.net www.innovativeconcept.in.net pop.innovativeconcept.in.net smtp.innovativeconcept.in.net pop.yeshnet.in yeshnet.in www.yeshnet.in smtp.yeshnet.in ftp.yeshnet.in smtp.mwwires.com pop.mwwires.com ftp.mwwires.com ftp.unisearchmedicare.com pop.unisearchmedicare.com smtp.unisearchmedicare.com www.unisearchmedicare.com ftp.anantshreerestaurant.com www.anantshreerestaurant.com pop.anantshreerestaurant.com anantshreerestaurant.com smtp.anantshreerestaurant.com ftp.tempurl.pw smtp.tempurl.pw tempurl.pw pop.tempurl.pw www.tempurl.pw www.sahityagram.com ftp.sahityagram.com pop.sahityagram.com sahityagram.com smtp.sahityagram.com chango.in www.chango.in smtp.exkaltrading.us pop.exkaltrading.us ftp.exkaltrading.us www.exkaltrading.us pop.uniformates.com uniformates.com ftp.uniformates.com www.uniformates.com smtp.uniformates.com www.canada.uniformates.com canada.uniformates.com smtp.bluemart.co.in ftp.bluemart.co.in www.bluemart.co.in bluemart.co.in pop.bluemart.co.in smtp.successdesireeducation.in www.successdesireeducation.in ftp.successdesireeducation.in pop.successdesireeducation.in successdesireeducation.in smtp.avishkarcropsolution.com www.avishkarcropsolution.com avishkarcropsolution.com ftp.avishkarcropsolution.com pop.avishkarcropsolution.com herbalclub.in www.herbalclub.in pop.herbalclub.in smtp.herbalclub.in ftp.herbalclub.in pop.gemfdc.com www.gemfdc.com smtp.gemfdc.com ftp.gemfdc.com www.mlm.rozaanacart.com pop.azrecharge.in azrecharge.in smtp.azrecharge.in www.azrecharge.in ftp.azrecharge.in www.dot.ind.in smtp.dot.ind.in pop.dot.ind.in dot.ind.in ftp.dot.ind.in smtp.sosdentistry.in www.sosdentistry.in ftp.sosdentistry.in sosdentistry.in pop.sosdentistry.in realestate.hajibuilders.com www.realestate.hajibuilders.com ftp.simplsecret.com www.simplsecret.com pop.simplsecret.com smtp.simplsecret.com varadmedical.online ftp.varadmedical.online pop.varadmedical.online www.varadmedical.online smtp.varadmedical.online msmepci.com www.msmepci.com ftp.msmepci.com pop.msmepci.com smtp.msmepci.com rmswalmart.com smtp.rmswalmart.com pop.rmswalmart.com ftp.rmswalmart.com www.rmswalmart.com member.rozaanacart.com www.member.rozaanacart.com www.master.rozaanacart.com master.rozaanacart.com www.krishnarotech.in.net smtp.krishnarotech.in.net krishnarotech.in.net ftp.krishnarotech.in.net pop.krishnarotech.in.net pop.gulfstylefurniture.com www.gulfstylefurniture.com ftp.gulfstylefurniture.com smtp.gulfstylefurniture.com ftp.mygrowspur.com www.mygrowspur.com pop.mygrowspur.com smtp.mygrowspur.com mygrowspur.com ftp.virasatindiaarts.in virasatindiaarts.in smtp.virasatindiaarts.in pop.virasatindiaarts.in www.virasatindiaarts.in drishteeai.com pop.drishteeai.com www.drishteeai.com ftp.drishteeai.com smtp.drishteeai.com ftp.yatra-atmajyoti.com www.yatra-atmajyoti.com smtp.yatra-atmajyoti.com pop.yatra-atmajyoti.com deepsung.in pop.deepsung.in ftp.deepsung.in smtp.deepsung.in www.deepsung.in ftp.activeplus.org.in shopie24.com hm1.yuvayuwellness.com www.hm1.yuvayuwellness.com ftp.shoppingapplera.com pop.shoppingapplera.com www.shoppingapplera.com smtp.shoppingapplera.com www.geetanjliayurveda.com pop.geetanjliayurveda.com ftp.geetanjliayurveda.com smtp.geetanjliayurveda.com geetanjliayurveda.com www.rangilashoping.com pop.rangilashoping.com rangilashoping.com smtp.rangilashoping.com ftp.rangilashoping.com atomxtechnologies.com smtp.atomxtechnologies.com pop.atomxtechnologies.com ftp.atomxtechnologies.com www.atomxtechnologies.com pop.industrialcontrolgear.com ftp.industrialcontrolgear.com www.industrialcontrolgear.com smtp.industrialcontrolgear.com industrialcontrolgear.com dvshr.in.net www.dvshr.in.net pop.dvshr.in.net ftp.dvshr.in.net pop.raithusampada.org raithusampada.org ftp.raithusampada.org www.raithusampada.org smtp.raithusampada.org pop.underwaterfixer.com www.underwaterfixer.com smtp.underwaterfixer.com underwaterfixer.com ftp.underwaterfixer.com smtp.fastvsmart.com ftp.fastvsmart.com fastvsmart.com pop.fastvsmart.com www.fastvsmart.com locomensclub.com rathancake.com pop.rathancake.com www.rathancake.com ftp.rathancake.com smtp.rathancake.com www.maamaharanitentagency.com maamaharanitentagency.com ftp.maamaharanitentagency.com pop.maamaharanitentagency.com smtp.maamaharanitentagency.com ftp.bicgahiri.com pop.bicgahiri.com www.bicgahiri.com smtp.bicgahiri.com exkaltrading.us ftp.onebill.co.in onebill.co.in smtp.onebill.co.in pop.onebill.co.in www.onebill.co.in www.desirevetcare.com pop.desirevetcare.com ftp.desirevetcare.com desirevetcare.com smtp.desirevetcare.com www.princesuperbazzar.com ftp.princesuperbazzar.com pop.princesuperbazzar.com princesuperbazzar.com smtp.princesuperbazzar.com vadnagarteaandspicymasala.in ftp.vadnagarteaandspicymasala.in www.vadnagarteaandspicymasala.in smtp.vadnagarteaandspicymasala.in pop.vadnagarteaandspicymasala.in www.studiospirits.co.in smtp.studiospirits.co.in pop.studiospirits.co.in ftp.studiospirits.co.in smtp.99shopkart.in pop.99shopkart.in www.99shopkart.in ftp.99shopkart.in 99shopkart.in www.babescart.com pop.babescart.com ftp.babescart.com smtp.babescart.com babescart.com www.aiesyhome.com aiesyhome.com smtp.aiesyhome.com ftp.aiesyhome.com pop.aiesyhome.com sharmatourandtravels.in.net ftp.acgsales.com www.acgsales.com pop.acgsales.com acgsales.com smtp.acgsales.com www.sabkiapnimulty.com pop.sabkiapnimulty.com sabkiapnimulty.com smtp.sabkiapnimulty.com ftp.sabkiapnimulty.com pop.choicemarriage.in ftp.choicemarriage.in choicemarriage.in www.choicemarriage.in smtp.choicemarriage.in pop.lygexindia.com smtp.lygexindia.com www.lygexindia.com ftp.lygexindia.com www.alfeem.com smtp.alfeem.com pop.alfeem.com ftp.alfeem.com alfeem.com pop.shinegroupsmk.com www.shinegroupsmk.com smtp.shinegroupsmk.com ftp.shinegroupsmk.com shinegroupsmk.com www.allpestcontrolservices.in.net allpestcontrolservices.in.net pop.allpestcontrolservices.in.net smtp.allpestcontrolservices.in.net ftp.allpestcontrolservices.in.net spyqo.in smtp.spyqo.in pop.spyqo.in ftp.spyqo.in www.spyqo.in smtp.ikigaiagroproducts.com www.ikigaiagroproducts.com pop.ikigaiagroproducts.com ftp.ikigaiagroproducts.com ikigaiagroproducts.com www.griahpravesh.in griahpravesh.in pop.griahpravesh.in ftp.griahpravesh.in www.indianfarriers.com ftp.indianfarriers.com pop.indianfarriers.com smtp.indianfarriers.com indianfarriers.com smtp.gkpharmaa.com ftp.gkpharmaa.com gkpharmaa.com pop.gkpharmaa.com www.gkpharmaa.com ftp.yashconnectivity.co.in yashconnectivity.co.in pop.yashconnectivity.co.in smtp.yashconnectivity.co.in www.yashconnectivity.co.in grihasthimart.com www.grihasthimart.com pop.grihasthimart.com ftp.grihasthimart.com smtp.grihasthimart.com pop.carhomemechanic.com smtp.carhomemechanic.com www.carhomemechanic.com carhomemechanic.com ftp.carhomemechanic.com smtp.maaambikatraders.com pop.maaambikatraders.com ftp.maaambikatraders.com www.maaambikatraders.com maaambikatraders.com smtp.thecacto.com pop.thecacto.com thecacto.com ftp.thecacto.com www.thecacto.com smtp.mgautammaths.com ftp.mgautammaths.com pop.mgautammaths.com www.mgautammaths.com janbajar.in pop.janbajar.in ftp.janbajar.in www.janbajar.in smtp.janbajar.in www.dakshbiosciences.in smtp.dakshbiosciences.in dakshbiosciences.in pop.dakshbiosciences.in ftp.dakshbiosciences.in foobaastore.com ftp.foobaastore.com smtp.foobaastore.com pop.foobaastore.com www.foobaastore.com pop.globalsvtech.com ftp.globalsvtech.com globalsvtech.com smtp.globalsvtech.com www.globalsvtech.com pop.ssrllabs.in ssrllabs.in ftp.ssrllabs.in smtp.ssrllabs.in www.ssrllabs.in www.bastersamachar.in pop.malakarsolution.in malakarsolution.in ftp.malakarsolution.in www.malakarsolution.in smtp.malakarsolution.in oshiyaevents.com smtp.oshiyaevents.com pop.oshiyaevents.com ftp.oshiyaevents.com www.oshiyaevents.com smtp.adastro.org pop.adastro.org ftp.adastro.org www.adastro.org www.shoplike.in shoplike.in smtp.shoplike.in pop.shoplike.in ftp.shoplike.in www.ekamservice.com pop.ekamservice.com ftp.ekamservice.com ekamservice.com smtp.ekamservice.com smtp.mfg91.in pop.mfg91.in www.mfg91.in ftp.mfg91.in mfg91.in smtp.calosc.com pop.calosc.com calosc.com www.calosc.com ftp.calosc.com smtp.sabdawai.com www.sabdawai.com ftp.sabdawai.com pop.sabdawai.com sabdawai.com gemfdc.com gkakn.com divekar.in smtp.divekar.in www.divekar.in ftp.divekar.in pop.divekar.in pop.dialitt.com www.dialitt.com smtp.dialitt.com dialitt.com ftp.dialitt.com simplsecret.com smtp.vaishalipressmuz.com www.vaishalipressmuz.com pop.vaishalipressmuz.com ftp.vaishalipressmuz.com vaishalipressmuz.com udhan.co ftp.udhan.co

Malware Detected on Host

Count: 2 76a73dd0f247eccf0596cf79e6fa4cfd384096d4d869201f06a00d55dc25e396 c3b2f4b2b6e23610923038798c9842f32b5d20a8dc9e2aa7283c918873f1c5d5

Open Ports Detected

111 161 21 2222 25 3306 443 465 53 587 80 993 995

Map

Whois Information

• inetnum: 103.133.214.0 - 103.133.215.255
• netname: EWEBGURU
• descr: Ewebguru
• admin-c: AA1351-AP
• tech-c: NA685-AP
• country: IN
• mnt-by: MAINT-IN-IRINN
• mnt-irt: IRT-EWEBGURU-IN
• mnt-routes: MAINT-IN-EWEBGURU
• status: ASSIGNED PORTABLE
• last-modified: 2019-01-30T06:18:28Z
• irt: IRT-EWEBGURU-IN
• address: G12 First Floor, Sector 63,NOIDA,Uttar Pradesh-201301
• e-mail: support@ewebguru.com
• abuse-mailbox: abuse@ewebguru.com
• admin-c: AA1351-AP
• tech-c: NA685-AP
• mnt-by: MAINT-IN-EWEBGURU
• last-modified: 2023-08-28T01:33:19Z
• role: network admin
• address: G12 First Floor, Sector 63,NOIDA,Uttar Pradesh-201301
• country: IN
• phone: +91 01204806750
• e-mail: support@ewebguru.com
• admin-c: AA1351-AP
• tech-c: AA1351-AP
• nic-hdl: NA685-AP
• mnt-by: MAINT-IN-EWEBGURU
• last-modified: 2018-06-28T07:53:47Z
• person: Ashok Arora
• address: G12 First Floor, Sector 63,NOIDA,Uttar Pradesh-201301
• country: IN
• phone: +91 01204806750
• e-mail: ashok@ewebguru.com
• nic-hdl: AA1351-AP
• mnt-by: MAINT-IN-EWEBGURU
• last-modified: 2018-06-28T07:54:49Z
• route: 103.133.214.0/24
• descr: Ewebguru
• origin: AS133643
• mnt-by: MAINT-IN-EWEBGURU
• mnt-routes: MAINT-IN-EWEBGURU
• last-modified: 2019-02-12T05:19:05Z