111.70.4.4 Threat Intelligence and Host Information

Dec 02, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 111.70.4.4 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 40/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: blocklist_de_imap, blocklist_de, blocklist_de_mail

  • Country: Taiwan
  • Network: AS17421 mobile business group
  • Noticed: 1 times
  • Protcols Attacked: telnet
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: view.superipme.net as4.i-dvr.net f1.superipme.net as4.superipme.net myink.superipme.net itink.superipme.net source.superipme.net permission58.superipme.net fish.superipme.net apple58.superipme.net permission7.superipme.net permission6.superipme.net permission8.superipme.net apple55.superipme.net speed.superipme.net apple.superipme.net nuxt2admin.superipme.net bagisto8.superipme.net backend8.superipme.net video.superipme.net nuxt2shop.superipme.net cartclient145.superipme.net cart5621.superipme.net animal58.superipme.net vuecli2.superipme.net nuxt2.superipme.net andre58.superipme.net nuxt.superipme.net petstore.superipme.net animal8.superipme.net fhir.superipme.net udemy.superipme.net dd.superipme.net vue-template.superipme.net vue-two.superipme.net vue-one.superipme.net vue55.superipme.net todo-vue.superipme.net udemy58one.superipme.net layo58.superipme.net wincare.superipme.net ozink.superipme.net animal55.superipme.net animal.superipme.net elementor.superipme.net shop58two.superipme.net newcare.superipme.net note.superipme.net etma.superipme.net shop58three.superipme.net

Malware Detected on Host

Count:

Open Ports Detected

443 554 8081

CVEs Detected

CVE-2013-4508 CVE-2013-4559 CVE-2013-4560 CVE-2014-2323 CVE-2014-2324 CVE-2015-3200 CVE-2018-19052 CVE-2019-11072

Map

Whois Information

  • inetnum: 111.70.0.0 - 111.71.255.255
  • netname: EMOME-NET
  • descr: Mobile Business Group
  • descr: Chunghwa Telecom Co., Ltd.
  • descr: No.35, Aiguo E. Rd , Taipei City
  • descr: 10641, Taiwan
  • country: TW
  • admin-c: CBG5-AP
  • tech-c: CBG5-AP
  • abuse-c: AT939-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-TW-TWNIC
  • mnt-irt: IRT-TWNIC-AP
  • last-modified: 2021-11-04T00:49:27Z
  • irt: IRT-TWNIC-AP
  • address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan
  • e-mail: hostmaster@twnic.net.tw
  • abuse-mailbox: hostmaster@twnic.net.tw
  • admin-c: TWA2-AP
  • tech-c: TWA2-AP
  • mnt-by: MAINT-TW-TWNIC
  • last-modified: 2021-11-04T00:59:51Z
  • role: ABUSE TWNICAP
  • address: 3F., No. 123, Sec. 4, Bade Rd., Songshan Dist., Taipei 105, Taiwan
  • country: ZZ
  • phone: +000000000
  • e-mail: hostmaster@twnic.net.tw
  • admin-c: TWA2-AP
  • tech-c: TWA2-AP
  • nic-hdl: AT939-AP
  • abuse-mailbox: hostmaster@twnic.net.tw
  • mnt-by: APNIC-ABUSE
  • last-modified: 2021-11-04T01:00:32Z
  • role: CHT-Mobile Business Group
  • address: 7F, No. 52 Sec. 2 Chin-Shan S. Rd.
  • address: Taipei, Taiwan, 106
  • country: TW
  • phone: +886-2-2344-2803
  • fax-no: +886-2-2394-0814
  • e-mail: chinhu@cht.com.tw
  • admin-c: CH1309-AP
  • tech-c: RL720-AP
  • nic-hdl: CBG5-AP
  • notify: hostmaster@twnic.net.tw
  • mnt-by: MAINT-TW-TWNIC
  • last-modified: 2009-10-09T04:30:10Z
  • inetnum: 111.70.0.0 - 111.70.255.255
  • netname: EMOME-NET
  • descr: Chunghwa Telecom Co.,Ltd.
  • descr: No.21-3, Sec. 1, Xinyi Rd., Taipei 10048, Taiwan, R.O.C.
  • descr: Taipei Taiwan
  • country: TW
  • admin-c: CFK7-TW
  • tech-c: CFK7-TW
  • mnt-by: MAINT-TW-TWNIC
  • changed: network-adm@hinet.net 20100527
  • status: ASSIGNED NON-PORTABLE

Links to attack logs

digitaloceanlondon-telnet-bruteforce-ip-list-2023-12-02

Share on: