119.160.234.50 Threat Intelligence and Host Information

Share on:
Mar 02, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 119.160.234.50 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • JARM: 07d10d11d21d21d07c07d10d07d21d4c24f9a1cf1df168bb1f7ed5d7f42ac8

  • View other sources: Spamhaus VirusTotal

  • Country: Malaysia
  • Network: AS55720 gigabit hosting sdn bhd
  • Noticed: 25 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: qwvnub3jbga5hbquv9.com qwfbasnf1vnbwr3vbkbg7.com www789djdodjod.com 678dhidhidhidsss.com 6781dhdjodjo.com 237shihddhhdh.com ku8899dhidhidhdd.com hg8v3.com hg8x3.com hg8v8.com 222444vip8.com hg56w.com hg77007.com hg99009.com hg8910.com hg33567.com hg2425.com bwin456.com bwin345.com hg5253.com hg4936.com hg3900.com hg3700.com hg3639.com hg3367.com hg1206.com hg1203.com hg1202.com hg56v.com hg56u.com hg56t.com hg56s.com hg56r.com hg56a.com hg56q.com hg56n.com hg56k.com hg56g.com hg56d.com hg56ii.com hg56qq.com hg56rr.com hg56vv.com hg56uu.com hg56ss.com hg8hhh.com hg56pp.com hg8vvv.com hg56oo.com hg56hh.com hg56nn.com hg56dd.com hg56bb.com hg56kk.com hg8ttt.com hg56ff.com hg8www.com hg8qqq.com hg8uuu.com hg8ooo.com hg8zzz.com hg8eee.com hg8iii.com hg8yyy.com hg8jjj.com hg8nnn.com hg8rrr.com hg8mmm.com hg8lll.com hg8fff.com hg8ccc.com hg8ddd.com 2059mm.com hg8bbb.com 2059ww.com 2059hh.com 2059rr.com 2059yy.com 2059uu.com 2059qq.com 2059pp.com 2059oo.com 2059nn.com 2059ii.com 2059ee.com 2059cc.com 2059bb.com hg8ww.com hg8xx.com hg8vv.com hg8tt.com hg8uu.com hg8ss.com hg8ll.com hg8mm.com hg8kk.com hg8jj.com hg8hh.com hg8ee.com hg8dd.com hg8cc.com ytwdaz42hkguiqlz.com hg8nnnn.com 222444v0.com 222444v6.com 222444v1.com 222444v4.com 222444v3.com nbwbrg7oiqwu8bvjwbq5.com okbwfg3gnio8njqig3.com wriufn2nbnqw3ungrwk6.com ihqnv5nbknw6njknvyj6.com moiqwf5inqw2nubq6.com jgioe7kovmbw4nwq5.com 222444v2.com 222444v9.com 222444v5.com 222444v7.com 222444v8.com 222444fff.com 222444yyy.com 222444rrr.com 222444iii.com 222444nnn.com 222444qqq.com 222444sss.com 222444uuu.com 222444ggg.com 222444ooo.com 222444hhh.com 222444vvv.com 222444lll.com hg8x4.com fglknis9912yyeok34g9.com hg8x8.com hg8x2.com hg8v9.com hg8v1.com hg8v7.com hg8x1.com hg8v5.com hg8x7.com dikncjdyepwscj1w2e3r7.com 222444vip9.com 222444eee.com 222444aaa.com 222444www.com 222444ddd.com 222444vip5.com 222444mmm.com 222444ccc.com 222444bbb.com 222444ttt.com 222444ppp.com 222444xxx.com 222444jjj.com 222444zzz.com 222444vip6.com 222444kkk.com noksg.wogheuvnalfgrgihhkl.com yiweq.qzpgrztuxmasdgob.com olfgi.plvmklqmwdwmk.com 9juf7s6emmkuji56ndf8.com hg8ffff.com hg8ssss.com hg8bbbb.com hg8rrrr.com hg8aaaa.com hjahsdiawbdbybg18.com qwteuiyuixzcnmnvj88.com hdaugwyudbyuuyqw16.com hg8eeee.com hg8iiii.com hg8zzzz.com hg8pppp.com hg8mmmm.com hg8uuuu.com hg8dddd.com hg8xxxx.com hg8wwww.com hg8gggg.com hg8qqqq.com hg8yyyy.com hg8jjjj.com hg8vvvv.com hg8tttt.com hg8oooo.com hg8llll.com modj.jciwjiuf11iwmk.com vqwod.zxmv33hvqwpo.com wuja.duhuf22qzoiq.com 1hidhdhdihdduudd.com 5dhidhidhi234yyddi.com 4dhidhdihdiue990.com 9hgcback.javalebogame004.com dgudgd7788l998.com dhidh8790221dihhi.com 77dhddddhhd34ok.com hg8aaadhidhidhhdh111di.com hg8aaadhidhidhhdh222di.com hg8aaadhidhidhhd222hdi.com hg8b.net hg8g.net hg8v.net hg8x.net hg8h.net hg8e.net hg8r.net hg8u.net hg8m.net hg8s.net hg8d.net hg8k.net hg8y.net hg8i.net hg8p.net hg8w.net hg8f.net hg8q.net hg8o.net hg8c.net hg8z.net hg8n.net hg8l.net hg8j.net hg8a.net hg8t.net xn–45qveo5o081b77m.com xn–n7qz9boyn3qvzzhmp9alzm.com xn–45qve657g18ftn6b.com xn–n7qz64etxcbudrvp450ak8f.com 2091ddd.com 2091kkk.com 2091www.com 2059zzz.com 2059xxx.com 2059jjj.com 2059www.com 2059yyy.com 2091hhh.com 2091xxx.com 2091ggg.com 2059uuu.com 2091ttt.com 2091rrr.com 2059nnn.com 2091bbb.com 2091qqq.com 2091mmm.com 2091lll.com 2059vvv.com 2059ttt.com 2091eee.com 2091ccc.com 2091vvv.com 2059mmm.com 2059lll.com 2091uuu.com 2059aaa.com 2059rrr.com 2059qqq.com 2091jjj.com 2091sss.com 2091zzz.com 2091iii.com 2059iii.com 2059hhh.com 2091yyy.com 2059ooo.com 2059ppp.com 2091ppp.com hg8appdihdidhidihdhihud.com 4441213.com 12139988.com 12134444.com 12134477.com 1213iii.com 1213ccc.com 9991213.com 12132288.com 12132200.com 12138877.com 1213com.com 55551213.com 1213qqq.com 12131111.com 1213jjj.com 58683333.com 12133311.com 12134466.com 99991213.com 12130033.com 0001213.com 1213nnnn.com

Open Ports Detected

443 80 8083 8085 8087

Map

Whois Information

  • inetnum: 119.160.234.0 - 119.160.234.255
  • netname: EGCLOUDENTERPRISE-MY
  • descr: Hong Kong
  • country: HK
  • admin-c: GLA6-AP
  • tech-c: GLA6-AP
  • abuse-c: AE325-AP
  • status: ALLOCATED NON-PORTABLE
  • mnt-by: MAINT-EGCLOUDENTERPRISE-MY
  • mnt-irt: IRT-EGCLOUDENTERPRISE-MY
  • last-modified: 2021-04-13T22:40:33Z
  • irt: IRT-EGCLOUDENTERPRISE-MY
  • address: No. 9 , Persiaran Alam Damai , Cheras, Kuala Lumpur Wilayah Persekutuan 56000
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: ECEA1-AP
  • tech-c: ECEA1-AP
  • mnt-by: MAINT-EGCLOUDENTERPRISE-MY
  • last-modified: 2023-11-28T14:53:42Z
  • role: ABUSE EGCLOUDENTERPRISEMY
  • address: No. 9 , Persiaran Alam Damai , Cheras, Kuala Lumpur Wilayah Persekutuan 56000
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: ECEA1-AP
  • tech-c: ECEA1-AP
  • nic-hdl: AE325-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2023-11-28T14:53:57Z
  • role: Gigabit Limited administrator
  • address: FLAT/RM A1 9/F SILVERCORP, INIT’L TOWER 707-713 NATHAN RD, MONGKOK KLN HONG KONG
  • country: HK
  • phone: +603-77818733
  • fax-no: +603-77818733
  • e-mail: [email protected]
  • admin-c: GLA6-AP
  • tech-c: GLA6-AP
  • nic-hdl: GLA6-AP
  • mnt-by: MAINT-GIGABITLIMITED-HK
  • last-modified: 2014-05-20T08:17:44Z
  • route: 119.160.234.0/24
  • origin: AS55720
  • descr: EG Cloud Enterprise
  • mnt-by: MAINT-EGCLOUDENTERPRISE-MY
  • last-modified: 2020-10-21T22:55:15Z

Links to attack logs

** redis-bruteforce-ip-list-2021-09-28 redis-bruteforce-ip-list-2021-09-21 redis-bruteforce-ip-list-2021-10-01 ** **