13.69.68.9 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 13.69.68.9 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• JARM: 2ad2ad00000000022c42d42d00042d201e6f6a84d7c3cb0fe3d908d1bb1307

• View other sources: Spamhaus VirusTotal

• Country: Netherlands
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: www.sakuranoneko.com gokone.dk waws-prod-am2-269.api.azurewebsites.windows.net saichitisaluta.com www.briefingline.com maranzaking.com authtoken-stage.umea.se e-stage.umea.se vanpachtenbeke-api-test.cshop.be www.engine.ie ngdev-api.knowl.solutions ngdev.knowl.solutions myacc.europoolsystem.com qr.icmms.eu dac7-report.de contuso.com test.minthealthcare.eu autoresponder.skmgroup.pl kort.umea.se trashadvisor.net fakecracy.com misgenderable.com genderable.com waws-prod-am2-269.westeurope.cloudapp.azure.com mywineselector.dk soniria.com ercm-stg.skillsvx.com dev-api.dev.knowl.solutions hfgopenid.knowl.solutions sakuranoneko.com varme.vattenfall.se rewind-time.orga.vision marinerpafactory-webapi.wartsila.com manager.test.wilmarinfo.nl api.mobilock.nl promark.partex.lt evaluaciones.capsa.es marinerpafactory-webapi-dev.wartsila.com marinerpafactory-qa.wartsila.com marinerpafactory-webapi-qa.wartsila.com wappnlfastlicenceserver.azurewebsites.net hfgopenid-api.knowl.solutions uat.api.partner.vodacom.lulalend.co.za dev.api.partner.vodacom.lulalend.co.za uat.identity.vodacom.lulalend.co.za dev.api.internal.vodacom.credit.lulalend.co.za uat.api.internal.vodacom.credit.lulalend.co.za digitalarchive.guess.com auth.helpshipwms.com wecarepro.online emsprod.azurewebsites.net winezelector.cdm.dk panos-pos.flyx.cloud promark.partex.ro docs.rapidcircle.com harel.actuarialsoftware.com harel-api.actuarialsoftware.com aqa-nex-bvt-61-euw-asp-web-services.azurewebsites.net iwcf.skillsvx.com iwcf-stg.skillsvx.com iwcf-prd.skillsvx.com ercm-prd.skillsvx.com responseservices.skillsvx.com upload.vescon.com www.accept.liff.nl portal.mint-care.eu boschcyprus.com.tr dbrcsamenspraak-tst.powerappsportals.com fundfinderhub.test.soderbergpartners.se pharma-dev-preview.schott.biz criticalleadership.ambrosetti.eu rrvalidationservice-qa-dg-func.azurewebsites.net pidplus.one.microsoft.com login.elototo.com www.auth.helpshipwms.com www.api.helpshipwms.com api.helpshipwms.com www.wecarepro.online marinerpafactory-dev.app.wartsila.com www.boschcyprus.com.tr www.sjoerddewildt.nl ashran.se portal.minthealthcare.eu backend.two4one.be mijn.accept.liff.nl management.peruzziservices.com semsonhomeappliance.com www.semsonhomeappliance.com ehrm.weilercorp.com criticalleadership-admin.ambrosetti.eu www.virtualfacilitytour.com pharma-dev-cd.schott.biz show-configuration.ebo.ai mqueue.co.uk show-conversation.ebo.ai show.ebo.ai www.lifeatford.com startstop.app.essity.com dte-manager-staging.neotalent.pt dte-client-staging.neotalent.pt dte-talent-staging.neotalent.pt dte-client.neotalent.pt dte-talent.neotalent.pt dte-manager.neotalent.pt www.paticikpetshop.com tst-hsi-tool.powerappsportals.com boardwalkservice.gtp-weu-dev.sbp.eyclienthub.com accept.liff.nl www.pmt.nl cmpmgr.apis.services mla.prod.afdcp.com noc.dev.clever.dk eqao.dk www.koopvaardij.nl www.proqressit.nl www.proqressit.com lota-api.dev.lota.dps.kone.com gmnt.io api.vodalend.uat.lulalend.co.za stage2-cm.klepierre.cz portaal.minthealthcare.eu upload.printolux.com devinspectiontoolupload.vattenfall.com mijn-accept.liff.nl mijn.liff.nl contentconverter.anewspring-test.nl portaal.mint-care.eu paticikpetshop.com uykukuzum.com keydelivery.one.microsoft.com myshuttle.az.hmgroup.tech onex-dev-si.schott.biz internal-preview-dev.schott.biz onex-dev-design.schott.biz manager.wilmarinfo.nl ceran-dev-cd.schott.biz onex-dev-cd.schott.biz design.schott.biz pme.tst.mn.cordfinance.com b2c-invitation.prod.itcs.mucloud.digital vodalend.uat.lulalend.co.za vodalend.uat.api.lulalend.co.za th.cms-dev.az.fitness24seven.com api-development.commerce365.io digiqacc.akzonobel.com level1.iwcf.org beheerdersportaal.hoffelijk.nl delawareapi.int.afdcp.com dev.bs.bramvercaigne.be bs.bramvercaigne.be dojo.siemensgamesa.com rte.s2pbrowser.nestle.com promark.partexlabels.com smartworkingapp.deloitte.it portal.pvn-schmidbauer.de www.ivetaandmatt.cz www.metalektro.nl www.pensioenfondspme.nl pensioenpme.nl www.metalektropensioen.nl www.pensioenpme.nl www.pmepensioenfonds.nl metalektropensioen.nl pmepensioenfonds.nl pensioenfondspme.nl cms.hcs.services sos.stratexcloud.nl wkow-euw-stg-publishing.wolterskluwer.com wkow-euw-prd-publishing.wolterskluwer.com liensolutionslearning-production-euw-cd01.wolterskluwer.com liensolutionslearning-production-euw.wolterskluwer.com careers-production-euw-cd01.wolterskluwer.com careers-production-euw.wolterskluwer.com acc.eu.integration.siterollout.ericsson.net www.pmepensioen.nl pa-uiparser-dev.wartsila.com test-hoteles.tixalia.com admin.vodalend.dev.lulalend.co.za vodalend.dev.lulalend.co.za api-staging.commerce365.io www.menisto.com webchat.csas.cz acc-www.naco.nl api-tst-deployment.furoo.be api-tst.furoo.be documed.se otdb-test.tengizchevroil.com www.iamunique.be www.qrx.be admin.qrx.be webserv.adsolut.be www.adsolut.be websrv.adsolut.be websrvb.adsolut.be products.portiva.nl portaal.adsolut.be hoog-catharijne-stage2-cm.klepierre.nl www.datatwin.be dev.umbraco.cordfinance.com tst.about.ikea.com staffdirectory.lyit.ie www.judoseclin.fr judoseclin.fr app.equimerio.com backend.equimerio.com arcades-stage2-cm.klepierre.fr pa-rpaconnect-dev.wartsila.com solutions.cloud.ashvins.eu ops.go-aheadnordic.no www.webshop.garagejv.be webshop.garagejv.be test-promark.partex.pl smartplaces.acceptance.royalhaskoningdhv.com whitelabel.acceptance.royalhaskoningdhv.com boulevard-berlin-stage2-cm.klepierre.de lmv.intertrustgroup.com securitybroker-tls-test-ext.services.geodanmark.nu editor-test-api.services.geodanmark.nu performance-contractcounsel.ti.pwc.co.uk www.rmxob.shop winston-compacts.jti.com winston-compacts-qa.jti.com respond.acc-avo.la forms.acc-avo.la forms.api.acc-avo.la winston-compacts-dev.jti.com bpf.prd.mn.cordfinance.com siza-uatret.sandbox.operations.dynamics.com siza-uatpos.sandbox.operations.dynamics.com gtpdbfogprovisioningd.sbp.eyclienthub.com euwdgtpshdgtm03.trafficmanager.net virtualfacilitytour.com prod.odp.outokumpu.com dojo-api.siemensgamesa.com acc.acc-avo.la acc3.acc-avo.la forgotpassword.acc-avo.la acc2.acc-avo.la www.helpshipwms.com www.235u.net www.develop.helpshipwms.com careers-staging-euw.wolterskluwer.com careers-staging-euw-cd01.wolterskluwer.com staging.ts.bramvercaigne.be dev.ts.bramvercaigne.be ts.bramvercaigne.be www.samlinger.dk www.alodaorganics.com api.vodalend.dev.lulalend.co.za val-d-europe-en-stage2-cm.klepierre.fr val-d-europe-stage2-cm.klepierre.fr linistry-prod-trafficmanager-redirect.trafficmanager.net dashboard.lyit.ie secure.gkmm.org esperanca-dev.az.fitness24seven.com cms-dev.az.fitness24seven.com upload.tmp-gmbh.de beterbed.store api.terracust.de www.primomolo.it promark.partexariane.cz promark.partex.nu test-promark.partex.se promark.partex.de promark.partexmarking.lt test-promark.partex.us primomolo.it promark.partex.se promark.partex.in promark.partex.fr upload.autkom.de blog.devexpand.com doocio.devexpand.com test-nieve.tixalia.com licensing.adamfactory.com www.bookdragon.be appregistration.tikit.cloud identity.mylivingbloom.com api.mylivingbloom.com opd.az.hmgroup.tech menisto.com crew42.dk lloydspharmacare.online smartiq.co.za liff.nl briefingline.com pmt.nl staging.scidata.scienceathome.org operations.nieuwestroom.nl emobicons.com otdb-dev.tengizchevroil.com rrid-dev.tengizchevroil.com etax.vismaonline.com omletec.com cds.acceptance.royalhaskoningdhv.com pmepensioen.nl mimappadminportal.daimler.com denstoredanske.dk trafikk.go-aheadnordic.no allum-stage2-cm.steenstrom.se novy-smichov-stage2-cm.klepierre.cz la-gavia-stage2-cm.klepierre.es fields-stage2-cm.steenstrom.dk aqua-portimao-stage2-cm.klepierre.pt dip.kruse-smith.no www.pocketcities.com api.impressive.studio alodaorganics.com pme.acc.mn.cordfinance.com pme.dev.mn.cordfinance.com umbraco.cordfinance.com sorensander.com lesplanade-shopping-stage2-cm.klepierre.be lesplanade-shopping-nl-stage2-cm.klepierre.be acc.umbraco.cordfinance.com tst.umbraco.cordfinance.com bookdragon.be cms.terracust.de pidplusapi.one.microsoft.com tcoiso-test.tengizchevroil.com connect2.tmf-group.com backofficeappcustomers.bstronggroup.com tcoiso-dev.tengizchevroil.com harrycare.com promark.partex.pl webapp.cloudtest.cz classiclfg.net www.classiclfg.net promark.partex.co.uk samlinger.dk cd1-sc920.acceptance.royalhaskoningdhv.com odysseum-stage2-cm.klepierre.fr www.e-newtech.com campania-stage2-cm.klepierre.it identity.exclusivetradeplatform.com admin-test-ext.services.geodanmark.nu api-test-api.services.geodanmark.nu admin-test-api.services.geodanmark.nu securitybroker-test-ext.services.geodanmark.nu api-test-ext.services.geodanmark.nu editor-test-ext.services.geodanmark.nu ltddev.360-advisor.com vodalend.dev.api.lulalend.co.za spm-qs-projectlist.api.sievo.com helpshipwms.com promark.partexme.ae zamowkolejke.poczta-polska.pl chat-test.pmt.nl chat-staging.pmt.nl performance-contractcounsel-api.ti.pwc.co.uk promark.partex.ind.br kodedjo-cloud-labs.com admin.commerce365.io bpmt.nl no.cms-dev.az.fitness24seven.com se.cms-dev.az.fitness24seven.com fi.cms-dev.az.fitness24seven.com pl.cms-dev.az.fitness24seven.com pmt.acc.mn.cordfinance.com pmt.tst.mn.cordfinance.com bpf.acc.mn.cordfinance.com acc-rpa.citizenm.com bpf.tst.mn.cordfinance.com www.kraftfahrer-jobs.com roofhunt.net ssp.tsc.cloud pmt.prd.mn.cordfinance.com ispinsidedown.com metro-stage2-cm.steenstrom.no test-creator.partexlabels.com login.e-gor.be plugbv.nl api.commerce365.io creator.partexlabels.com www.driessenverf.nl www.claasencoatings.nl omnitech.dk promark.partex.us myid.be donkeydriver.com promark.partex.ua identity.bramvercaigne.be dev.identity.bramvercaigne.be dev.api.bramvercaigne.be api.bramvercaigne.be www.staging.helpshipwms.com staging.helpshipwms.com develop.helpshipwms.com test-promark.partex.nu test-promark.partexmarking.lt sorteringstest.postnord.se www.theaudio.guide afkarcorp.com www.assicurazionimurtasmarina.it promark.partex.co.za promark.partexmarking.ru promark.partexariane.sk nfb.rsvps.at proqressit.com login.acc-avo.la auth.acc-avo.la docs.acc-avo.la acc3.api.execution.test.acc-avo.la acc2.api.execution.test.acc-avo.la acc.api.execution.test.acc-avo.la acc.api.execution.prod.acc-avo.la acc2.api.execution.prod.acc-avo.la acc3.api.execution.prod.acc-avo.la acc3.api.acc-avo.la acc2.api.acc-avo.la acc.api.acc-avo.la api.timevis.io test.new.mextra.nl www.squirrelsaurus.com docs.memoq.com engine.ie daarbak.dk student-sam-test.folksam.se pt06pos.sandbox.retail.dynamics.com pt06ret.sandbox.retail.dynamics.com fka-systemtestpos.sandbox.operations.dynamics.com fka-systemtestret.sandbox.operations.dynamics.com api.two4one.be www.rambleradio.com www.adsentiq.com www.ecogasolina.com vote.liff.nl www.vanderkooy.nl neotalent.lis.ipn.pt post.luijtenvvz.nl api.360-advisor.com stage2-cm.klepierre.fr krampprodpos.operations.dynamics.com krampprodret.operations.dynamics.com www.felixvanderputtenverf.nl felixvanderputtenverf.nl jonkerverf.nl driessenverf.nl devexpand.com e-newtech.com hosts.letsencrypt-7rbs.azurewebsites.net lny.io linistry.com pczt.pl ams.eqao.dk hcs.services order.omeletapp.com rockruit.pl ecogasolina.com erovena.nl hosts.talenteschmiede.azurewebsites.net www.datatwin.eu hosts.brickworkrekom.azurewebsites.net hosts.impressive-ar-api.azurewebsites.net ebdashboard.com koopvaardij.nl bpfkoopvaardij.nl portalapi.ford.com.tr mondowallet.com hosts.timevisioprod-apifn.azurewebsites.net agorakey.cloud kulan.stockholm 247group-dev.az.fitness24seven.com www.terhoevenverf.nl terhoevenverf.nl test-integration-api.finsit.net truckersjobs.eu myhouse.dk www.emobicons.com howden-speciality-insight.com www.equisign.com claasencoatings.nl gamers2020.com bouwmancoatings.nl plugworkwear.nl vanderkooy.nl tweagle.biz va-chier.fr obton.online insparkdemo.nl techegg.net ivetaandmatt.cz fmloadshedding.co.za cryder.io portal.ford.com.tr fizjo-online.pl marbase.nl projectu.xyz www.projectu.xyz smartransfa.com equisign.com datatwin.be datatwin.eu sealdeal.ai iamunique.be anastasiiabirthday.tk outoftheline.com rmxob.shop awbgqatar.info tryggelektro.com

Open Ports Detected

443 80

Map

Whois Information

• NetRange: 13.64.0.0 - 13.107.255.255
• CIDR: 13.96.0.0/13, 13.64.0.0/11, 13.104.0.0/14
• NetName: MSFT
• NetHandle: NET-13-64-0-0-1
• Parent: NET13 (NET-13-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Microsoft Corporation (MSFT)
• RegDate: 2015-03-26
• Updated: 2021-12-14
• Ref: https://rdap.arin.net/registry/ip/13.64.0.0
• OrgName: Microsoft Corporation
• OrgId: MSFT
• Address: One Microsoft Way
• City: Redmond
• StateProv: WA
• PostalCode: 98052
• Country: US
• RegDate: 1998-07-10
• Updated: 2025-06-10
• Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
• Comment: * https://cert.microsoft.com.
• Comment:
• Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
• Comment: * abuse@microsoft.com.
• Comment:
• Comment: To report security vulnerabilities in Microsoft products and services, please contact:
• Comment: * secure@microsoft.com.
• Comment:
• Comment: For legal and law enforcement-related requests, please contact:
• Comment: * msndcc@microsoft.com
• Comment:
• Comment: For routing, peering or DNS issues, please
• Comment: contact:
• Comment: * IOC@microsoft.com
• Ref: https://rdap.arin.net/registry/entity/MSFT
• OrgTechHandle: BEDAR6-ARIN
• OrgTechName: Bedard, Dawn
• OrgTechPhone: +1-425-538-6637
• OrgTechEmail: dabedard@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
• OrgTechHandle: IPHOS5-ARIN
• OrgTechName: IPHostmaster, IPHostmaster
• OrgTechPhone: +1-425-538-6637
• OrgTechEmail: iphostmaster@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
• OrgTechHandle: MRPD-ARIN
• OrgTechName: Microsoft Routing, Peering, and DNS
• OrgTechPhone: +1-425-882-8080
• OrgTechEmail: IOC@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
• OrgRoutingHandle: CHATU3-ARIN
• OrgRoutingName: Chaturmohta, Somesh
• OrgRoutingPhone: +1-425-882-8080
• OrgRoutingEmail: someshch@microsoft.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
• OrgTechHandle: SINGH683-ARIN
• OrgTechName: Singh, Prachi
• OrgTechPhone: +1-425-707-5601
• OrgTechEmail: pracsin@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
• OrgAbuseHandle: MAC74-ARIN
• OrgAbuseName: Microsoft Abuse Contact
• OrgAbusePhone: +1-425-882-8080
• OrgAbuseEmail: abuse@microsoft.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN