130.193.39.136 Threat Intelligence and Host Information

Mar 17, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 130.193.39.136 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

  • JARM: 29d29d00029d29d00042d42d00000023f2ae7180b8a0816654f2296c007d93

  • View other sources: Spamhaus VirusTotal

  • Country: Russia
  • Network: AS200350 yandex.cloud llc
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: admin.kandinskyclinic.com admin.web.chaika.ge admin.kandinskyclinic.med.moscow kandinskyclinic.med.moscow intercom-bridge.chaika.com admin.dr-drill.chaika.com test.finance.dr-drill.chaika.com astrashare.chaika.com messengers-mailing.vet.chaika.com backend.lab.astrahealth.tech anotylab.chaika.com images.dr-drill.chaika.com dr-drill.chaika.com www.dr-drill.chaika.com tasks.dr-drill.chaika.com finance.dr-drill.chaika.com finance2.dr-drill.chaika.com integration.dr-drill.chaika.com bi.dr-drill.chaika.com dr-chaika.astrahealth.tech bi.chaika.com temp-iskra.prod.kube.chaika.com temp-backend.prod.kube.chaika.com temp.chaika.astrahealth.tech backend.chaika.astrahealth.tech temp-backend.chaika.astrahealth.tech lab.astrahealth.tech billing.chaika.com rabbitmq-billing.prod.kube.chaika.com ft.chaika.com backend.astra.prod.kube.chaika.com astra.prod.kube.chaika.com messengers-mailing.chaika.com rabbitmq-cluster.prod.kube.chaika.com vet.prod.kube.chaika.com integration.vet.prod.kube.chaika.com admin.vet.prod.kube.chaika.com www.vet.prod.kube.chaika.com tasks.vet.prod.kube.chaika.com images.vet.prod.kube.chaika.com chaika.astrahealth.tech allure.prod.kube.chaika.com images.skolkovo.vet skolkovo.vet loki.prod.kube.chaika.com integration.skolkovo.vet www.skolkovo.vet admin.skolkovo.vet images.vet.chaika.com backend.vet.chaika.com test.finance.vet.chaika.com skolkovo.vet.chaika.com tasks.chaika.com admin.chaika.com www.vet.chaika.com integration.vet.chaika.com finance2.vet.chaika.com finance.vet.chaika.com admin.vet.chaika.com vet.chaika.com dashboard.prod.kube.chaika.com skolkovo.chaika.com prometheus.prod.kube.chaika.com grafana.prod.kube.chaika.com dex.prod.kube.chaika.com kubeconfig.prod.kube.chaika.com workplace-service.prod.kube.chaika.com integration.chaika.com images.chaika.com radiology.chaika.com iskra.vet.chaika.com chaika.com upmeter.prod.kube.chaika.com status.prod.kube.chaika.com skvet.prod.kube.chaika.com messengers.chaika.com 1c-exporter.prod.kube.chaika.com messengers.prod.kube.chaika.com finance2.chaika.com test.finance.chaika.com finance.chaika.com iskra.chaika.com backend.chaika.com openvpn-admin.prod.kube.chaika.com integration.prod-chaikacom.prod.kube.chaika.com iskra.prod.kube.chaika.com backend.prod.kube.chaika.com admin.prod-chaikacom.prod.kube.chaika.com prod-chaikacom.prod.kube.chaika.com www.prod-chaikacom.prod.kube.chaika.com deckhouse.prod.kube.chaika.com smoke-mini.prod.kube.chaika.com

Map

Whois Information

  • NetRange: 130.193.0.0 - 130.193.255.255
  • CIDR: 130.193.0.0/16
  • NetName: RIPE-ERX-130-193-0-0
  • NetHandle: NET-130-193-0-0-1
  • Parent: NET130 (NET-130-0-0-0-0)
  • NetType: Early Registrations, Transferred to RIPE NCC
  • OriginAS:
  • Organization: RIPE Network Coordination Centre (RIPE)
  • RegDate: 2010-11-03
  • Updated: 2010-11-17
  • Comment: These addresses have been further assigned to users in
  • Comment: the RIPE NCC region. Contact information can be found in
  • Ref: https://rdap.arin.net/registry/ip/130.193.0.0
  • OrgName: RIPE Network Coordination Centre
  • OrgId: RIPE
  • Address: P.O. Box 10096
  • City: Amsterdam
  • StateProv:
  • PostalCode: 1001EB
  • Country: NL
  • RegDate:
  • Updated: 2013-07-29
  • Ref: https://rdap.arin.net/registry/entity/RIPE
  • OrgTechHandle: RNO29-ARIN
  • OrgTechName: RIPE NCC Operations
  • OrgTechPhone: +31 20 535 4444
  • OrgTechEmail: hostmaster@ripe.net
  • OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
  • OrgAbuseHandle: ABUSE3850-ARIN
  • OrgAbuseName: Abuse Contact
  • OrgAbusePhone: +31205354444
  • OrgAbuseEmail: abuse@ripe.net
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
  • inetnum: 130.193.32.0 - 130.193.63.255
  • netname: RU-YANDEXCLOUD-20111026
  • country: RU
  • org: ORG-YL62-RIPE
  • admin-c: YCNO1-RIPE
  • tech-c: YCNO1-RIPE
  • status: ALLOCATED PA
  • mnt-by: mnt-ru-yandexcloud-1
  • mnt-by: RIPE-NCC-HM-MNT
  • created: 2020-10-30T13:38:07Z
  • last-modified: 2020-10-30T13:38:07Z
  • organisation: ORG-YL62-RIPE
  • org-name: Yandex.Cloud LLC
  • country: RU
  • org-type: LIR
  • address: 16 Lva Tolstovo str
  • address: 119021
  • address: Moscow
  • address: RUSSIAN FEDERATION
  • phone: +74957397000
  • admin-c: YCNO1-RIPE
  • tech-c: YCNO1-RIPE
  • abuse-c: AR48776-RIPE
  • mnt-ref: mnt-ru-yandexcloud-1
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: mnt-ru-yandexcloud-1
  • created: 2018-10-17T08:12:43Z
  • last-modified: 2020-12-16T12:18:28Z
  • role: Yandex Cloud Network Operations
  • address: Yandex Cloud
  • address: 16 Lva Tolstogo st.
  • address: 119021
  • address: Moscow
  • address: Russian Federation
  • phone: +7 495 739 7000
  • fax-no: +7 495 739 7070
  • admin-c: AG25016-RIPE
  • admin-c: KP4895-RIPE
  • admin-c: VK5347-RIPE
  • admin-c: MS53754-RIPE
  • tech-c: AG25016-RIPE
  • tech-c: KP4895-RIPE
  • tech-c: VK5347-RIPE
  • tech-c: MS53754-RIPE
  • mnt-by: mnt-ru-yandexcloud-1
  • created: 2019-07-29T16:50:06Z
  • last-modified: 2022-03-22T10:54:34Z
  • nic-hdl: YCNO1-RIPE
  • abuse-mailbox: cloud-abuse@yandex-team.ru
  • route: 130.193.32.0/19
  • descr: Yandex Cloud
  • origin: AS200350
  • mnt-by: mnt-ru-yandexcloud-1
  • created: 2018-08-27T15:51:25Z
  • last-modified: 2020-10-30T15:51:55Z

Links to attack logs

****** ****** ******

Share on: