139.215.227.251 Threat Intelligence and Host Information

Share on:
Nov 07, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 139.215.227.251 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

  • JARM: 3fd3fd20d3fd3fd21c3fd3fd3fd3fd2b66a312d81ed1efa0f55830f7490cb2

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network: AS4837 china unicom china169 backbone
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy

Malware Detected on Host

Count: 1 dabc552e18e8f4bd460e609b51196c781ce99c721a47d5024a5469b77be05b71

Open Ports Detected

10000 10001 10443 1080 11000 12345 1433 17000 1723 1800 18081 19000 2000 20000 2081 2086 2087 2323 3001 3050 3299 443 4433 444 4443 447 4899 5000 50000 5001 5005 5006 50070 5009 5010 5222 5443 5555 6000 6001 6002 6080 6443 6580 7001 7010 7090 7443 7777 8000 8001 8007 8009 8010 8015 8022 8023 8029 8031 8033 8042 8081 8082 8083 8085 8086 8087 8089 8090 8096 8097 8098 8099 8102 8103 8180 8200 8237 8445 8663 8789 8802 8844 8880 8889 9000 9001 9002 9004 9005 9009 9011 9036 9046 9051 9070 9080 9084 9090 9091 9096 9100 9101 9103 9215 9443 9550 96 9600 9944 9966 9998 9999

Map

Whois Information

  • NetRange: 139.215.0.0 - 139.215.255.255
  • CIDR: 139.215.0.0/16
  • NetName: APNIC-ERX-139-215-0-0
  • NetHandle: NET-139-215-0-0-1
  • Parent: NET139 (NET-139-0-0-0-0)
  • NetType: Early Registrations, Transferred to APNIC
  • OriginAS:
  • Organization: Asia Pacific Network Information Centre (APNIC)
  • RegDate: 2010-11-03
  • Updated: 2010-11-17
  • Comment: This IP address range is not registered in the ARIN database.
  • Comment: This range was transferred to the APNIC Whois Database as
  • Comment: part of the ERX (Early Registration Transfer) project.
  • Comment: For details, refer to the APNIC Whois Database via
  • Comment:
  • Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
  • Comment: for the Asia Pacific region. APNIC does not operate networks
  • Comment: using this IP address range and is not able to investigate
  • Comment: spam or abuse reports relating to these addresses. For more
  • Ref: https://rdap.arin.net/registry/ip/139.215.0.0
  • OrgName: Asia Pacific Network Information Centre
  • OrgId: APNIC
  • Address: PO Box 3646
  • City: South Brisbane
  • StateProv: QLD
  • PostalCode: 4101
  • Country: AU
  • RegDate:
  • Updated: 2012-01-24
  • Ref: https://rdap.arin.net/registry/entity/APNIC
  • OrgAbuseHandle: AWC12-ARIN
  • OrgAbuseName: APNIC Whois Contact
  • OrgAbusePhone: +61 7 3858 3188
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • OrgTechHandle: AWC12-ARIN
  • OrgTechName: APNIC Whois Contact
  • OrgTechPhone: +61 7 3858 3188
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • inetnum: 139.208.0.0 - 139.215.255.255
  • netname: UNICOM-JL
  • descr: China Unicom Jilin province network
  • descr: China Unicom
  • descr: No.21,Jin-Rong Street,
  • descr: Beijing 100033
  • country: CN
  • admin-c: CH1302-AP
  • tech-c: WT92-AP
  • abuse-c: AC1718-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-CNCGROUP
  • mnt-lower: MAINT-CNCGROUP-JL
  • mnt-routes: MAINT-CNCGROUP-RR
  • mnt-irt: IRT-CU-CN
  • last-modified: 2023-10-21T03:41:22Z
  • irt: IRT-CU-CN
  • address: No.21,Financial Street
  • address: Beijing,100033
  • address: P.R.China
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: CH1302-AP
  • tech-c: CH1302-AP
  • mnt-by: MAINT-CNCGROUP
  • last-modified: 2023-10-21T03:27:35Z
  • role: ABUSE CUCN
  • address: No.21,Financial Street
  • address: Beijing,100033
  • address: P.R.China
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: CH1302-AP
  • tech-c: CH1302-AP
  • nic-hdl: AC1718-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2023-10-21T03:28:27Z
  • person: ChinaUnicom Hostmaster
  • nic-hdl: CH1302-AP
  • e-mail: [email protected]
  • address: No.21,Jin-Rong Street
  • address: Beijing,100033
  • address: P.R.China
  • phone: +86-10-66259764
  • fax-no: +86-10-66259764
  • country: CN
  • mnt-by: MAINT-CNCGROUP
  • last-modified: 2017-08-17T06:13:16Z
  • person: Wang Tiegang
  • nic-hdl: WT92-AP
  • e-mail: [email protected]
  • address: NO.3535,Renmin Street, ChangChun ,
  • address: Jilin province , 130021 , P.R. China
  • phone: +86-0431-87022560
  • fax-no: +86-0431-87022420
  • country: CN
  • mnt-by: MAINT-CNCGROUP-JL
  • last-modified: 2020-07-03T00:43:16Z
  • route: 139.208.0.0/13
  • descr: China Unicom Jilin Province Network
  • country: CN
  • origin: AS4837
  • mnt-by: MAINT-CNCGROUP-RR
  • last-modified: 2011-03-23T06:06:01Z

Links to attack logs

anonymous-proxy-ip-list-2023-10-27