162.55.134.234 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 162.55.134.234 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• JARM: 29d29d15d29d29d00042d42d000000df133019600a83abfb096ff3e86cd79d

• View other sources: Spamhaus VirusTotal

• Country: Germany
• Network: AS24940 hetzner online gmbh
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: bpwporto.org clientespro.facturafacil.ao mrafael.facturafacil.ao check-in360.com postoffice263.click checkin.ao pontosete.facturafacil.ao corporatecheck-in.ao postoffice262.click postoffice266.click postoffice267.click postoffice264.click postoffice260.click postoffice106.click postoffice102.click postoffice107.click postoffice103.click postoffice104.click postoffice105.click postoffice101.click postoffice96.click postoffice92.click postoffice95.click postoffice97.click postoffice91.click postoffice98.click postoffice90.click postoffice170.click postoffice173.click postoffice179.click postoffice171.click postoffice174.click postoffice172.click postoffice177.click postoffice176.click postoffice178.click postoffice175.click postoffice156.click postoffice158.click postoffice153.click postoffice155.click postoffice151.click postoffice152.click postoffice154.click postoffice150.click postoffice231.click postoffice233.click postoffice236.click postoffice232.click postoffice230.click postoffice237.click postoffice234.click postoffice235.click licencasteste.inmovetech.com suporte.steppro.ao postoffice265.click postoffice268.click postoffice261.click postoffice252.click postoffice251.click postoffice250.click postoffice254.click postoffice257.click postoffice256.click postoffice255.click postoffice259.click postoffice258.click postoffice253.click check-in.ao teste.check-in.ao corporate.check-in.ao padelbar.facturafacil.ao fueldemo.steppro.ao contacts.steppro.ao pingdong.facturafacil.ao stepforward.co.ao clube-s.check-in.ao bai.facturafacil.ao clube-s.ao waterinmove.com www.waterinmove.com menusbydeltacafes.es licencas.steppro.ao licencas.inmovetech.com abarbosafilhos.pt girafas.waterinmove.com delivery.cardapios.pt wide.facturafacil.ao sonangolgeo.steppro.ao www.smobel.com smobel.com steppro.ao www.menus.ao menus.ao laison.facturafacil.ao catarina.facturafacil.ao global.facturafacil.ao www.mirandaeserra.pt mirandaeserra.pt traducoes.menusbydeltacafes.es lookalemcasa.ao m2r-engenharia.com joaopratesprofessionalcoach.com teste.facturafacil.ao tuarede.com gest.waterinmove.com marioarafael.com esbocosigma.com pontolike.com sensors.inmovetech.com sonangolmaster.steppro.ao software.stepforward.co.ao step.ao loja.stepforward.co.ao gois.co boatracknew.inmovetech.com antf.pt store.stepforward.co.ao shop.stepforward.co.ao clube.software.stepforward.co.ao lojadigital.software.stepforward.co.ao loja.software.stepforward.co.ao sonangol.software.stepforward.co.ao noite.software.stepforward.co.ao clinic.antf.pt gestaodeservicos.antf.pt gestaoforum.antf.pt inmovesoftware.com www.inmovesoftware.com solutions2win.com www.solutions2win.com www.inmovetech.com inmovetech.com facturafacil.ao fpm.pt business.waterinmove.com ficaemcasa.ao boatrack.inmovetech.com sonangoldemo.steppro.ao demoexpo.facturafacil.ao froe.facturafacil.ao cardapios.pt ns9.codemakerserver.com server.codemaker.pt 162.55.134.234.sslip.io andy158272794359628.googuu.xyz tyler158857389991735.googuu.xyz

Open Ports Detected

110 143 21 25 443 465 53 587 7081 80 8443 8880 993 995

Map

Whois Information

• NetRange: 162.55.0.0 - 162.55.255.255
• CIDR: 162.55.0.0/16
• NetName: RIPE
• NetHandle: NET-162-55-0-0-1
• Parent: NET162 (NET-162-0-0-0-0)
• NetType: Early Registrations, Transferred to RIPE NCC
• OriginAS:
• Organization: RIPE Network Coordination Centre (RIPE)
• RegDate: 2019-11-18
• Updated: 2019-11-18
• Ref: https://rdap.arin.net/registry/ip/162.55.0.0
• OrgName: RIPE Network Coordination Centre
• OrgId: RIPE
• Address: P.O. Box 10096
• City: Amsterdam
• StateProv:
• PostalCode: 1001EB
• Country: NL
• RegDate:
• Updated: 2013-07-29
• Ref: https://rdap.arin.net/registry/entity/RIPE
• OrgAbuseHandle: ABUSE3850-ARIN
• OrgAbuseName: Abuse Contact
• OrgAbusePhone: +31205354444
• OrgAbuseEmail: abuse@ripe.net
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
• OrgTechHandle: RNO29-ARIN
• OrgTechName: RIPE NCC Operations
• OrgTechPhone: +31 20 535 4444
• OrgTechEmail: hostmaster@ripe.net
• OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN

Links to attack logs

anonymous-proxy-ip-list-2024-08-15 anonymous-proxy-ip-list-2024-08-08