170.114.52.2 Threat Intelligence and Host Information

Aug 31, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 170.114.52.2 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • Tags: tsec

  • JARM: 29d3dd00029d29d00042d43d00041d5de67cc9954cc85372523050f20b5007

  • View other sources: Spamhaus VirusTotal

  • Country: United States
  • Network: ASNone
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy

Malware Detected on Host

Count: 28 7d805ae27f87fe0b87f695d24f2254cfdb2f287a1b374f20b5a8dbbbb22a2150 a3d1b441eee687d785b83136912e60db95674b4f58974c11abfcebde2e629372 c862c04bb588e45174efdf22741cf7e8777a26a4c3cea7514b0d7465a5526d68 f569e7bb255644de8f31a25542713d1aae22328077b16ca72910875dc6760632 a0dc19a34021275d52b2523b1c3d1bd966ec01d6c9eb0555ddd6d5c58039c0c7 5f5468a8bcb0727176489a4d45b9e6c1b866a1c9b1501d5a49716f63d4e314b7 7d9f1e32e53ec02be480e82a586b8d9b74c47557b3da11764669295556cbaca3 8c9b9f479cc4b2b883e3740dae0c73bce0e379885a14c0184ece9147b6c525a2 dc81dd801c7079f0722f925e9ef1bd666820dde5f4425e95c2a6f7a973b56d9a a96e61cc3f4940a56625a464835fa68ea89eedc907705acb0e901f2d17b10dda

Open Ports Detected

443 80

Map

Whois Information

  • NetRange: 170.114.0.0 - 170.114.255.255
  • CIDR: 170.114.0.0/16
  • NetName: ZVC
  • NetHandle: NET-170-114-0-0-1
  • Parent: NET170 (NET-170-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: Zoom Video Communications, Inc (ZVC)
  • RegDate: 2020-10-30
  • Updated: 2023-03-27
  • Comment: —–BEGIN CERTIFICATE—–MIIDIDCCAggCCQDQ49jTqK+N+zANBgkqhkiG9w0BAQsFADBSMQswCQYDVQQGEwJVUzELMAkGA1UECAwCQ0ExETAPBgNVBAcMCFNhbiBKT3NlMSMwIQYDVQQKDBpab29tICBWaWRlbyBDb21tdW5pY2F0aW9uczAeFw0yMzAzMDkwMDI0NTRaFw0yNDAzMDgwMDI0NTRaMFIxCzAJBgNVBAYTAlVTMQswCQYDVQQIDAJDQTERMA8GA1UEBwwIU2FuIEpPc2UxIzAhBgNVBAoMGlpvb20gIFZpZGVvIENvbW11bmljYXRpb25zMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfB5rSeIOC93fBljFEasLLLl41RStYtHSy6234Rc3C9p8QO+uuhAtmV67gIvKpM7hcATO7/qCW2UCQUAiXrzOQYIVAdz/ExmtdEZ/h94iGWe6qrCwGdveM/0P6v35pD7rh5LBNFzhHQ3nounF/fbDhiVE8H+SycwP+df6hZWOCtzooII33cFYdGQ2w3WMyLcGqsLhbn7+tnK8iMmGOHYhmyfJ/3XJbQUf3Gf5GYLa+THOqFKmn5l2kL0eZ1ZJi8G5XJLH/nAh4vQykSJTVKYYBQV0+CI6qceaqbmZQw1ulwhnai4V51zU16NwgzICxZfYDh7MVMFjW2AB7h+rsd1XQIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQBFxxWDBwc0HnkWks1+T4SI83I0Zpu0vDB6f1zkxMV1yMFVVgTI6JOi3IaX0/2pRK/AUnfAdj3Z4FZOIOABBX7hZDQX3uZoRuKA/X4d/0thOmWM18u9XXhvQic2zVNbldBXNczeLZOHgtSxWNb74hqufKzOunQRPV0gzBAGVrgiim5+W6dpGYt2gRA3P4AkWtigkN3gWidYbQB6Mfu2lIoDwIsCMHXRyTEAmJgu3NZq5ocETn5J71eGU2iBdznTtJZXg9sV4sg5bKQwc3tn4RfajBZS/Y5lMRlChkoUhCz6bzU68x4xLPSIWxX630j50nq8WvxE/KhPQwIz9xAfeEO2—–END CERTIFICATE—–
  • Comment: —–BEGIN CERTIFICATE—–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—–END CERTIFICATE—–
  • Comment: OCITOKEN::170.114.51.0/24:3b16fe4b02437f60b87ae48089ee2deed79eaacbfb9ce7e1cbd73d5bf5e007fb
  • Comment: OCITOKEN::170.114.102.0/23:33f6a7706635f2799b3b4ff65100879ec0f8cb93ffd8fd440525dd61835ac7ca
  • Comment: OCITOKEN::170.114.104.0/21:fedea09b39ab984f9d5ca032b31e15a9b334740bb20fa13b5cebffb1da285089
  • Comment: OCITOKEN::170.114.120.0/23:71f15ef2f7c3b41356d629b80db33919c2d9fdbf6d57f91de604876b94cc4759
  • Comment: OCITOKEN::170.114.112.0/21:ca1a41c729d51722105059d622548ed6228f56195b355a40bcea1ae838001543
  • Comment: OCITOKEN::170.114.54.0/23:cffad04e280392f790315257642bbdecae2afcdcd9356c60847736da2a13d6f2
  • Comment: OCITOKEN::170.114.62.0/24:4bf6d4579ee59c69134f05da7e2e7abfa1a16601e104d1c25be4773bb0123f8b
  • Ref: https://rdap.arin.net/registry/ip/170.114.0.0
  • OrgName: Zoom Video Communications, Inc
  • OrgId: ZVC
  • Address: 55 Almaden Boulevard, 6th Floor
  • City: San Jose
  • StateProv: CA
  • PostalCode: 95113
  • Country: US
  • RegDate: 2013-09-23
  • Updated: 2023-08-18
  • Comment: —–BEGIN CERTIFICATE—–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—–END CERTIFICATE—–
  • Comment: —–BEGIN CERTIFICATE—–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—–END CERTIFICATE—–
  • Ref: https://rdap.arin.net/registry/entity/ZVC
  • OrgTechHandle: CHUWI7-ARIN
  • OrgTechName: Chu, Wilson
  • OrgTechPhone: +1-408-982-6032
  • OrgTechEmail: wilson.chu@zoom.us
  • OrgTechRef: https://rdap.arin.net/registry/entity/CHUWI7-ARIN
  • OrgAbuseHandle: YUANE-ARIN
  • OrgAbuseName: Yuan, Eric
  • OrgAbusePhone: +1-408-673-2657
  • OrgAbuseEmail: yasin.mohammed@zoom.us
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/YUANE-ARIN
  • OrgTechHandle: RDM103-ARIN
  • OrgTechName: Murray, Robert David
  • OrgTechPhone: +1-423-225-7255
  • OrgTechEmail: dave.murray@zoom.us
  • OrgTechRef: https://rdap.arin.net/registry/entity/RDM103-ARIN
  • OrgTechHandle: NEUME13-ARIN
  • OrgTechName: Neumeier, Eric
  • OrgTechPhone: +1-720-664-6469
  • OrgTechEmail: eric.neumeier@zoom.us
  • OrgTechRef: https://rdap.arin.net/registry/entity/NEUME13-ARIN
  • OrgAbuseHandle: CHUWI7-ARIN
  • OrgAbuseName: Chu, Wilson
  • OrgAbusePhone: +1-408-982-6032
  • OrgAbuseEmail: wilson.chu@zoom.us
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/CHUWI7-ARIN
  • OrgRoutingHandle: YANGX9-ARIN
  • OrgRoutingName: Yang, Xi
  • OrgRoutingPhone: +1-512-571-9222
  • OrgRoutingEmail: xi.yang@zoom.us
  • OrgRoutingRef: https://rdap.arin.net/registry/entity/YANGX9-ARIN
  • OrgNOCHandle: CHUWI7-ARIN
  • OrgNOCName: Chu, Wilson
  • OrgNOCPhone: +1-408-982-6032
  • OrgNOCEmail: wilson.chu@zoom.us
  • OrgNOCRef: https://rdap.arin.net/registry/entity/CHUWI7-ARIN
  • OrgAbuseHandle: RDM103-ARIN
  • OrgAbuseName: Murray, Robert David
  • OrgAbusePhone: +1-423-225-7255
  • OrgAbuseEmail: dave.murray@zoom.us
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/RDM103-ARIN
  • OrgDNSHandle: YANGX9-ARIN
  • OrgDNSName: Yang, Xi
  • OrgDNSPhone: +1-512-571-9222
  • OrgDNSEmail: xi.yang@zoom.us
  • OrgDNSRef: https://rdap.arin.net/registry/entity/YANGX9-ARIN
  • OrgTechHandle: ZHANG353-ARIN
  • OrgTechName: Zhang, Baiyu
  • OrgTechPhone: +1-209-243-5702
  • OrgTechEmail: baiyu.zhang@zoom.us
  • OrgTechRef: https://rdap.arin.net/registry/entity/ZHANG353-ARIN
  • OrgNOCHandle: YUANE-ARIN
  • OrgNOCName: Yuan, Eric
  • OrgNOCPhone: +1-408-673-2657
  • OrgNOCEmail: yasin.mohammed@zoom.us
  • OrgNOCRef: https://rdap.arin.net/registry/entity/YUANE-ARIN
  • OrgTechHandle: YANGX9-ARIN
  • OrgTechName: Yang, Xi
  • OrgTechPhone: +1-512-571-9222
  • OrgTechEmail: xi.yang@zoom.us
  • OrgTechRef: https://rdap.arin.net/registry/entity/YANGX9-ARIN
  • OrgDNSHandle: CHUWI7-ARIN
  • OrgDNSName: Chu, Wilson
  • OrgDNSPhone: +1-408-982-6032
  • OrgDNSEmail: wilson.chu@zoom.us
  • OrgDNSRef: https://rdap.arin.net/registry/entity/CHUWI7-ARIN
  • OrgRoutingHandle: CHUWI7-ARIN
  • OrgRoutingName: Chu, Wilson
  • OrgRoutingPhone: +1-408-982-6032
  • OrgRoutingEmail: wilson.chu@zoom.us
  • OrgRoutingRef: https://rdap.arin.net/registry/entity/CHUWI7-ARIN
  • OrgAbuseHandle: YANGX9-ARIN
  • OrgAbuseName: Yang, Xi
  • OrgAbusePhone: +1-512-571-9222
  • OrgAbuseEmail: xi.yang@zoom.us
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/YANGX9-ARIN
  • OrgNOCHandle: YANGX9-ARIN
  • OrgNOCName: Yang, Xi
  • OrgNOCPhone: +1-512-571-9222
  • OrgNOCEmail: xi.yang@zoom.us
  • OrgNOCRef: https://rdap.arin.net/registry/entity/YANGX9-ARIN
  • OrgTechHandle: YUANE-ARIN
  • OrgTechName: Yuan, Eric
  • OrgTechPhone: +1-408-673-2657
  • OrgTechEmail: yasin.mohammed@zoom.us
  • OrgTechRef: https://rdap.arin.net/registry/entity/YUANE-ARIN

Links to attack logs

anonymous-proxy-ip-list-2023-08-30

Share on: