172.64.193.14 Threat Intelligence and Host Information

Share on:
Jul 11, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 172.64.193.14 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Country: United States
  • Network: AS13335 cloudflare
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy
  • Passive DNS Results: yousefalbasha.com thezambian.com bitcoin-scam.net lineageos-wiki.pages.dev llmh8.com thaichain-io.pages.dev zatki.com wannabe1337.xyz toursytickets.com shahty.ru 897864.xyz www.897864.xyz mfasco.com u-antenna.usachannel.info tech-story.net alunos.vidana.com.br usachannel.info pornlulu.com superiortirepros.com www.saiviswateja.com saiviswateja.com matome.usachannel.info m-antenna.usachannel.info neo.usachannel.info frontier.usachannel.info yenisular.live www.flo-server.eu flo-server.eu 4rabet.com avsohu.com www.indetectables.net cdn.animixplay.to animixplay.to www.exploreclarion.com biqooge.com tracksmall.com nimatronicc.xyz curiouscat.qa petercontry.net www.npttech.com mirakay.biz q39.iqooqootv.org cars-a.co.za nurxxx.mobi trk139.pqjx.xyz thothub.tv forum.thothub.tv www.veporns.com m.veporns.com eldiariodevictoria.com pcgmer.com av.av4.xyz jsonplaceholder.typicode.com jp.av4.xyz activetect.net bl.definebabe.com

Malware Detected on Host

Count: 16 ff6ad1c93a5830c299c8b289cf6ec9b81d0aace0bff766b54bf2195a29cafcc4 970f05ea5f6196a28bc52f6b276b05af233c8304d40f782e77cda1eb9ca5026f b7f2d145a8e428d0d839c1473f6afd7da771811fe0192570b5655f28efd22f22 f4d4dffbb00c9e52607e407269cc6143d26c2b748c74664a8b979d5051dee1c4 d82eef513f934040883c3577b5cd07d99503630f1186650e7896df64e4b82fbe 6feb31b52af948fabf0d59cdfa697fcf39fcd56378cb670f3ed51f6c70aab7c8 04af17c0aeea56ef86e6422ed320363f3a419dff99a0e363dc80069f9e138c73 f92ce2dc0b11d12a311dbd069176252b34f3cdc8b4c0733daff8d05df3b84208 d496b62838c3ba6a4222038f1f189d6734afd496158774ca05d7a0b579fac426 c6e4eb4a47add4742a86a9403438f0112cd91b63d21008afc0fc4ea3a3032f69

Open Ports Detected

2053 2082 2087 2095 2096 443 80 8443 8880

Map

Whois Information

  • NetRange: 172.64.0.0 - 172.71.255.255
  • CIDR: 172.64.0.0/13
  • NetName: CLOUDFLARENET
  • NetHandle: NET-172-64-0-0-1
  • Parent: NET172 (NET-172-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS13335
  • Organization: Cloudflare, Inc. (CLOUD14)
  • RegDate: 2015-02-25
  • Updated: 2021-05-26
  • Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
  • Ref: https://rdap.arin.net/registry/ip/172.64.0.0
  • OrgName: Cloudflare, Inc.
  • OrgId: CLOUD14
  • Address: 101 Townsend Street
  • City: San Francisco
  • StateProv: CA
  • PostalCode: 94107
  • Country: US
  • RegDate: 2010-07-09
  • Updated: 2021-07-01
  • Ref: https://rdap.arin.net/registry/entity/CLOUD14
  • OrgAbuseHandle: ABUSE2916-ARIN
  • OrgAbuseName: Abuse
  • OrgAbusePhone: +1-650-319-8930
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
  • OrgNOCHandle: CLOUD146-ARIN
  • OrgNOCName: Cloudflare-NOC
  • OrgNOCPhone: +1-650-319-8930
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
  • OrgTechHandle: ADMIN2521-ARIN
  • OrgTechName: Admin
  • OrgTechPhone: +1-650-319-8930
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
  • OrgRoutingHandle: CLOUD146-ARIN
  • OrgRoutingName: Cloudflare-NOC
  • OrgRoutingPhone: +1-650-319-8930
  • OrgRoutingEmail: [email protected]
  • OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
  • RAbuseHandle: ABUSE2916-ARIN
  • RAbuseName: Abuse
  • RAbusePhone: +1-650-319-8930
  • RAbuseEmail: [email protected]
  • RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
  • RNOCHandle: NOC11962-ARIN
  • RNOCName: NOC
  • RNOCPhone: +1-650-319-8930
  • RNOCEmail: [email protected]
  • RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
  • RTechHandle: ADMIN2521-ARIN
  • RTechName: Admin
  • RTechPhone: +1-650-319-8930
  • RTechEmail: [email protected]
  • RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

anonymous-proxy-ip-list-2023-07-09