172.67.70.76 Threat Intelligence and Host Information

Aug 22, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 172.67.70.76 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 37/100

Host and Network Information

Tags: cyber security, ioc, malicious, Nextray, phishing
View other sources: Spamhaus VirusTotal
Contained within other IP sets: coinbl_hosts

Country: United States
Network:
Noticed: 30 times
Protocols Attacked: Anonymous Proxy
Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
Passive DNS Results: myhotcams.net platform.monetixads.com www.fernandeo.com admin-api.fantasy-playground.betr.app ml.presto.truefoundry.cloud 1kai.golf search.epilepsy.com stage-oddsjam.betr.app www.elenilson.com rc-arcade-api.betr.app ext-skills-api.betr.app tshc.jobs rtb-eu-v4.monetixads.com rtb-apac-v4.monetixads.com www.forhpestore.com rc-feedprovider.betr.app www.alvinstore.com integration-admin.betr.app www.akazashop.com rc-uuidv3.betr.app conflictdynamics.org help.betr.app communities.epilepsy.com admin.fantasy.betr.app www.blazersy.com www.simplynovas.com www.eleticent.com backoffice-storybook.betr.app thepoket.com www.heliusstore.com www.moodsint.com ams.maranatha.edu mutuelle-ccmo.kanonik.fr iziflow.mutuelle-ccmo.kanonik.fr mutuelle-ccmo.ezflow.kanonik.fr aaagroup.com www.aaagroup.com careers.aaagroup.com www.careers.aaagroup.com help.think.tattoo creahum.maranatha.edu api.bonus.marketing-playground.betr.app www.dreamsproun.com www.my.epilepsy.com www.olvorastore.com www.glintveil.com www.artfullint.com api.monetixads.com broadcast-api.uneo.kanonik.fr library.maranatha.edu www.vibentiz.com zenithherb.com www.nlvorashop.com www.framezan.com www.fruvinostore.com www.ventonoz.com www.quikbaste.com www.radenty.com www.trinkloo.com www.plentrik.com vs-haendler.de careco.fr k8s-us-east.monetixads.com www.adreame.shop staging.vernoncourtreporters.com stage4-mock-service.betr.app config.betr.app stage3-backoffice-api.betr.app www.shopmatice.com alpinefunded.com stage1-backoffice.betr.app www.sinergynt.com jdfhotelmall.com l.betr.app api.betr.app www.dorjstore.com www.exweivstore.com fast8k-player.sh-reb.com www.zyrofystore.com noktacom.rtb.monetixads.com api.yoshiparts.com www.conflictdynamics.org cloudservice.systems xxtphtzy.com www.onlinemartstores.com www.zaynmakstore.com www.zipdroshop.com www.lifedailystore.com ecilia.kanonik.fr stage4-backoffice.betr.app www.consanoshop.com www.dhotdealshop.com iziflow.ociane.kanonik.fr ociane.kanonik.fr www.drovustore.com stage4-api-va.betr.app stage1-api-va.betr.app api.peer-to-peer.fantasy-playground.betr.app hydralauncher.gg karmatms.com propale.mgc.kanonik.fr broadcast-api.abeille.kanonik.fr short.nix-united.com pantheraimplant.com loki.edenex.com www.websnacks.com www.smurfitt.com copilot.kanonik.fr internal.kanonik.fr www.fashionluxystore.com rtb-uswest-v4.monetixads.com www.shinyrockpolished.com shinyrockpolished.com www.bellingstore.com art.maranatha.edu www.flashssalemall.com www.luxexshop.com iro.ke www.callanstore.com www.hyoeshop.com propale.lourmel.kanonik.fr broadcast-api.lourmel.kanonik.fr www.allseasontrends.com www.dhotsale.com dev.explorer.zano.org v1.trade.zano.org translate.zano.org cannaffiliate.com checkout.hydralauncher.gg www.shipzostore.com dev.auction.zano.org www.opuffstore.com members.dar.org m.dar.org mobile.dar.org www.members.dar.org eczadeposu–tr.com diary.epilepsy.com tuticketnet.com www.quantitygoods.com portail-ccn.lmg.kanonik.fr portail-ccn.allianz.kanonik.fr portail-ccn.demo.kanonik.fr portail-ccn.entoria.kanonik.fr www.outshopezy.com www.mydaytosale.com staging.nix-united.com iziflow.mgc.kanonik.fr mgc.kanonik.fr iziflow.lourmel.kanonik.fr lourmel.kanonik.fr www.selleren.com fetch.element1hq.com polyhealmicro.com www.starody.com www.api.er-vangaurd.co.za.er-vanguard.co.za yptkm.maranatha.edu er-vanguard.co.za ads.vertikal.net www.stormsock.com dev-news.maranatha.edu eurosurplus.com www.winterleafs.com 2617970985.rtb.monetixads.com www.maranatha.edu api.zano.org sv11.turningpoint-v3.com visit-api-sandbox.gvt.us www.lunashinex.com care-stg.nix-united.com www.getyoursdeal.com www.matestoresale.com connect.dropshipx.io v2.pesistulokset.fi www.hotdeallus.com api.trastra.com www.alfheimx.com www.munsale.com rabbitmq.edenex.com pgadmin.edenex.com www.regilee.com give.epilepsy.com r2.hydralauncher.gg galvanizeclimate.com services.nix-united.com aprende.epilepsy.com www.polyhealmicro.com backoffice-api.kanonik.fr portail-ccn-api.henner.kanonik.fr www.vegahall.com broadcast.uneo.kanonik.fr propale.uneo.kanonik.fr netaddiction-pub.rtb.monetixads.com frontstory.rtb.monetixads.com www.arishopezy.com www.squickcart.com uiux.nix-united.com portail-ccn.lmp.kanonik.fr www.4moresale.com 6856351990.rtb.monetixads.com truefoundry.cloud iziflow.abeille.kanonik.fr abeille.kanonik.fr www.virusalle.com agents2go.com.au ssp-service.monetixads.com paraquatmdlportal.com my.maranatha.edu www.trendhottoday.com dev.sc.let.maranatha.edu mgen-solutions.kanonik.fr lino.kanonik.fr ad.service.monetixads.com ustock.vip akademik.maranatha.edu xoilacz78.live rtb.monetixads.com investing.rtb.monetixads.com www.topsmartchoice.com static.cdn.monetixads.com unleash.edenex.com pesistulokset.fi monetixads.com hw-id3.pro dsdpi.maranatha.edu dsdi.maranatha.edu www.cannaffiliate.com www.quickwaveshop.com finmss.edenex.com epilepsy.com www2.epilepsy.com www.shop.epilepsy.com short.epilepsy.com streaming.monetixads.com auth.kanonik.fr iccdsas.maranatha.edu dsp-service.monetixads.com nix-united.com khy4281.com prebid.monetixads.com netaddiction.rtb.monetixads.com tracking.cannaffiliate.com vertikal.net www.epilepsy.com get-a-quote.grolifepropertyservices.com.au h1.maranatha.edu blog.zano.org devapps.pkf-francisclark.com staging.alpamare.co.uk testweb.tdlc.cl blog.dar.org www.dar.org alpamare.co.uk foadashboard.com wss.edenex.com broadcast.mme.kanonik.fr broadcast.alan.kanonik.fr fe-news.com medkom3.maranatha.edu edenex.com learn.epilepsy.com portail-ccn.henner.kanonik.fr advocacy.epilepsy.com www.professional.epilepsy.com broadcast-api.demo.kanonik.fr links.zano.org ci.vertikal.net penonaudio.com propale.mgen-solutions.kanonik.fr portail-ccn-api.entoria.kanonik.fr admin.cariocapg.com www.flamingriverheavyduty.com lmg.kanonik.fr iziflow.lmg.kanonik.fr iziflow.mia.kanonik.fr mia.kanonik.fr rdevpro.store iziflow.kanonik.fr lino.iziflow.kanonik.fr bigb.kanonik.fr demo.kanonik.fr iziflow.demo.kanonik.fr iguysconsulting.com lescleias-pro.net portail-ccn.kanonik.fr static.kanonik.fr api.kanonik.fr diagnostic-ccn.kanonik.fr gofamilychurch.org www.gofamilychurch.org borainvestir.fulldigitalpartner.com procoinnews.com cariocapg.com partnerhub.hotelengine.com bagelbitetakeaway.com zano.org flamingriverheavyduty.com grolifepropertyservices.com.au panel.terra-flor.com lofficieluk.com dar.org iziflow.harmonie.kanonik.fr harmonie.kanonik.fr invest.trastra.com appapi-rj.com finms.edenex.com broadcast-api.henner.kanonik.fr propale.ociane.kanonik.fr broadcast-api.lmp.kanonik.fr broadcast.ociane.kanonik.fr broadcast.lmp.kanonik.fr propale.cnm.kanonik.fr broadcast-api.cnm.kanonik.fr backoffice.kanonik.fr mx1alert.click build.zano.org turningpoint-v3.com milano123.com hd.maranatha.edu wmp.edenex.com docs.zano.org botscanslot.com physical-exchanger.edenex.com cp.edenex.com traefik.edenex.com bet4wins.net visit.gvt.us apt3kcontainer.com salemmedia.com mumbaitiffinz.co.uk cdn.cleanhub.io sds-stg.element1hq.com svt-stg.element1hq.com regs-stg.element1hq.com tracking-stg.element1hq.com one-stg.element1hq.com landing.b2cpartners.com svt.element1hq.com amazon-wgk.element1hq.com www.bellaitalia.co.uk pcn-stg.element1hq.com one.element1hq.com core-stg.element1hq.com catalog.maranatha.edu belleprint.com med.maranatha.edu myjewelsandmore.nl turkishanchor.co.uk www.gwinnettgifted.org regs-demo.element1hq.com regs.element1hq.com element2-stg.element1hq.com docs.ranked.ai core-amazon.element1hq.com c.tile.geomaps.com.br a.tile.geomaps.com.br b.tile.geomaps.com.br tile.geomaps.com.br cases.imgsistemas.com.br efulfill.avoskinbeauty.com materiais.imgsistemas.com.br msd.element1hq.com amazon.element1hq.com core-amazon-stg.element1hq.com bellaitalia.co.uk sds.element1hq.com sds-demo.element1hq.com amazon-stg.element1hq.com msd-stg.element1hq.com fax.applion.se merck.element1hq.com hub.craigt.com lives.kora–star.com tracking-demo.element1hq.com tracking.element1hq.com www.gongorarquitectos.es product-demo.element1hq.com product.element1hq.com www.connectorexperts.com stig.applion.se www.hicklvesting.com s.hentaizz.net www.dailymusicroll.com www.cnsp.website www.thewatermarkcollection.com.cdn.cloudflare.net api.estoxy.com www.online.kora--star.com cms.grupobrik.com grupobrik.com www.grupobrik.com baa.maranatha.edu www.hempmont.pl vessys.co.uk www.asis-spain.org cre8tiventerprise.io hempmont.pl gwinnettgifted.org hentaizz.net www.hentaizz.net www.printsflip.com app.cleanhub.io dev.keyma.sh kora–star.com stage.houseofheat.co whm.houseofheat.co www.dorelan.ua blogs.vineriacarvalho.de www.011dnf.com live.kora–star.com dialogia.maranatha.edu journal.maranatha.edu www.escortdirectory.in keyma.sh www.jigsaw11-16.com www.trastra.com www.55ys.cc delhi.escortdirectory.in escortdirectory.in eej.eng.maranatha.edu gritbraveapplive.com enewsdailypost.com www.moto-shop.uk gallery2.maranatha.edu hicklvesting.com premiera19stores.co.uk devjoin.maranatha.edu enjoy-deco.nl sandboxapi.neutronpay.com client.neutronpay.com neutronpay.com www.neutronpay.com www.outdooresprit.com outdooresprit.com www.okonfit.com list-demo.element1hq.com www.luebberthomeconcept.de fast2.colorifilament.com wesmhj.com www.wesmhj.com bpk.maranatha.edu g6.8899hhd.com g3.8899hhd.com g2.8899hhd.com g1.8899hhd.com w9.8899hhd.com g9.8899hhd.com g8.8899hhd.com g7.8899hhd.com g5.8899hhd.com w7.8899hhd.com w5.8899hhd.com w8.8899hhd.com w6.8899hhd.com w3.8899hhd.com w1.8899hhd.com w2.8899hhd.com 8899hhd.com www.8899hhd.com dsti.maranatha.edu www.faturataucard.com.br www.achotelairportparking.com favoritechickenandribsbletchley.com staging-api.hellobudler.com staging.hellobudler.com dev.hellobudler.com dev-api.hellobudler.com api.hellobudler.com www.hellobudler.com blog.avoskinbeauty.com myyab.com staging5.huttonhotel.com newcbt.maranatha.edu managejoin.maranatha.edu www.beastperformance-shop.de go.ventumracing.com www.el-da.hr staging3.thewatermarkcollection.com api.awakenings.com www.awakenings.com wellzone.in www.thewatermarkcollection.com join.maranatha.edu www.italyperfect.com www.cazaventuras.com www.marisana.org sandbox.element1hq.com dorelan.ua yourcdnjs.com news2.maranatha.edu element1hq.com hetbakwinkeltje.nl body.craigt.com pi.craigt.com www.craigt.com ltcsummit.craigt.com bb.craigt.com bitangel.craigt.com x.craigt.com ispyck.craigt.com www.lekara.uk

Malware Detected on Host

Count: 2 f5732568da1fbd03a0538f550ed9bc0b1ca30a42f4c483e077f6e039c28640e0 017981ab27db80e1b92408da39aab00543304a3259327790ab34ec530b2d1b8c

Open Ports Detected

2053 2082 2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

NetRange: 172.64.0.0 - 172.71.255.255
CIDR: 172.64.0.0/13
NetName: CLOUDFLARENET
NetHandle: NET-172-64-0-0-1
Parent: NET172 (NET-172-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Cloudflare, Inc. (CLOUD14)
RegDate: 2015-02-25
Updated: 2024-09-04
Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
Ref: https://rdap.arin.net/registry/ip/172.64.0.0
OrgName: Cloudflare, Inc.
OrgId: CLOUD14
Address: 101 Townsend Street
City: San Francisco
StateProv: CA
PostalCode: 94107
Country: US
RegDate: 2010-07-09
Updated: 2024-11-25
Ref: https://rdap.arin.net/registry/entity/CLOUD14
OrgNOCHandle: CLOUD146-ARIN
OrgNOCName: Cloudflare-NOC
OrgNOCPhone: +1-650-319-8930
OrgNOCEmail: noc@cloudflare.com
OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
OrgRoutingHandle: CLOUD146-ARIN
OrgRoutingName: Cloudflare-NOC
OrgRoutingPhone: +1-650-319-8930
OrgRoutingEmail: noc@cloudflare.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
OrgTechHandle: ADMIN2521-ARIN
OrgTechName: Admin
OrgTechPhone: +1-650-319-8930
OrgTechEmail: rir@cloudflare.com
OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
OrgAbuseHandle: ABUSE2916-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-650-319-8930
OrgAbuseEmail: abuse@cloudflare.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
RTechHandle: ADMIN2521-ARIN
RTechName: Admin
RTechPhone: +1-650-319-8930
RTechEmail: rir@cloudflare.com
RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
RAbuseHandle: ABUSE2916-ARIN
RAbuseName: Abuse
RAbusePhone: +1-650-319-8930
RAbuseEmail: abuse@cloudflare.com
RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
RNOCHandle: NOC11962-ARIN
RNOCName: NOC
RNOCPhone: +1-650-319-8930
RNOCEmail: noc@cloudflare.com
RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN

Links to attack logs

Share on: