213.176.49.95 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 213.176.49.95 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 7/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: www.zhuanzhuanjym.xyz www.xingkongzy.com

Malware Detected on Host

Count: 2 5f20caee751eabb510e2b4b641115d6a9ad593a65662f062047e0e3876bd0fed 3b1b0696fd1ea36c2c8a08ab70a80b49524fb2704063e60d7dc14c1ec93f078f

Open Ports Detected

10027 10052 1028 1080 18012 18017 18029 18066 20000 20001 20010 20030 20040 20050 20053 20060 20070 20100 20107 20121 20184 20185 20202 20256 20325 20800 20880 20892 20900 21002 21082 21084 21232 21233 21238 21239 21240 21243 21247 21249 21251 21255 21257 21258 21259 21260 21261 21263 21264 21267 21268 21271 21273 21274 21279 21280 21283 21291 21294 21295 21296 21299 21300 21304 21306 21307 21309 21311 21313 21314 21315 21321 21328 21329 21379 21381 21515 22000 22206 22345 22380 22403 22556 22703 22705 23084 23184 23424 24082 24084 24510 25000 25003 25005 25006 25007 25010 25082 25084 25105 25782 25952 27015 27017 28015 28017 28818 29798 29799 29984 30011 30106 30112 30113 30123 30468 30501 30894 32101 32102 32202 32746 32800 35524 35559 443 50102 5503 55470 5595 6003 80 8002 8004 8080 8443 8663 8899 9006

Map

Whois Information

• inetnum: 213.176.32.0 - 213.176.63.255
• netname: hk-ipv4superhub-1
• country: IR
• admin-c: JH29703-RIPE
• tech-c: JH29703-RIPE
• abuse-c: ISAT6-RIPE
• status: ASSIGNED PA
• mnt-by: IROST-MNT
• mnt-domains: mnt-hk-ipv4superhub-1
• mnt-routes: mnt-hk-ipv4superhub-1
• created: 2024-09-12T03:16:23Z
• last-modified: 2024-09-12T03:16:23Z
• person: June Hu
• address: HK
• address: 852
• address: Hong Kong
• address: HONG KONG
• phone: +852 52949800
• nic-hdl: JH29703-RIPE
• mnt-by: IPMEETIP-MNT
• mnt-by: mnt-hk-ipv4superhub-1
• created: 2019-03-13T05:03:47Z
• last-modified: 2023-01-20T05:48:40Z
• route: 213.176.49.0/24
• origin: AS142578
• mnt-by: IROST-MNT
• created: 2021-10-30T08:38:48Z
• last-modified: 2021-10-30T08:38:48Z

Links to attack logs

****** anonymous-proxy-ip-list-2023-08-08 ****** ******