213.209.143.140 Threat Intelligence and Host Information
General
This page contains threat intelligence information for the IPv4 address 213.209.143.140 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.
Potentially Malicious Host 🟡 42/100
Host and Network Information
-
Tags: cowrie, dionaea, heralding, honeytrap, LAMP, malicious, sftp, ssh
-
View other sources: Spamhaus VirusTotal
- Country: Germany
- Network:
- Noticed: 3 times
- Protocols Attacked: SSH
Malware Detected on Host
Count: 6 bf472df91bbb787c057989b19a0a15838dd1b699f223c8eaafddb4ad055a386c 1ef8b8a3e10191374d292b13ebd644ba333a712d5bbaff7d288dc414de552548 d3e71b6b9a9749d268c3a38b3a181f4409283e0b0577301acd113b344680d401 5dce8dae1739bbe575e2f93746f55af3d108490338e905a34aaa7fcd4f976a72 eae089968803a4e19e1cba5f08c6f1115ec7ea82f51f988cb8056625c2d56c54 49fbbbaf680abd98b09a8c18b7a3fd38ddb14ed9e1ac595b48d00f15164e2485
Open Ports Detected
CVEs Detected
CVE-2021-23017 CVE-2021-3618 CVE-2023-44487