216.245.213.77 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 216.245.213.77 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 30/100

Host and Network Information

• Tags: Nextray, bitcoin, center, compromiseiocs, cyber security, ioc, ioc searching, iocs, json file, malicious, mitre att, netwire, phishing, qbot, rats, talos, threat roundup

• View other sources: Spamhaus VirusTotal

• Contained within other IP sets: coinbl_hosts

• Country: United States
• Network: AS46475 limestone networks inc.
• Noticed: 1 times
• Protcols Attacked: SSH
• Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Malware Detected on Host

Count: 52 e581ea9a5620c2f511858380894cf1d035750171889205816b88cef8c5f6a029 2b043480f4b76080fa3db18c594b4488fadf49d431f5bae874f95c5f1e9f4ba7 6c3d87f6454404d077047843ff6dde61fc808d30542d32660577fbe256eeef2f c316feaf2e2531943dfb65964f6c58b5c9e043a2e190d36455f5cc6250d60b18 b23563f0f7b1eb833c751000abcd4c73a94ddff03e2375f5f01f47f96e98dc8f 99bb69925a632a88c778600198b459dea84c6c0a68ed04d42f98392639b997bc caa7e790033deff11deecc06d131444914f6c1ec0a65a39af912fc55cbe948d3 210827368062ef1190cb7cd45ff21671668a961003b3563455a91ac5c503d960 316705d648b4c0d366971ab18686261a055672104e155d6dfe38a22791eea827 71dbed5b308c34bea3a2f62fd31ad3c1fed03f66cfbc73d641aaf949c5faa846

Open Ports Detected

443 53 80 8080

Map

Whois Information

• NetRange: 216.245.192.0 - 216.245.223.255
• CIDR: 216.245.192.0/19
• NetName: LIMESTONE-NETWORKS
• NetHandle: NET-216-245-192-0-1
• Parent: NET216 (NET-216-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS46475
• Organization: Limestone Networks, Inc. (LIMES-2)
• RegDate: 2008-01-28
• Updated: 2022-03-08
• Comment: http://www.limestonenetworks.com/
• Ref: https://rdap.arin.net/registry/ip/216.245.192.0
• OrgName: Limestone Networks, Inc.
• OrgId: LIMES-2
• Address: 400 S. Akard Street
• Address: Suite 200
• City: Dallas
• StateProv: TX
• PostalCode: 75202
• Country: US
• RegDate: 2007-12-04
• Updated: 2017-01-28
• Comment: http://limestonenetworks.com/
• Ref: https://rdap.arin.net/registry/entity/LIMES-2
• OrgAbuseHandle: ABUSE1804-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-214-242-3600
• OrgAbuseEmail: abuse@limestonenetworks.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1804-ARIN
• OrgTechHandle: NOC2791-ARIN
• OrgTechName: Network Operations Center
• OrgTechPhone: +1-214-242-3600
• OrgTechEmail: noc@limestonenetworks.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC2791-ARIN
• RNOCHandle: NOC2791-ARIN
• RNOCName: Network Operations Center
• RNOCPhone: +1-214-242-3600
• RNOCEmail: noc@limestonenetworks.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC2791-ARIN
• RTechHandle: NOC2791-ARIN
• RTechName: Network Operations Center
• RTechPhone: +1-214-242-3600
• RTechEmail: noc@limestonenetworks.com
• RTechRef: https://rdap.arin.net/registry/entity/NOC2791-ARIN
• RAbuseHandle: ABUSE1804-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-214-242-3600
• RAbuseEmail: abuse@limestonenetworks.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1804-ARIN
• NetRange: 216.245.213.72 - 216.245.213.79
• CIDR: 216.245.213.72/29
• NetName: LSN-DLLSTX-1
• NetHandle: NET-216-245-213-72-1
• Parent: LIMESTONE-NETWORKS (NET-216-245-192-0-1)
• NetType: Reassigned
• OriginAS:
• Customer: Private Customer (C08729773)
• RegDate: 2022-07-06
• Updated: 2022-07-06
• Ref: https://rdap.arin.net/registry/ip/216.245.213.72
• CustName: Private Customer
• Address: Private Residence
• City: Wanchai
• StateProv: AG
• PostalCode: 00000
• Country: HK
• RegDate: 2022-07-06
• Updated: 2022-07-06
• Ref: https://rdap.arin.net/registry/entity/C08729773
• OrgAbuseHandle: ABUSE1804-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-214-242-3600
• OrgAbuseEmail: abuse@limestonenetworks.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1804-ARIN
• OrgTechHandle: NOC2791-ARIN
• OrgTechName: Network Operations Center
• OrgTechPhone: +1-214-242-3600
• OrgTechEmail: noc@limestonenetworks.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC2791-ARIN
• RNOCHandle: NOC2791-ARIN
• RNOCName: Network Operations Center
• RNOCPhone: +1-214-242-3600
• RNOCEmail: noc@limestonenetworks.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC2791-ARIN
• RTechHandle: NOC2791-ARIN
• RTechName: Network Operations Center
• RTechPhone: +1-214-242-3600
• RTechEmail: noc@limestonenetworks.com
• RTechRef: https://rdap.arin.net/registry/entity/NOC2791-ARIN
• RAbuseHandle: ABUSE1804-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-214-242-3600
• RAbuseEmail: abuse@limestonenetworks.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1804-ARIN