3.126.245.168 Threat Intelligence and Host Information

Share on:

Jun 25, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 3.126.245.168 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

View other sources: Spamhaus VirusTotal
Country: Germany
Network: AS16509 amazon.com inc
Noticed: 1 times
Protcols Attacked: Anonymous Proxy

Open Ports Detected

10000 10134 10554 11112 11210 11211 11300 12000 1337 14147 16992 18081 19000 20000 3128 3270 3299 3301 3306 3352 3388 3389 3403 3407 3443 3521 3541 3549 3551 3555 3568 3569 3689 3749 3780 3950 3952 4000 4001 4022 4040 4043 4064 4117 4242 4282 4321 4369 4430 4433 4500 4567 4734 4786 4808 4848 4949 4999 5000 5002 5004 5006 5009 5010 5025 5070 5150 5201 5222 5269 5280 5357 5431 5446 5560 5568 5596 5599 5602 5607 5608 5800 5801 5858 5901 5985 6002 6005 6036 6080 6102 6262 6264 6379 6503 6511 6543 6560 6565 6590 6605 6633 6664 6666 6667 6789 6887 7001 7070 7071 7080 7218 7415 7443 7474 7547 7548 7634 7676 7700 7777 7778 80 8000 8008 8010 8014 8015 8020 8023 8028 8032 8033 8034 8041 8042 8047 8049 8052 8054 8055 8058 8080 8083 8084 8086 8087 8090 8091 8096 8099 8107 8111 8112 8159 8200 8237 8241 8248 8333 8334 8383 8413 8423 8424 8425 8426 8428 8442 8443 8447 8554 8575 8590 8637 8649 8728 8784 8787 8806 8808 8816 8821 8825 8837 8845 8851 8855 8861 8868 8874 8875 8876 8935 8989 8990 8991 9000 9003 9004 9011 9012 9014 9033 9035 9040 9042 9047 9082 9088 9090 9091 9092 9097 9100 9101 9102 9109 9191 9205 9209 9214 9303 9305 9309 9310 9389 9418 9527 9530 9600 9761 9800 9943 9981 9992 9994 9997 9998 9999

CVEs Detected

Map

Whois Information

NetRange: 3.0.0.0 - 3.127.255.255
CIDR: 3.0.0.0/9
NetName: AT-88-Z
NetHandle: NET-3-0-0-0-1
Parent: NET3 (NET-3-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Amazon Technologies Inc. (AT-88-Z)
RegDate: 2017-12-20
Updated: 2022-05-18
Ref: https://rdap.arin.net/registry/ip/3.0.0.0
OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2022-09-30
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/AT-88-Z
OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName: IP Routing
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: [email protected]
OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: [email protected]
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: [email protected]
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgRoutingHandle: ARMP-ARIN
OrgRoutingName: AWS RPKI Management POC
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: [email protected]
OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
NetRange: 3.124.0.0 - 3.127.255.255
CIDR: 3.124.0.0/14
NetName: AMAZO-ZFRA
NetHandle: NET-3-124-0-0-1
Parent: AT-88-Z (NET-3-0-0-0-1)
NetType: Reallocated
OriginAS: AS16509
Organization: A100 ROW GmbH (RG-123)
RegDate: 2018-12-13
Updated: 2018-12-13
Ref: https://rdap.arin.net/registry/ip/3.124.0.0
OrgName: A100 ROW GmbH
OrgId: RG-123
Address: Marcel-Breuer-Strasse 10
City: Munchen
StateProv:
PostalCode: 80807
Country: DE
RegDate: 2014-11-07
Updated: 2014-11-07
Ref: https://rdap.arin.net/registry/entity/RG-123
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: [email protected]
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: [email protected]
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN

Links to attack logs

anonymous-proxy-ip-list-2023-06-22