34.245.17.64 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 34.245.17.64 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: Ireland
• Network: AS16509 amazon.com inc
• Noticed: 1 times
• Protcols Attacked: Anonymous Proxy

Open Ports Detected

10000 10001 10134 10243 10250 10443 10554 11000 11112 11210 11211 11300 11371 12000 1337 13579 14147 14265 14344 16010 16030 16992 16993 17000 18081 19071 20000 3128 3268 3269 3299 3301 3310 3388 3389 3407 3409 3479 3541 3542 3551 3552 3554 3555 3557 3560 3562 3568 3569 3689 3749 3780 3790 3793 3838 3922 3950 4000 4001 4022 4040 4043 4063 4064 4118 4190 4242 4282 4321 4369 4443 4444 4500 4506 4523 4545 4567 4643 4664 4782 4786 4808 4840 4848 4899 4911 4949 5000 5001 5003 5006 5007 5009 5010 5122 5172 5201 5222 5269 5280 5357 5432 5435 5446 5560 5591 5600 5601 5605 5607 5672 5800 5801 5853 5858 5901 5906 5938 5984 5985 5986 6001 6002 6009 6080 6102 6161 6308 6379 6443 6464 6561 6565 6600 6633 6664 6666 6667 6668 6697 6748 6789 7001 7002 7004 7010 7014 7071 7171 7218 7415 7433 7434 7443 7445 7474 7535 7547 7634 7657 7676 7777 7779 7989 7998 80 8000 8001 8003 8004 8005 8007 8008 8009 8010 8015 8018 8019 8020 8021 8023 8025 8032 8033 8039 8041 8045 8050 8053 8057 8060 8066 8069 8081 8083 8084 8085 8086 8087 8089 8090 8095 8097 8098 8099 8100 8106 8108 8109 8112 8118 8123 8126 8140 8143 8180 8181 8182 8200 8222 8236 8239 8248 8249 8291 8333 8401 8403 8406 8407 8417 8420 8422 8429 8443 8500 8545 8553 8554 8575 8585 8590 8637 8649 8688 8728 8765 8782 8791 8809 8811 8813 8814 8815 8821 8824 8833 8834 8835 8840 8851 8852 8867 8870 8877 8878 8880 8887 8888 8889 9000 9001 9002 9009 9015 9020 9025 9026 9028 9042 9044 9049 9051 9080 9091 9092 9095 9097 9100 9101 9151 9160 9191 9200 9202 9206 9209 9216 9219 9220 9295 9306 9308 9311 9418 9443 9445 9530 9595 9600 9704 9743 9761 9800 9869 9943 9944 9950 9981 9993 9998 9999

CVEs Detected

CVE-2019-12519 CVE-2019-12520 CVE-2019-12521 CVE-2019-12522 CVE-2019-12523 CVE-2019-12524 CVE-2019-12525 CVE-2019-12526 CVE-2019-12527 CVE-2019-12528 CVE-2019-12529 CVE-2019-12854 CVE-2019-13345 CVE-2019-18676 CVE-2019-18677 CVE-2019-18678 CVE-2019-18679 CVE-2019-18860 CVE-2020-11945 CVE-2020-14058 CVE-2020-15049 CVE-2020-15810 CVE-2020-15811 CVE-2020-24606 CVE-2020-25097 CVE-2020-8449 CVE-2020-8450 CVE-2020-8517 CVE-2021-28116 CVE-2021-28651 CVE-2021-28652 CVE-2021-28662 CVE-2021-31806 CVE-2021-31807 CVE-2021-31808 CVE-2021-33620 CVE-2021-46784 CVE-2022-41318 CVE-2023-46724 CVE-2023-46728 CVE-2023-46846 CVE-2023-46847 CVE-2023-49285 CVE-2023-49286 CVE-2023-49288 CVE-2023-5824

Map

Whois Information

• NetRange: 34.192.0.0 - 34.255.255.255
• CIDR: 34.192.0.0/10
• NetName: AT-88-Z
• NetHandle: NET-34-192-0-0-1
• Parent: NET34 (NET-34-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Amazon Technologies Inc. (AT-88-Z)
• RegDate: 2016-09-12
• Updated: 2016-09-12
• Ref: https://rdap.arin.net/registry/ip/34.192.0.0
• OrgName: Amazon Technologies Inc.
• OrgId: AT-88-Z
• Address: 410 Terry Ave N.
• City: Seattle
• StateProv: WA
• PostalCode: 98109
• Country: US
• RegDate: 2011-12-08
• Updated: 2022-09-30
• Comment: All abuse reports MUST include:
• Comment: * src IP
• Comment: * dest IP (your IP)
• Comment: * dest port
• Comment: * Accurate date/timestamp and timezone of activity
• Comment: * Intensity/frequency (short log extracts)
• Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
• Ref: https://rdap.arin.net/registry/entity/AT-88-Z
• OrgRoutingHandle: ARMP-ARIN
• OrgRoutingName: AWS RPKI Management POC
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
• OrgNOCHandle: AANO1-ARIN
• OrgNOCName: Amazon AWS Network Operations
• OrgNOCPhone: +1-206-555-0000
• OrgNOCEmail: amzn-noc-contact@amazon.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
• OrgRoutingHandle: IPROU3-ARIN
• OrgRoutingName: IP Routing
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
• OrgTechHandle: ANO24-ARIN
• OrgTechName: Amazon EC2 Network Operations
• OrgTechPhone: +1-206-555-0000
• OrgTechEmail: amzn-noc-contact@amazon.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
• OrgAbuseHandle: AEA8-ARIN
• OrgAbuseName: Amazon EC2 Abuse
• OrgAbusePhone: +1-206-555-0000
• OrgAbuseEmail: abuse@amazonaws.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
• NetRange: 34.240.0.0 - 34.247.255.255
• CIDR: 34.240.0.0/13
• NetName: AMAZON-DUB
• NetHandle: NET-34-240-0-0-1
• Parent: AT-88-Z (NET-34-192-0-0-1)
• NetType: Reallocated
• OriginAS: AS16509
• Organization: Amazon Data Services Ireland Limited (ADSIL-1)
• RegDate: 2017-05-18
• Updated: 2017-05-18
• Ref: https://rdap.arin.net/registry/ip/34.240.0.0
• OrgName: Amazon Data Services Ireland Limited
• OrgId: ADSIL-1
• Address: Unit 4033, Citywest Avenue Citywest Business Park
• City: Dublin
• StateProv: D24
• PostalCode:
• Country: IE
• RegDate: 2014-07-18
• Updated: 2014-07-18
• Ref: https://rdap.arin.net/registry/entity/ADSIL-1
• OrgAbuseHandle: AEA8-ARIN
• OrgAbuseName: Amazon EC2 Abuse
• OrgAbusePhone: +1-206-555-0000
• OrgAbuseEmail: abuse@amazonaws.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
• OrgNOCHandle: AANO1-ARIN
• OrgNOCName: Amazon AWS Network Operations
• OrgNOCPhone: +1-206-555-0000
• OrgNOCEmail: amzn-noc-contact@amazon.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
• OrgTechHandle: ANO24-ARIN
• OrgTechName: Amazon EC2 Network Operations
• OrgTechPhone: +1-206-555-0000
• OrgTechEmail: amzn-noc-contact@amazon.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN

Links to attack logs

anonymous-proxy-ip-list-2023-12-24 anonymous-proxy-ip-list-2023-12-23