35.183.244.248 Threat Intelligence and Host Information

Share on:
Dec 14, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 35.183.244.248 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Country: Canada
  • Network: AS16509 amazon.com inc
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy
  • Passive DNS Results: admin.justpractice.ca

Open Ports Detected

10000 10134 102 1023 1025 10250 104 1050 10554 11210 113 11300 11371 119 122 129 13 1337 13579 137 1433 1434 15 1521 1599 16030 161 16992 1741 1801 18081 18245 1883 19 19000 1925 2000 20000 2008 20087 20256 2030 2048 20547 2067 2081 2082 2087 21379 2154 22 2221 2222 225 23 23023 2323 2332 23424 2375 2376 2379 2404 2455 2480 25105 25565 2558 2568 2628 2761 3000 30003 3001 3002 3055 3059 3067 3070 3085 3092 3093 3106 311 3111 3128 3260 32764 3283 3301 3306 33060 3333 3389 3391 3410 3483 35000 3551 3554 37215 37777 3784 389 4022 4040 4063 4064 41800 4242 427 4282 4369 44158 443 4433 444 4443 4444 445 44818 47808 4782 4786 47990 48899 4899 4911 49152 500 50000 50050 5006 50070 50100 51106 515 5201 5222 5269 53 53413 5353 5432 54321 5435 548 55000 554 55442 5555 55554 5560 5601 5602 5632 5672 5858 587 58749 5900 5901 59417 5986 6000 6002 6008 6010 6036 6080 623 6308 631 636 6379 6464 666 6664 6667 6697 69 6969 7071 7400 7415 7443 7548 7657 771 7777 7779 7989 80 800 8008 8009 8010 8054 8069 8080 8081 8085 8086 8090 8093 8098 81 8139 8140 8181 82 8282 8291 8333 8334 8407 8416 8420 8444 8500 8554 8575 8590 8649 8666 8728 873 8733 8767 8789 88 8800 8834 8837 8853 8872 8878 8888 8889 9002 9042 9051 9090 9091 9100 9106 9151 9160 9199 9204 9206 9211 9214 9218 9310 9311 9418 9443 9595 9761 987 993 9944 995 9981 9998 9999

CVEs Detected

CVE-2006-0225 CVE-2006-4924 CVE-2006-5051 CVE-2006-5052 CVE-2006-5794 CVE-2007-2243 CVE-2007-4752 CVE-2008-3259 CVE-2008-4109 CVE-2010-4478 CVE-2010-4755 CVE-2010-5107 CVE-2011-4327 CVE-2011-5000 CVE-2012-0814 CVE-2014-1692 CVE-2014-2532 CVE-2014-2653 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2016-1908 CVE-2016-20012 CVE-2017-15906 CVE-2017-16944 CVE-2018-15473 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-15778 CVE-2021-36368 CVE-2023-38408

Map

Whois Information

  • NetRange: 35.152.0.0 - 35.183.255.255
  • CIDR: 35.160.0.0/12, 35.176.0.0/13, 35.152.0.0/13
  • NetName: AT-88-Z
  • NetHandle: NET-35-152-0-0-1
  • Parent: NET35 (NET-35-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: Amazon Technologies Inc. (AT-88-Z)
  • RegDate: 2016-08-09
  • Updated: 2016-08-09
  • Ref: https://rdap.arin.net/registry/ip/35.152.0.0
  • OrgName: Amazon Technologies Inc.
  • OrgId: AT-88-Z
  • Address: 410 Terry Ave N.
  • City: Seattle
  • StateProv: WA
  • PostalCode: 98109
  • Country: US
  • RegDate: 2011-12-08
  • Updated: 2022-09-30
  • Comment: All abuse reports MUST include:
  • Comment: * src IP
  • Comment: * dest IP (your IP)
  • Comment: * dest port
  • Comment: * Accurate date/timestamp and timezone of activity
  • Comment: * Intensity/frequency (short log extracts)
  • Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
  • Ref: https://rdap.arin.net/registry/entity/AT-88-Z
  • OrgNOCHandle: AANO1-ARIN
  • OrgNOCName: Amazon AWS Network Operations
  • OrgNOCPhone: +1-206-555-0000
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
  • OrgRoutingHandle: IPROU3-ARIN
  • OrgRoutingName: IP Routing
  • OrgRoutingPhone: +1-206-555-0000
  • OrgRoutingEmail: [email protected]
  • OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
  • OrgAbuseHandle: AEA8-ARIN
  • OrgAbuseName: Amazon EC2 Abuse
  • OrgAbusePhone: +1-206-555-0000
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
  • OrgRoutingHandle: ARMP-ARIN
  • OrgRoutingName: AWS RPKI Management POC
  • OrgRoutingPhone: +1-206-555-0000
  • OrgRoutingEmail: [email protected]
  • OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
  • OrgTechHandle: ANO24-ARIN
  • OrgTechName: Amazon EC2 Network Operations
  • OrgTechPhone: +1-206-555-0000
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
  • NetRange: 35.182.0.0 - 35.183.255.255
  • CIDR: 35.182.0.0/15
  • NetName: AMAZON-YUL
  • NetHandle: NET-35-182-0-0-1
  • Parent: AT-88-Z (NET-35-152-0-0-1)
  • NetType: Reallocated
  • OriginAS: AS16509
  • Organization: Amazon Data Services Canada (ADSC-5)
  • RegDate: 2017-04-11
  • Updated: 2017-04-11
  • Ref: https://rdap.arin.net/registry/ip/35.182.0.0
  • OrgName: Amazon Data Services Canada
  • OrgId: ADSC-5
  • Address: 120 Bremner Boulevard
  • Address: 26th Floor
  • City: Toronto
  • StateProv: ON
  • PostalCode: M5J 0A8
  • Country: CA
  • RegDate: 2016-12-15
  • Updated: 2019-08-02
  • Ref: https://rdap.arin.net/registry/entity/ADSC-5
  • OrgAbuseHandle: AEA8-ARIN
  • OrgAbuseName: Amazon EC2 Abuse
  • OrgAbusePhone: +1-206-555-0000
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
  • OrgNOCHandle: AANO1-ARIN
  • OrgNOCName: Amazon AWS Network Operations
  • OrgNOCPhone: +1-206-555-0000
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
  • OrgTechHandle: ANO24-ARIN
  • OrgTechName: Amazon EC2 Network Operations
  • OrgTechPhone: +1-206-555-0000
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN

Links to attack logs

anonymous-proxy-ip-list-2023-12-12