45.249.95.105 Threat Intelligence and Host Information

Share on:
Jun 14, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 45.249.95.105 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 30/100

Host and Network Information

  • Tags: Malicious IP, Nextray, blacklist, botnet, bruteforce, cyber security, digital ocean, ioc, malicious, mirai, phishing, scan, tcp, telnet

  • View other sources: Spamhaus VirusTotal

  • Country: Hong Kong
  • Network: AS142403 yisu cloud ltd
  • Noticed: 1 times
  • Protcols Attacked: telnet
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: zk617.com m7-m7.com fgcp45.com lc1669.com 1976b.com kmxlq.com utt6g.com v213668.com jsdt888.com abdtvr.com aero68.com 1001tb.com k6165.com whxys.com 464dd.com yj176.com 9s7u.com 8ns8.com a2108.com 6bqz.com 8mmss.com 511ii.com 364434.com yue988.com sw700.com kj13854.com jb9905.com jx12000.com xjylpj.com zjh189.com 3gg4h.com myhqmz.com 543bbb.com wh9876.com mz992.com zfjzjx.com 493420.com xxd123.com 9499pp.com cewash.com 97543468.com 674219.com ymllt.com iskkd.com 9t1r.com 4832x.com bzd999.com oyjzcn.com smpqz.com juedi456.com bj545.com 2590234.com fc723.com lnycm.com sczdpm.com hnab110.com cqykjbs.com wty86.com 2600120.com 9u1p.com j5299.com 46iii.com lcwgx.com hbrckj.com wbcp18.com 11zxm.com xxvq6.com n2n1.com cyapp.ky88qp.com jxfh56.com k2535.com hcthz.com zlzpsc.com 9t7s.com 408817.com mirantia.com ip086.com 0996game.com 4567ya.com aptlns.com q99888.com xrlln.com 526hh.com dqqcn.com 500dk.com 500dt.com 500dm.com 500ku.com 500ko.com 500cv.com 500ga.com xixee.com df556.com df705.com df466.com df817.com df957.com cpxlone.dfplatform.xyz hbsh88.com 3yy3yy.com 7299978.com 7299938.com 7299958.com 7299918.com 7299928.com 44244288.com dong.wg455.com tb.zdhhs.cn www.zdhhs.cn zdhhs.cn

Malware Detected on Host

Count: 11 71b120d70144abe157e7f2e22225ea976b61417c17de72d924d876fe272f9064 96cb2cf5a29a55e1c8badeda80887c64d9b0a2aaa929ded14eae79b3949d1b3d f64f3cdf6c87456dfa68ef05ddd4a1645131ebf370eb19b2f3714918aaa7e7a8 c10be9f98a99a151d5048fbf291373e0489e1120514d6e0ad250a4a50678f51b 8e504706793348f79d9dab1b1f74b5e80f00089a413f15df6bace9745ce1e2a9 fc843a5c656305cabd000b990e558c060674907652bc925a540fcf185eda5c37 ce4798af1528786bcf15847e299ef0c64c144a962f144d67bf9022df00bf6be0 16114e875f3ba2402a89bcd420f77ac19e30c959f6ec3e67343993f1b7ca5ab5 2110c03ba7821e6a07a38392b18bfeda6c636bf693d5de1bd630f9bb6acfc786 ef014272927e2cba96a4449dfa30b113fbefd09e3deb5eff7a6456cea210386c

Map

Whois Information

  • inetnum: 45.249.92.0 - 45.249.95.255
  • netname: HKKFGL-HK
  • descr: HK Kwaifong Group Limited
  • country: HK
  • org: ORG-HKIS1-AP
  • admin-c: HKGL1-AP
  • tech-c: HKGL1-AP
  • abuse-c: AH819-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-HKKF-HK
  • mnt-routes: MAINT-HKKF-HK
  • mnt-irt: IRT-HKKF-HK
  • last-modified: 2021-11-03T06:36:16Z
  • irt: IRT-HKKF-HK
  • address: Kwai Chung, NT., Hong Kong
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: HKGL1-AP
  • tech-c: HKGL1-AP
  • mnt-by: MAINT-HKKF-HK
  • last-modified: 2023-02-06T01:43:30Z
  • organisation: ORG-HKIS1-AP
  • org-name: HK Kwaifong Group Limited
  • country: HK
  • address: Room 801 Join-In Hang Sing Centre
  • address: 2-16 kai Fung Crescent
  • address: Kwai Chung, NT
  • phone: +85231885386
  • e-mail: [email protected]
  • mnt-ref: APNIC-HM
  • mnt-by: APNIC-HM
  • last-modified: 2019-04-03T12:56:19Z
  • role: ABUSE HKKFHK
  • address: Kwai Chung, NT., Hong Kong
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: HKGL1-AP
  • tech-c: HKGL1-AP
  • nic-hdl: AH819-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2023-02-06T01:43:37Z
  • role: HK Kwaifong Group Limited - network administrator
  • address: Kai Chung,Kow Loon, HONGKONG
  • country: HK
  • phone: +85231885386
  • e-mail: [email protected]
  • admin-c: HKIS1-AP
  • tech-c: HKIS1-AP
  • nic-hdl: HKGL1-AP
  • mnt-by: MAINT-HKKF-HK
  • fax-no: +85231885389
  • last-modified: 2020-11-13T08:09:21Z

Links to attack logs

dotoronto-telnet-bruteforce-ip-list-2021-12-20