5.252.29.234 Threat Intelligence and Host Information

Share on:
Aug 03, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 5.252.29.234 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: sslproxies_30d

  • Country: Russia
  • Network: AS59508 krasnoyarsk network ltd.
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy

Malware Detected on Host

Count: 1 ebdb6abebfd7ced23b6e5a9ce1465032d5a590189d1449df13705ed9c5232241

Open Ports Detected

8000 8003 8004 8005 8006 8008 8009 8010 8012 8013 8014 8016 8017 8018 8020 8021 8022 8025 8026 8027 8028 8030 8031 8032 8033 8034 8036 8039 8040 8041 8044 8045 8046 8048 8049 8050 8051 8052 8055 8056 8057 8060 8064 8066 8069 8071 8081 8082 8083 8084 8088 8089 8090 8091 8092 8093 8094 8095 8097 8098 8099 8100 8102 8103 8104 8105 8106 8107 8109 8110 8118 8123 8126 8139 8140 8143 8159 8181 8184 8200 8236 8237 8241 8243 8248 8249 8251 8252 8282 8333 8334 8383 8401 8407 8409 8410 8412 8413 8414 8416 8417 8418 8419 8422 8423 8425 8426 8429 8430 8431 8433 8442 8443 8444 8445 8446 8448 8500 8513 8545 8554 8585 8586 8602 8621 8622 8623 8649 8663 8666 8686 8700 8728 8765 8766 8767 8782 8784 8789 8790 8791 8800 8801 8802 8803 8804 8805 8806 8807 8809 8810 8811 8812 8813 8814 8815 8816 8817 8818 8819 8826 8827 8828 8830 8831 8832 8835 8837 8839 8841 8842 8843 8844 8845 8847 8849 8850 8851 8852 8853 8855 8856 8857 8858 8859 8860 8862 8865 8867 8869 8870 8874 8875 8876 8877 8880 8881 8887 8888 8889 8891 8899 8935 8969 8988 8989 8991 8993

Map

Whois Information

  • inetnum: 5.252.29.0 - 5.252.29.255
  • netname: ORG-MIS58-RIPE
  • country: RU
  • admin-c: MIS257-RIPE
  • tech-c: MIS257-RIPE
  • status: ASSIGNED PA
  • mnt-by: QWARTA-MNT
  • created: 2023-03-21T15:33:44Z
  • last-modified: 2023-08-03T23:35:43Z
  • role: Moshonkin Ilia Sergeevich
  • address: ul. L. Tolstogo, d. 5, kv. 26
  • address: 625001 Tyumen
  • address: Russia
  • abuse-mailbox: [email protected]
  • phone: +7 922 2682888
  • nic-hdl: MIS257-RIPE
  • mnt-by: IP-RIPE
  • created: 2023-07-28T17:05:30Z
  • last-modified: 2023-07-28T17:05:30Z
  • route: 5.252.29.0/24
  • origin: AS47913
  • mnt-by: QWARTA-MNT
  • created: 2023-08-03T23:41:11Z
  • last-modified: 2023-08-03T23:41:11Z

Links to attack logs

anonymous-proxy-ip-list-2023-07-28 anonymous-proxy-ip-list-2023-06-28 anonymous-proxy-ip-list-2023-07-15 anonymous-proxy-ip-list-2023-05-25 anonymous-proxy-ip-list-2023-07-18 anonymous-proxy-ip-list-2023-05-19 anonymous-proxy-ip-list-2023-05-27 anonymous-proxy-ip-list-2023-07-10 anonymous-proxy-ip-list-2023-05-26 anonymous-proxy-ip-list-2023-05-29 anonymous-proxy-ip-list-2023-05-20 anonymous-proxy-ip-list-2023-05-18 anonymous-proxy-ip-list-2023-06-30 anonymous-proxy-ip-list-2023-08-02 anonymous-proxy-ip-list-2023-05-24 anonymous-proxy-ip-list-2023-07-31 anonymous-proxy-ip-list-2023-07-09 anonymous-proxy-ip-list-2023-06-22 anonymous-proxy-ip-list-2023-07-03 anonymous-proxy-ip-list-2023-07-13 anonymous-proxy-ip-list-2023-05-23 anonymous-proxy-ip-list-2023-07-14