64.120.89.238 Threat Intelligence and Host Information

Dec 07, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 64.120.89.238 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • JARM: 29d29d00029d29d00042d43d00041d598ac0c1012db967bb1ad0ff2491b3ae

  • View other sources: Spamhaus VirusTotal

  • Country: Hong Kong
  • Network: AS133752 leaseweb asia pacific pte. ltd.
  • Noticed: 1 times
  • Protcols Attacked: SSH

Malware Detected on Host

Count: 55 f6ef3e58813125018e32f84cc5d176716308c74e73472d0afef3e8d9ecd34060 c3b2f4b2b6e23610923038798c9842f32b5d20a8dc9e2aa7283c918873f1c5d5 55c817dcf5e3507daba28194416bf6c95564c6c24ba0e28cca131fa1f8eda62f 6001e2ef9e587b6b1c6ca27012851a905cbd31384d650c7464671fe2ec10de6e 5892bed15a188ccbe7f611cc894ceacbfd3731072636016d59922571e52ae5e1 e8986c64b4fca7327129077f10a631ff12b62bd9bc023e2c207e6a7b0ad87bb2 414d21e2419fdf9b737a3ac9bd647ec7b224a8c735caa3b9ecdfdd34d0e66a50 47fa0e61f7d4b90b15a6843f7e01f8f5a154905916359057ed162c8fbdd3002c 0bfda2e0489f06c663b7639dde1821202b4f0c15ca071c84fc1f4c169df54c18 87fd7981c22f573564fe0aa2f4887eb754699594263c010b32641743b5f202d9

Map

Whois Information

  • NetRange: 64.120.88.0 - 64.120.95.255
  • CIDR: 64.120.88.0/21
  • NetName: APNIC
  • NetHandle: NET-64-120-88-0-1
  • Parent: NET64 (NET-64-0-0-0-0)
  • NetType: Early Registrations, Transferred to APNIC
  • OriginAS:
  • Organization: Asia Pacific Network Information Centre (APNIC)
  • RegDate: 2019-09-17
  • Updated: 2019-09-17
  • Ref: https://rdap.arin.net/registry/ip/64.120.88.0
  • OrgName: Asia Pacific Network Information Centre
  • OrgId: APNIC
  • Address: PO Box 3646
  • City: South Brisbane
  • StateProv: QLD
  • PostalCode: 4101
  • Country: AU
  • RegDate:
  • Updated: 2012-01-24
  • Ref: https://rdap.arin.net/registry/entity/APNIC
  • OrgAbuseHandle: AWC12-ARIN
  • OrgAbuseName: APNIC Whois Contact
  • OrgAbusePhone: +61 7 3858 3188
  • OrgAbuseEmail: search-apnic-not-arin@apnic.net
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • OrgTechHandle: AWC12-ARIN
  • OrgTechName: APNIC Whois Contact
  • OrgTechPhone: +61 7 3858 3188
  • OrgTechEmail: search-apnic-not-arin@apnic.net
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • inetnum: 64.120.88.0 - 64.120.91.255
  • netname: LSW-HKG
  • descr: LeaseWeb Asia Pacific - Hong Kong
  • descr: Please send all abuse notifications to the following email address: abuse@sg.leaseweb.com. To ensure proper processing of your abuse notification, please visit the website www.leaseweb.com/abuse for notification requirements. All police and other government agency requests must be sent to subpoenas@sg.leaseweb.com.
  • country: HK
  • org: ORG-LHKL5-AP
  • admin-c: LA249-AP
  • tech-c: LA249-AP
  • abuse-c: AL1713-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-LSW-HK
  • mnt-routes: MAINT-LSW-HK
  • mnt-irt: IRT-LSW-HK
  • last-modified: 2021-07-13T13:05:40Z
  • irt: IRT-LSW-HK
  • address: Central Plaza 18, Wanchai RD Hong Kong 3806
  • e-mail: abuse@hk.leaseweb.com
  • abuse-mailbox: abuse@hk.leaseweb.com
  • admin-c: LHKL3-AP
  • tech-c: LHKL3-AP
  • mnt-by: MAINT-LSW-HK
  • last-modified: 2023-08-22T14:30:50Z
  • organisation: ORG-LHKL5-AP
  • org-name: LEASEWEB HONG KONG LIMITED
  • org-type: LIR
  • country: HK
  • address: 3806 Central Plaza 18 Harbour RD
  • phone: +31(0)20-3165168
  • e-mail: apnic@hk.leaseweb.com
  • mnt-ref: APNIC-HM
  • mnt-by: APNIC-HM
  • last-modified: 2023-09-05T02:18:26Z
  • role: ABUSE LSWHK
  • address: Central Plaza 18, Wanchai RD Hong Kong 3806
  • country: ZZ
  • phone: +000000000
  • e-mail: abuse@hk.leaseweb.com
  • admin-c: LHKL3-AP
  • tech-c: LHKL3-AP
  • nic-hdl: AL1713-AP
  • abuse-mailbox: abuse@hk.leaseweb.com
  • mnt-by: APNIC-ABUSE
  • last-modified: 2023-08-22T14:31:31Z
  • person: LSW Apnic
  • address: 18B Keong Saik Road, Singapore 089125
  • country: SG
  • phone: +6531587350
  • e-mail: apnic@sg.leaseweb.com
  • nic-hdl: LA249-AP
  • mnt-by: MAINT-LSW-SG
  • last-modified: 2016-06-06T08:59:04Z
  • route: 64.120.88.0/23
  • origin: AS133752
  • descr: LEASEWEB HONG KONG LIMITED
  • mnt-by: MAINT-LSW-HK
  • last-modified: 2022-09-12T12:46:49Z

Links to attack logs

****** ****** ******

Share on: