65.49.82.7 Threat Intelligence and Host Information

Share on:

Oct 21, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 65.49.82.7 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

View other sources: Spamhaus VirusTotal
Country: United States
Network: AS6939 hurricane electric llc
Noticed: 1 times
Protcols Attacked: Anonymous Proxy
Passive DNS Results: www.ajx.com snapler.com stalemates.com magicvibe.com jailbreaker.com wickedseotraffic.com koffing.com bessie.com greenpepper.com styledaily.com yakkityyak.com computerscience101.com redrocket.com westnile.com duffer.com breakbeat.com factme.com javascriptbible.com myoscar.com gardenique.com homedecornews.com rarecuts.com ajx.com domainnamestuff.com interestme.com clutchputt.com swddb.com ruylopez.com shuckle.com gadget.blog igiftcards.com moneymaze.com stylopedia.com gargouille.com practicegear.com holisticinstitute.com brackets.com makery.com chocolatier.com rushlimbaugh.org jopo.com gadget.com kidscantravel.com aboutme.com

Malware Detected on Host

Count: 12 65c81b5d2910d6de737a0e78b82a65f1fa47e3f756b7d7b062c99bd176f17610 c9c10562a2f70852e815c7a531fd731d3b0588779d4aa723991a1922e1409ad0 902d0b46ac8be721199db13d12e9aed6570030fc766b6bfa04d475415e10a88e c34d453c70f39301b443842e6cccdc7606895463b508c522664001a20eb27e94 cc8c2699f41c6ab59cdec178c8ee2f882e55223a431c387d5114b736bcb7ffea 1cb23b7a79a675c6fe6da2c82fb80de2614c59be353eedb58a7be0ebee8f5f22 4664561786f7f4045ec107529c6455c166facb67d3f8986b6c9009499760c33b 72dbbbccfb93daa8865e62d1141cc3c5d6785ed8706135b270f36472aeb4c3af 8fb86835d2f89c6981d6848a67a288776e129f856b3d011f94f8c1c3cd9626bc 219b46199df89f2f5912d6214b195e477af94d663a214a5c46ab929308d18210

Open Ports Detected

20000 21 443 80

CVEs Detected

CVE-2006-20001 CVE-2015-9251 CVE-2019-11358 CVE-2019-17567 CVE-2020-11022 CVE-2020-11023 CVE-2020-11984 CVE-2020-11993 CVE-2020-13938 CVE-2020-13950 CVE-2020-1927 CVE-2020-1934 CVE-2020-35452 CVE-2020-9490 CVE-2021-26690 CVE-2021-26691 CVE-2021-33193 CVE-2021-34798 CVE-2021-36160 CVE-2021-39275 CVE-2021-40438 CVE-2021-44224 CVE-2021-44790 CVE-2022-22719 CVE-2022-22720 CVE-2022-22721 CVE-2022-23943 CVE-2022-26377 CVE-2022-28330 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30556 CVE-2022-31813 CVE-2022-36760 CVE-2022-37436 CVE-2023-25690 CVE-2023-27522

Map

Whois Information

NetRange: 65.49.0.0 - 65.49.127.255
CIDR: 65.49.0.0/17
NetName: HURRICANE-9
NetHandle: NET-65-49-0-0-1
Parent: NET65 (NET-65-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS6939
Organization: Hurricane Electric LLC (HURC)
RegDate: 2007-10-04
Updated: 2012-02-24
Ref: https://rdap.arin.net/registry/ip/65.49.0.0
OrgName: Hurricane Electric LLC
OrgId: HURC
Address: 760 Mission Court
City: Fremont
StateProv: CA
PostalCode: 94539
Country: US
RegDate:
Updated: 2018-02-09
Ref: https://rdap.arin.net/registry/entity/HURC
OrgTechHandle: ZH17-ARIN
OrgTechName: Hurricane Electric
OrgTechPhone: +1-510-580-4100
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/ZH17-ARIN
OrgAbuseHandle: ABUSE1036-ARIN
OrgAbuseName: Abuse Department
OrgAbusePhone: +1-510-580-4100
OrgAbuseEmail: [email protected]
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1036-ARIN
RTechHandle: ZH17-ARIN
RTechName: Hurricane Electric
RTechPhone: +1-510-580-4100
RTechEmail: [email protected]
RTechRef: https://rdap.arin.net/registry/entity/ZH17-ARIN
RAbuseHandle: ABUSE1036-ARIN
RAbuseName: Abuse Department
RAbusePhone: +1-510-580-4100
RAbuseEmail: [email protected]
RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1036-ARIN
RNOCHandle: ZH17-ARIN
RNOCName: Hurricane Electric
RNOCPhone: +1-510-580-4100
RNOCEmail: [email protected]
RNOCRef: https://rdap.arin.net/registry/entity/ZH17-ARIN
NetRange: 65.49.82.0 - 65.49.82.255
CIDR: 65.49.82.0/24
NetName: HURRICANE-CE2365-A32
NetHandle: NET-65-49-82-0-1
Parent: HURRICANE-9 (NET-65-49-0-0-1)
NetType: Reassigned
OriginAS:
Customer: Ardent, Inc. (C02478937)
RegDate: 2010-04-23
Updated: 2010-04-23
Ref: https://rdap.arin.net/registry/ip/65.49.82.0
CustName: Ardent, Inc.
Address: 402 N Carroll Avenue
City: Southlake
StateProv: TX
PostalCode: 76092
Country: US
RegDate: 2010-04-23
Updated: 2011-03-19
Ref: https://rdap.arin.net/registry/entity/C02478937
OrgTechHandle: ZH17-ARIN
OrgTechName: Hurricane Electric
OrgTechPhone: +1-510-580-4100
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/ZH17-ARIN
OrgAbuseHandle: ABUSE1036-ARIN
OrgAbuseName: Abuse Department
OrgAbusePhone: +1-510-580-4100
OrgAbuseEmail: [email protected]
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1036-ARIN
RTechHandle: ZH17-ARIN
RTechName: Hurricane Electric
RTechPhone: +1-510-580-4100
RTechEmail: [email protected]
RTechRef: https://rdap.arin.net/registry/entity/ZH17-ARIN
RAbuseHandle: ABUSE1036-ARIN
RAbuseName: Abuse Department
RAbusePhone: +1-510-580-4100
RAbuseEmail: [email protected]
RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1036-ARIN
RNOCHandle: ZH17-ARIN
RNOCName: Hurricane Electric
RNOCPhone: +1-510-580-4100
RNOCEmail: [email protected]
RNOCRef: https://rdap.arin.net/registry/entity/ZH17-ARIN

Links to attack logs