91.219.237.244 Threat Intelligence and Host Information

Share on:

General

This page contains threat intelligence information for the IPv4 address 91.219.237.244 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 30/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing, TOR, VPN
  • JARM: 2ad2ad16d2ad2ad22c2ad2ad2ad2adce2e4c8c53174ecbf5529ce7584d5518

  • View other sources: Spamhaus VirusTotal
  • Contained within other IP sets: maxmind_proxy_fraud

  • Country: Hungary
  • Network: AS56322 serverastra kft.
  • Noticed: 1 times
  • Protcols Attacked: spam
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Malware Detected on Host

Count: 52 2cd2ef2632a385d5e9f2582df21f9ad4e4fd5be406eaf3ba2b8af3ba85d79680 50a70c05917051428c338f6e2c52c635893e2f9f9e696f6cafb8a7cc54c57cd1 31d364cf9010612c2bd2568dfb03ff5146ced5cf48a61862be06961fc49688cf 06549c964c4d8a23c076db81b210a403422eb447217f89bf2be85f4f04f4321d d890aeafeeac4d6c2d8a1ff8b4d377d9084455a4d46b642da837c05d9b53cdbb 8f2b35f28b777b1bde61a2242d581e063622debb4ba86376f9c4feb1f9de4b39 c68ab5740180102e05d258dda8283dae25f0cb90d6cae6a50569fae9069d2e1e b562de5c79b3402658496128498614e45679d97d9eb3e6f2d9df5282c996e666 94f7666feb9467a7c539299243ee8cc415bade4335702f771f9bf15b06ccc6de ae5ca1d52db0f5642da5cab782077ed7f921e2a24380ed32af46ddff766b7358

Open Ports Detected

123 443 80

Map

Whois Information

  • inetnum: 91.219.236.0 - 91.219.239.255
  • netname: SA-BUD-DPLEX-V4-1
  • country: HU
  • org: ORG-SK286-RIPE
  • admin-c: NA6830-RIPE
  • tech-c: NA6830-RIPE
  • status: ASSIGNED PI
  • mnt-by: RIPE-NCC-END-MNT
  • mnt-by: MNT-AZARA
  • mnt-routes: MNT-AZARA
  • mnt-domains: MNT-AZARA
  • created: 2010-10-27T09:00:21Z
  • last-modified: 2021-01-08T17:51:14Z
  • organisation: ORG-SK286-RIPE
  • org-name: ServerAstra Kft.
  • country: HU
  • org-type: LIR
  • address: Pf. 66
  • address: 1625
  • address: Budapest
  • address: HUNGARY
  • phone: +3619990149
  • admin-c: NA6830-RIPE
  • tech-c: NA6830-RIPE
  • abuse-c: AR61142-RIPE
  • mnt-ref: MNT-AZARA
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: MNT-AZARA
  • created: 2020-10-12T10:33:08Z
  • last-modified: 2023-06-29T14:40:23Z
  • role: NETOPS
  • address: Pf. 66
  • address: 1625
  • address: Budapest
  • address: HUNGARY
  • phone: +3619990149
  • nic-hdl: NA6830-RIPE
  • mnt-by: MNT-AZARA
  • created: 2020-10-12T10:33:08Z
  • last-modified: 2023-06-29T14:39:33Z
  • route: 91.219.237.0/24
  • origin: AS56322
  • mnt-by: MNT-AZARA
  • created: 2022-09-08T12:31:01Z
  • last-modified: 2022-09-08T12:31:01Z

Links to attack logs

forum-spam-ip-list-2014-06-30