91.237.52.119 Threat Intelligence and Host Information

Share on:
Nov 21, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 91.237.52.119 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Country: Poland
  • Network: AS198414 h88 s.a.
  • Noticed: 1 times
  • Protcols Attacked: spam
  • Passive DNS Results: hoothoot.giize.com 91.237.52.119 lolmands.chickenkiller.com 228325.no-ip.org

Malware Detected on Host

Count: 7 8bdc3c906c9a99c0670035752d1ed6a73eebe299ca119949823a02c97de97b74 0af52380247bf88349c91cdd5123dca8e242420a94eb969ef69be08cb181ff5c 93ebc3a3091e627dab233e7f000d7b00d34bf11203ca1f2fca99b545b7126e67 30e3582a9f7d5d35959d1035ec98fbd66739104eef21441f989586825d1abb10 e128333d7c8408827ec3458fe23964a88c6b1627a0bd969886d0f4296c82b0d0 66946262c7f6ccabe63c4e6a5b5ef3f6d5209c08d4739ff74897d9bc64401172 35c86c4f77f5cf974e96391100160ad258abc636ef1c3122194d7f5ccfea2d65

Map

Whois Information

  • inetnum: 91.237.52.0 - 91.237.52.255
  • netname: Biznes-Host
  • descr: Hekko VPS Servers
  • country: PL
  • org: ORG-OSZO10-RIPE
  • admin-c: NOCH1-RIPE
  • tech-c: NOCH1-RIPE
  • status: ASSIGNED PI
  • mnt-by: RIPE-NCC-END-MNT
  • mnt-by: H88-MNT
  • mnt-lower: H88-MNT
  • mnt-routes: H88-MNT
  • created: 2012-03-20T13:26:03Z
  • last-modified: 2021-11-29T13:43:12Z
  • organisation: ORG-OSZO10-RIPE
  • org-name: Cyber_Folks S.A.
  • country: PL
  • org-type: LIR
  • address: ul. Franklina Roosevelta 22
  • address: 60-829
  • address: Poznan
  • address: POLAND
  • phone: +48603625675
  • phone: +48 61 622 25 00
  • abuse-c: HSAC2-RIPE
  • admin-c: NOCH1-RIPE
  • tech-c: NOCH1-RIPE
  • mnt-ref: RIPE-NCC-HM-MNT
  • mnt-ref: H88-MNT
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: H88-MNT
  • created: 2013-10-23T08:03:04Z
  • last-modified: 2023-11-17T11:52:49Z
  • fax-no: +48 161 622 25 25
  • role: Network Operations Center Cyber_Folks S.A.
  • admin-c: MP11261-RIPE
  • abuse-mailbox: [email protected]
  • admin-c: MG25597-RIPE
  • tech-c: MP11261-RIPE
  • address: ul. Franklina Roosevelta 22
  • address: 60-829 Poznan, Poland
  • nic-hdl: NOCH1-RIPE
  • mnt-by: H88-MNT
  • created: 2016-12-08T19:09:30Z
  • last-modified: 2021-11-29T13:00:49Z
  • route: 91.237.52.0/24
  • origin: AS198414
  • mnt-by: H88-MNT
  • created: 2017-01-18T09:21:11Z
  • last-modified: 2023-10-16T08:36:04Z
  • route: 91.237.52.0/24
  • origin: AS41079
  • mnt-by: H88-MNT
  • mnt-by: OXYLION-MNT
  • created: 2022-10-25T19:37:03Z
  • last-modified: 2022-10-25T19:37:03Z
  • route: 91.237.52.0/24
  • origin: AS58321
  • mnt-by: H88-MNT
  • mnt-by: OXYLION-MNT
  • created: 2020-01-15T08:43:45Z
  • last-modified: 2020-01-15T08:43:45Z

Links to attack logs

forum-spam-ip-list-2013-11-22 forum-spam-ip-list-2014-04-04