94.242.246.206 Threat Intelligence and Host Information

Share on:
Oct 21, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 94.242.246.206 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Country: Luxembourg
  • Network: AS5577 root
  • Noticed: 1 times
  • Protcols Attacked: spam
  • Passive DNS Results: drive-floppy.ru proappstoreinfo.ru pro-appstore-market.ru forces.drive-floppy.ru horses.drive-floppy.ru forces.pro-appstore-market.ru forces.proappstoreinfo.ru

Malware Detected on Host

Count: 142 cdba8783a4c7563007ac432245cd3865056b2e1cdf640f9825ca0d5ed46e6e8c ab1b8bf2a4453460fd85491ff38ae2aca90066d259ff48ff2751a6bd10594533 30f71c427e6750088fbeefe57df78c5071869d1b717b8ebbad5a9ab5fe396b29 72de38b84d70b3438f207b42c9eedb704deb40a99ede564250ab118d47a9b5cb a080389422ffe185c4253c347d2e60a88d385bf4156b7fa96b4771284dfd63ca b8fb622abb7b2e0bcdf248c76815b99e55cefcfb7961312f6abac72f42b2c7df eaebadf32175484e05a8db589a835d72068dec234ddda3cf97eca8f08c72dd1c 3d976bb2036871b68be84e0758f49cbfbecc7ef91cc173c89361dff4be904936 cf370ca745798d0cb7829b8d871c2e81588200cd94dc72f85c0914293481b8eb c128b10ff1305d3470c379022d5b0ad827269648ea58d2e17e33b31507d9d2a3

Map

Whois Information

  • inetnum: 94.242.192.0 - 94.242.255.255
  • netname: LU-ROOT-20081021
  • country: LU
  • org: ORG-re8-RIPE
  • admin-c: ROOT5-RIPE
  • tech-c: ROOT5-RIPE
  • status: ALLOCATED PA
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: ROOT-MNT
  • mnt-routes: ROOT-MNT
  • mnt-domains: ROOT-MNT
  • created: 2008-10-21T12:03:00Z
  • last-modified: 2017-04-07T17:40:55Z
  • organisation: ORG-RE8-RIPE
  • org-name: root SA
  • country: LU
  • org-type: LIR
  • address: 3, op der Poukewiss
  • address: 7795
  • address: Roost - Bissen
  • address: LUXEMBOURG
  • phone: +35220500500
  • fax-no: +35220500900
  • admin-c: MARC6-RIPE
  • mnt-ref: RIPE-NCC-HM-MNT
  • mnt-ref: ROOT-MNT
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: ROOT-MNT
  • abuse-c: RE655-RIPE
  • created: 2007-11-05T13:04:52Z
  • last-modified: 2020-12-16T12:42:17Z
  • person: ROOT IP Manager
  • address: 3, op der Poukewiss
  • address: 7795 Roost
  • address: Luxembourg
  • phone: +35220500500
  • fax-no: +35220500900
  • nic-hdl: ROOT5-RIPE
  • mnt-by: ROOT-MNT
  • created: 2015-06-16T16:35:19Z
  • last-modified: 2017-10-30T22:51:51Z

Links to attack logs

forum-spam-ip-list-2015-12-23