107.189.13.158 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 107.189.13.158 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 30/100

Host and Network Information

• Tags: cyber security, ioc, malicious, Nextray, phishing

• View other sources: Spamhaus VirusTotal

• Contained within other IP sets: bitcoin_nodes_30d, bitcoin_nodes_7d

• Country: Luxembourg
• Network: AS53667 frantech solutions
• Noticed: 1 times
• Protcols Attacked: ntp
• Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
• Passive DNS Results: status.vcdn.me cdn1.vcdn.me artcom09sh.com artek99sh.com arss999sh.com appletreerealtygenesh.com chortseelehonlamsf.com anwarleogenesh.com aprilstonegenesh.com aniffagenesh.com awoibrngcroaeuhelpgenesh.com anutkaxgenesh.com flarramrodhonlamsf.com anvarfazilovgenesh.com aniamistalgenesh.com anxiopdvggenesh.com anvasilkingenesh.com anwar19866genesh.com anii14genesh.com respuremerhonlamsf.com anidap1genesh.com scublebettinghonlamsf.com sedubinghonlamsf.com anwar1912genesh.com aniekwahyunigenesh.com kisheanicirchhonlamsf.com anxetygenesh.com artem1204sh.com aphil92082genesh.com apetterwgenesh.com apesinka93genesh.com aprovotorovagenesh.com april0000genesh.com arslan95chsh.com aq9genesh.com apsv2010genesh.com apeters1228genesh.com aprilfromargenesh.com ganiulzcqq.com artminhsh.com aprilnkinggenesh.com apextgenesh.com aprilwarrengenesh.com anyutka133genesh.com apiz21genesh.com artrubysh.com aprilxxxgenesh.com xzcjofaavl.com artbyhtash.com aprilsmith23genesh.com artlesssh.com anyuta2121genesh.com anzela0405genesh.com fubwcuarjw.com artak08sh.com artnikolaysh.com artak2008sh.com artangel24sh.com trealophonlamsf.com artbur7sh.com foyertlyainsificansion.com anieazuniegenesh.com anijithgenesh.com scantivaninghonlamsf.com aniekamgenesh.com aniggorgenesh.com anuto4ka14genesh.com anika55genesh.com loopnovahonlamsf.com nagermorhonlamsf.com art81784460sh.com satipplioainsificansion.com rentionhonlamsf.com anwpgenesh.com anv55584genesh.com anwarabualwafagenesh.com anicolettagenesh.com aprimmgenesh.com artemtitkovsh.com anvarhongenesh.com xkctzxxtdq.com xiyqedfpen.com apreloffgenesh.com aprilw422genesh.com aprecigenesh.com aprilpomagenesh.com apr2206genesh.com aprilee46genesh.com apichet2547genesh.com apkinadinaragenesh.com aqasha79genesh.com aprilford1genesh.com aprilzagergenesh.com apbeangenesh.com aps009genesh.com apelsina1987genesh.com apelbolagenesh.com 107-189-13-158.cprapid.com www.107-189-13-158.cprapid.com whm.107-189-13-158.cprapid.com apexongenesh.com aqalinlegenesh.com apelsin1981genesh.com anyutagafarovagenesh.com aprilm73genesh.com apetrosyan13genesh.com anzaranzugenesh.com apenacubagenesh.com anyuta33genesh.com apisgirgenesh.com anwartabu25genesh.com aprilflower76genesh.com anwansarigenesh.com apelsinchik3genesh.com aprilynlacbayengenesh.com aniandigenesh.com apjock47genesh.com anie007genesh.com anvar82genesh.com anidogenesh.com trovabiousainsificansion.com anigmadgenesh.com ecbanitaetouoschhelpgenesh.com anibalduremgenesh.com anutka988genesh.com mourugehonlamsf.com anichkamgenesh.com anianasagenesh.com anutka120genesh.com aniele1980genesh.com scetnianelhothelpgenesh.com anibas90genesh.com anialusiakgenesh.com anutkarodyagenesh.com anichkazaykagenesh.com aniel13arwengenesh.com anuyashagenesh.com undroundsodshonlamsf.com anigretthegenesh.com anvaragenesh.com anuzzgenesh.com ajorkenainsificansion.com anichonchigenesh.com anibaloggenesh.com werradithainsificansion.com anika2110genesh.com aniavergenesh.com sebusshonlamsf.com dissorialhonlamsf.com aniad98genesh.com boaconichonlamsf.com ania781genesh.com riewveodgdngnihelpgenesh.com anicoleh2006genesh.com anichelcanonoygenesh.com closinvaseshonlamsf.com whitianiaainsificansion.com geapgtlnoinacrtehelpgenesh.com anidhi21genesh.com anifaurgenesh.com anielsen001genesh.com

Open Ports Detected

22

Map

Whois Information

• NetRange: 107.189.0.0 - 107.189.31.255
• CIDR: 107.189.0.0/19
• NetName: PONYNET-11
• NetHandle: NET-107-189-0-0-1
• Parent: NET107 (NET-107-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS53667
• Organization: FranTech Solutions (SYNDI-5)
• RegDate: 2014-04-17
• Updated: 2014-04-17
• Ref: https://rdap.arin.net/registry/ip/107.189.0.0
• OrgName: FranTech Solutions
• OrgId: SYNDI-5
• Address: 1621 Central Ave
• City: Cheyenne
• StateProv: WY
• PostalCode: 82001
• Country: US
• RegDate: 2010-07-21
• Updated: 2017-01-28
• Ref: https://rdap.arin.net/registry/entity/SYNDI-5
• OrgTechHandle: FDI19-ARIN
• OrgTechName: Dias, Francisco
• OrgTechPhone: +1-778-977-8246
• OrgTechEmail: admin@frantech.ca
• OrgTechRef: https://rdap.arin.net/registry/entity/FDI19-ARIN
• OrgAbuseHandle: FDI19-ARIN
• OrgAbuseName: Dias, Francisco
• OrgAbusePhone: +1-778-977-8246
• OrgAbuseEmail: admin@frantech.ca
• OrgAbuseRef: https://rdap.arin.net/registry/entity/FDI19-ARIN

Links to attack logs

awsau-ntp-bruteforce-ip-list-2021-09-06 awsau-ntp-bruteforce-ip-list-2021-09-05