107.189.2.68 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 107.189.2.68 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

• Tags: cyber security, ioc, malicious, Nextray, phishing

• View other sources: Spamhaus VirusTotal

• Contained within other IP sets: b3b0, haley_ssh

• Country: Luxembourg
• Network: AS53667 frantech solutions
• Noticed: 1 times
• Protcols Attacked: ssh
• Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
• Passive DNS Results: spider.nionlab.com buyvm.freshlo.xyz ru.intecasi.com fr.intecasi.com www.intecasi.com pemutihtubuhnatural.serumpemutih.com pemutihherbal.com aircon.webdeveloperjakarta.com asahindo.com akupunkturcibubur.com www.aircon.webdeveloperjakarta.com gratis.web.id www.pemutihampuh.serumpemutih.com bulumatalebat.com www.krimpemutihtubuh.serumpemutih.com www.gratis.games4hp.com pemutihtubuhpermanen.com www.putihkawkaw.serumpemutih.com www.pelentikbulumata.serumpemutih.com pemutihtangan.com superskin360indonesia.serumpemutih.com www.kulitputihnatural.serumpemutih.com serumpemutihtubuh.com pemutihampuh.com www.pemutihoriginal.serumpemutih.com www.pemutihtubuhpermanen.serumpemutih.com www.pemutihtangan.serumpemutih.com www.kulitputihmerona.serumpemutih.com pemutihkaki.com www.pemutihkulitpermanen.serumpemutih.com kulitputihgebu.com pemutihkulitpermanen.serumpemutih.com pemutihtubuhpermanen.serumpemutih.com pelentikbulumata.com www.pemutihkulitkaki.serumpemutih.com superskin360indonesia.com krimpemutihkulit.com www.kulitputihgebu.serumpemutih.com pemutihkulitpermanen.com serumpemutihtubuh.serumpemutih.com www.pemutihaman.serumpemutih.com pemutihaman.com pemutihnatural.serumpemutih.com pemutihaman.serumpemutih.com pemutihwajahpermanen.serumpemutih.com www.pemutihwajahpermanen.serumpemutih.com pemutihwajahpermanen.com krimpemutihtubuh.serumpemutih.com kulitputihnatural.serumpemutih.com pemutihampuh.serumpemutih.com www.superskin360indonesia.serumpemutih.com www.bulumatalebat.serumpemutih.com www.serumpemutihtubuh.serumpemutih.com pemutihsuperampuh.serumpemutih.com pemutihtubuhalami.com pemutihinstan.com pemutihinstan.serumpemutih.com www.pemutihtubuhalami.serumpemutih.com pemutihoriginal.serumpemutih.com krimpemutihtubuh.com www.putihkanketiak.serumpemutih.com www.pemutihnatural.serumpemutih.com kulitputihmerona.com pemutihsuperampuh.com pelangsinginstan.com nye-solutions.com direktori.online www.direktori.website24jam.online www.submitiklanmassal.website24jam.online website24jam.online pemutihtubuhnatural.com kulitputihmerona.serumpemutih.com pelangsinginstan.serumpemutih.com www.pemutihtubuhnatural.serumpemutih.com kulitputihnatural.com www.putihkankulit.serumpemutih.com pemutihkulittangan.serumpemutih.com pemutihkulittangan.com putihkanketiak.com putihkanketiak.serumpemutih.com www.pemutihkulittangan.serumpemutih.com putihkanwajah.serumpemutih.com www.putihkanwajah.serumpemutih.com www.pelangsinginstan.serumpemutih.com pemutihkulitkaki.serumpemutih.com serumpemutih.com pemutihkulitkaki.com www.krimpemutihampuh.serumpemutih.com kulitputihgebu.serumpemutih.com putihkawkaw.com pemutihnatural.com pemutihketiakalami.com krimpemutihampuh.serumpemutih.com pemutihketiakalami.serumpemutih.com putihkanwajah.com putihkankulit.com putihkankulit.serumpemutih.com www.pemutihketiakalami.serumpemutih.com krimpemutihampuh.com www.pemutihinstan.serumpemutih.com pemutihoriginal.com whm.webdeveloperjakarta.com webdeveloperjakarta.com games4hp.com

Open Ports Detected

22

Map

Whois Information

• NetRange: 107.189.0.0 - 107.189.31.255
• CIDR: 107.189.0.0/19
• NetName: PONYNET-11
• NetHandle: NET-107-189-0-0-1
• Parent: NET107 (NET-107-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS53667
• Organization: FranTech Solutions (SYNDI-5)
• RegDate: 2014-04-17
• Updated: 2014-04-17
• Ref: https://rdap.arin.net/registry/ip/107.189.0.0
• OrgName: FranTech Solutions
• OrgId: SYNDI-5
• Address: 1621 Central Ave
• City: Cheyenne
• StateProv: WY
• PostalCode: 82001
• Country: US
• RegDate: 2010-07-21
• Updated: 2017-01-28
• Ref: https://rdap.arin.net/registry/entity/SYNDI-5
• OrgTechHandle: FDI19-ARIN
• OrgTechName: Dias, Francisco
• OrgTechPhone: +1-778-977-8246
• OrgTechEmail: admin@frantech.ca
• OrgTechRef: https://rdap.arin.net/registry/entity/FDI19-ARIN
• OrgAbuseHandle: FDI19-ARIN
• OrgAbuseName: Dias, Francisco
• OrgAbusePhone: +1-778-977-8246
• OrgAbuseEmail: admin@frantech.ca
• OrgAbuseRef: https://rdap.arin.net/registry/entity/FDI19-ARIN
• NetRange: 107.189.0.0 - 107.189.7.255
• CIDR: 107.189.0.0/21
• NetName: BUYVM-LUXEMBOURG-02
• NetHandle: NET-107-189-0-0-2
• Parent: PONYNET-11 (NET-107-189-0-0-1)
• NetType: Reallocated
• OriginAS: AS53667
• Organization: BuyVM (BUYVM)
• RegDate: 2019-10-22
• Updated: 2019-10-22
• Ref: https://rdap.arin.net/registry/ip/107.189.0.0
• OrgName: BuyVM
• OrgId: BUYVM
• Address: 3, op der Poukewiss
• City: Roost
• StateProv:
• PostalCode: 7795
• Country: LU
• RegDate: 2017-10-01
• Updated: 2017-10-01
• Ref: https://rdap.arin.net/registry/entity/BUYVM
• OrgAbuseHandle: FDI19-ARIN
• OrgAbuseName: Dias, Francisco
• OrgAbusePhone: +1-778-977-8246
• OrgAbuseEmail: admin@frantech.ca
• OrgAbuseRef: https://rdap.arin.net/registry/entity/FDI19-ARIN
• OrgTechHandle: FDI19-ARIN
• OrgTechName: Dias, Francisco
• OrgTechPhone: +1-778-977-8246
• OrgTechEmail: admin@frantech.ca
• OrgTechRef: https://rdap.arin.net/registry/entity/FDI19-ARIN

Links to attack logs

bruteforce-ip-list-2021-07-25 bruteforce-ip-list-2021-07-29 bruteforce-ip-list-2021-07-13 aws-ssh-bruteforce-ip-list-2021-07-15 bruteforce-ip-list-2021-07-30 aws-ssh-bruteforce-ip-list-2021-07-12 bruteforce-ip-list-2021-07-12