142.54.172.218 Threat Intelligence and Host Information

Share on:
Aug 07, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 142.54.172.218 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 17/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Country: United States
  • Network: AS33387 nocix llc
  • Noticed: 1 times
  • Protcols Attacked: spam
  • Passive DNS Results: oktahook.gahub.cyou vw2.gahub.cyou xc1.gahub.cyou vw1.gahub.cyou vw1.ghub.eu xc1.ghub.eu annve.top xiurao.top xiunan.top tuozuan.top tuozhou.top tuopian.top tuonen.top tuonao.top tuolue.top tuojiong.top tuofen.top tuoeng.top tuodui.top tuocan.top touxuan.top toushun.top toukuai.top toujian.top suizun.top suishei.top suirun.top suirang.top suiqun.top suique.top suiqin.top suilou.top suicuo.top suichou.top suanku.top suancu.top sounuo.top songte.top songtan.top songsun.top songchun.top songca.top shuozhun.top shuozhuang.top shuozheng.top shuoze.top shuoxuan.top shuoshun.top shuoshan.top shuoshai.top shuosang.top shuosai.top shuorun.top shuorou.top shuoqing.top shuopai.top shuonou.top shuomie.top shuokei.top shuoguang.top shuogei.top shuodie.top shuodang.top shuoci.top shunzhuang.top shunxun.top shunwa.top shunruo.top shunru.top shunre.top shunqin.top shunqia.top shunpou.top shunpi.top shunpan.top shunnuo.top shunne.top shunnao.top shunmou.top shunlie.top shunkuo.top shungen.top shungan.top shuizun.top shuitan.top shuisuan.top shuiqiong.top shuiqia.top shuinue.top shuilia.top shuikun.top shuihuai.top shuieng.top shuidia.top shuichuo.top shuiban.top shuazhua.top shuaxing.top shuaxiang.top shuaxian.top shuatuo.top shuatao.top shuatan.top shuasou.top shuashao.top shuaruan.top shuaru.top shuapo.top shuanang.top shuanan.top shualve.top shuakuan.top shuajin.top shuahei.top shuagua.top shuadou.top shuading.top shuacu.top shuabo.top shouseng.top shoumou.top shoukua.top shoudiu.top shoudie.top shoucou.top shoucong.top shouchou.top sazhuai.top sazhao.top sajing.top sahuang.top runwo.top runren.top ruizhai.top ruanzun.top ruanzui.top ruanxu.top ruansun.top ruanshu.top ruanri.top ruanna.top ruanmiu.top ruancou.top roupan.top requn.top renve.top quanzhui.top quanzan.top quanwan.top quansui.top quanseng.top quansang.top quanre.top quannue.top quanning.top quanlve.top quanlue.top quankuo.top quandan.top quanci.top quanchui.top qingtun.top qingseng.top qingpiao.top qingjiong.top qingchuo.top qingbiao.top liaorao.top liaopao.top liaolo.top liaole.top liaokei.top liaoka.top liaoban.top lianshuai.top lianliang.top lianjiong.top fatuan.top endou.top chipiao.top 101971.top 101969.top 101963.top 101958.top 101955.top 101912.top 101896.top 101895.top 101893.top 101892.top 101885.top 101879.top 101867.top 101755.top 101737.top 101730.top 101722.top 101718.top 101705.top 101697.top 101696.top 101695.top 101692.top 101689.top 101683.top 101681.top 101680.top 101663.top 101660.top 101656.top xiusuo.top tuopiao.top tuohuai.top tuofou.top suizuo.top suilai.top langpei.top hwhb.in langzhuan.top langzhuai.top langzhei.top langshuan.top langnue.top langliang.top langkuang.top langkei.top langjiong.top langhuang.top langden.top langdei.top langchuang.top langchong.top langchang.top xiukun.top tuoshun.top suitian.top suipie.top hxfb.in tuosao.top tuoruan.top tuoquan.top tuonei.top tuohei.top tuogou.top sounou.top runkao.top runcen.top langreng.top souruo.top sourun.top souque.top souqiu.top soupou.top sounue.top sounin.top sounie.top soumiu.top soumie.top soulue.top souliu.top soukuo.top soukua.top soujun.top souhou.top soueng.top souduo.top soudun.top soudiu.top soudie.top runzu.top runzen.top runzai.top runxie.top runtan.top runsha.top runsai.top runru.top runrao.top runqie.top runqia.top runpei.top runnen.top runnei.top runnan.top runnai.top runmen.top runmao.top runmai.top runlia.top runlei.top runlao.top runlan.top runhei.top runhan.top rungen.top rungei.top rungao.top rungan.top runden.top rundei.top rundan.top runcui.top runcou.top runcha.top runcao.top runbie.top ruizong.top ruizhuang.top ruizhuan.top ruizhei.top ruiweng.top ruishuo.top ruishuan.top ruishuai.top ruiping.top ruipiao.top ruiniang.top ruikuan.top ruikuai.top ruijuan.top ruihuai.top ruicuan.top ruichuo.top ruichun.top ruichui.top ruibing.top 327301.top www.merapakistan.tv 51zn.xyz sunck8.com www.bai8.top izongrong.com luototo.com ruigang.xyz bai8.top mcfan.net cryhi.com sciencer.science duangduang.science

Open Ports Detected

21 22 443 5432 5672 80

CVEs Detected

CVE-2021-22116 CVE-2021-22117 CVE-2021-32718 CVE-2021-32719 CVE-2022-31008

Map

Whois Information

  • NetRange: 142.54.160.0 - 142.54.191.255
  • CIDR: 142.54.160.0/19
  • NetName: DSV4-4
  • NetHandle: NET-142-54-160-0-1
  • Parent: NET142 (NET-142-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS33387
  • Organization: Nocix, LLC (DL-9)
  • RegDate: 2012-05-18
  • Updated: 2012-05-18
  • Ref: https://rdap.arin.net/registry/ip/142.54.160.0
  • OrgName: Nocix, LLC
  • OrgId: DL-9
  • Address: 201 East 16th Ave
  • City: North Kansas City
  • StateProv: MO
  • PostalCode: 64116
  • Country: US
  • RegDate: 2011-03-15
  • Updated: 2022-07-19
  • Comment: http://www.nocix.net
  • Ref: https://rdap.arin.net/registry/entity/DL-9
  • OrgNOCHandle: IPADM563-ARIN
  • OrgNOCName: IP Admin
  • OrgNOCPhone: +1-816-389-5200
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/IPADM563-ARIN
  • OrgTechHandle: KRH22-ARIN
  • OrgTechName: HODLE, Kevin Robert
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/KRH22-ARIN
  • OrgTechHandle: AWE13-ARIN
  • OrgTechName: Wendel, Aaron
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWE13-ARIN
  • OrgTechHandle: IPADM563-ARIN
  • OrgTechName: IP Admin
  • OrgTechPhone: +1-816-389-5200
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/IPADM563-ARIN
  • OrgTechHandle: KAISE102-ARIN
  • OrgTechName: kaiser, rebecca
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/KAISE102-ARIN
  • OrgTechHandle: REGIO-ARIN
  • OrgTechName: Region, Bob
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/REGIO-ARIN
  • OrgAbuseHandle: DATAS1-ARIN
  • OrgAbuseName: DataShack Security
  • OrgAbusePhone: +1-816-389-5200
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/DATAS1-ARIN
  • NetRange: 142.54.172.216 - 142.54.172.223
  • CIDR: 142.54.172.216/29
  • NetName: WII-142-54-172-217-223
  • NetHandle: NET-142-54-172-216-1
  • Parent: DSV4-4 (NET-142-54-160-0-1)
  • NetType: Reassigned
  • OriginAS: AS33387
  • Customer: Ashournia, Ghodrat (C08500219)
  • RegDate: 2022-06-03
  • Updated: 2022-06-03
  • Ref: https://rdap.arin.net/registry/ip/142.54.172.216
  • CustName: Ashournia, Ghodrat
  • Address: 201 E. 16th st
  • City: North Kansas City
  • StateProv: MO
  • PostalCode: 64116
  • Country: US
  • RegDate: 2022-06-03
  • Updated: 2022-06-03
  • Ref: https://rdap.arin.net/registry/entity/C08500219
  • OrgNOCHandle: IPADM563-ARIN
  • OrgNOCName: IP Admin
  • OrgNOCPhone: +1-816-389-5200
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/IPADM563-ARIN
  • OrgTechHandle: KRH22-ARIN
  • OrgTechName: HODLE, Kevin Robert
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/KRH22-ARIN
  • OrgTechHandle: AWE13-ARIN
  • OrgTechName: Wendel, Aaron
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWE13-ARIN
  • OrgTechHandle: IPADM563-ARIN
  • OrgTechName: IP Admin
  • OrgTechPhone: +1-816-389-5200
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/IPADM563-ARIN
  • OrgTechHandle: KAISE102-ARIN
  • OrgTechName: kaiser, rebecca
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/KAISE102-ARIN
  • OrgTechHandle: REGIO-ARIN
  • OrgTechName: Region, Bob
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/REGIO-ARIN
  • OrgAbuseHandle: DATAS1-ARIN
  • OrgAbuseName: DataShack Security
  • OrgAbusePhone: +1-816-389-5200
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/DATAS1-ARIN

Links to attack logs

forum-spam-ip-list-2014-04-08 forum-spam-ip-list-2014-04-09 forum-spam-ip-list-2014-03-29 forum-spam-ip-list-2014-03-28 forum-spam-ip-list-2014-04-07 forum-spam-ip-list-2014-04-06 forum-spam-ip-list-2014-04-19 forum-spam-ip-list-2014-04-20 forum-spam-ip-list-2014-07-07 forum-spam-ip-list-2014-07-18 forum-spam-ip-list-2014-04-04 forum-spam-ip-list-2014-04-16 forum-spam-ip-list-2014-04-02 forum-spam-ip-list-2014-04-11 forum-spam-ip-list-2014-04-22 forum-spam-ip-list-2014-04-03 forum-spam-ip-list-2014-07-20