149.102.128.25 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 149.102.128.25 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 23/100

Host and Network Information

• Mitre ATT&CK IDs: T1498 - Network Denial of Service

• Tags: DDoS, RTBH

• View other sources: Spamhaus VirusTotal

• Contained within other IP sets: blocklist_net_ua

• Country: United States
• Network: AS174 cogent communications
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: openproject.meroschoolnepal.com meroentrance.com www.app.krokrodeal.site app.krokrodeal.site flixmax.tv.hostnow.online flixmax.tv www.flixmax.tv.hostnow.online webtrafficbee.com kamaloka-agency.site etechhost.co.za odhcloud.site ecozoom.website www.xpressradiotv.com www.awaget.com mail.awaget.com putrapunjabi.eu.org bhagwatibiscuits.com benjaminsaxe.com sanskarsena.org www.sanskarsena.org solanamemecoins.xyz stepupshipping.com mogamisoft.com hoteluang.my.id www.news.salam.co.com news.salam.co.com allisland.cmsfunnels.com www.allisland.cmsfunnels.com knurich.com secgasfiteria.cl rentwisconsin.xyz neumatecajavieracarrera.cl tareaschile.cl allchinashop.com www.itxstudio.com itxstudio.com tangsoodo.cl www.esteflix.com esteflix.com kingdominstituteinternational.org awaget.com myr-iam.tv theuk07rider.com www.infectionprevention.cmsfunnels.com www.wpp.ecozoom.site ecozoom.site pod.ecozoom.site wp.ecozoom.site www.panel.maximotv.click www.apk.maximotv.click maximotv.click authnsec.duckdns.org www.myservr.duckdns.org myservr.duckdns.org mail.msecure.duckdns.org msecure.duckdns.org sakyo.life vanityfalr.com cooperatemails.info cyberdark.store iptv.miks.life www.iptv.miks.life php8.32flavors.org www.php8.32flavors.org www.doityourselfspares.precioencaida.com www.olemixoxo.precioencaida.com olemixoxo.com precioencaida.com primehosting-server.top app.webhostace.com rmackayadvocates.com dpi-adv.com vhvc.online hammoni.com www.crm.demos.hostsuperbr.com.br crm.demos.hostsuperbr.com.br honeybunns.com hostingfacil.cl victormanoli.cl spservicio.com amhtv.shop nomails.website jkmusic.us freelancerchile.site superofertas-santacruz.xyz healthandbeautycare.store perfectfurniture.store baby-food.store oxoxo.store microgigs.top anews.top 5star.pizza adonaiservice.top billysshack.site dropshiping.blog goldrun.top ngtmre.xyz miks.life gabygym.com phar-ma-cy.com otohost.com skmhosting.com hostbuying.com shipime.com mainana.com lordsandladysug.com customprintwave.com superdutyseo.website isidrah.org isidrah.com pesanlangsung.my.id www.cars.intecs-group.com www.machinery.intecs-group.com ironcodes.net www.ironcodes.salam.co.com wowpco.com myexandi.com computos.shop superdutyhost.com websitehostindia.com salemstjohnbc.com lentesrapidos.com www.usama.cmsfunnels.com usama.cmsfunnels.com webhostace.com boldandbeautiful.academy infocyruss.online kocoshost.com yezcube.com discoveryquestacademy.org eca5.org aeronautica.college credicel.online nutrinova.info fantasticprint.us mandalatapestrystore.com 99119911.xyz cmsfunnels.com zeemak.net brands-unlimited.com bargotransportes.com alifaexpress.com olivkingsbeautyandspa.com alemdaimaginacao.shop www.silvercity.websitehostindia.com silvercity.websitehostindia.com cursosincriveisonline.shop arkansas-streams.com boatnready.com johnjclark.com lilis.xtelli.host www.lilis.xtelli.host lilis.site telecom.intecs-group.com www.telecom.intecs-group.com cursosincriveisonline.com.br rumahcinta.biz.id supersites.top bluefieldsales.com www.32flavors.org www.fan.32flavors.org fan.32flavors.org 32flavors.org inarserver.com plusgt.xyz www.nimlyst.cmsfunnels.com nimlyst.cmsfunnels.com stevengarcia.cmsfunnels.com www.stevengarcia.cmsfunnels.com pecattomodaintima.com.br classify.ng gzar.in hostsuperbr.com.br www.aussiemovies.aussiemovie.com aussiemovies.aussiemovie.com p.aaaeo.com highkeyclout.cmsfunnels.com www.highkeyclout.cmsfunnels.com mail.bigbencourse.com bigbencourse.com www.bigbencourse.com bricorp.net larysastore.intecs-group.com www.larysastore.intecs-group.com www.realtor.ingser.online realtor.ingser.online www.pecasofts.online mamahost.online www.oztv.live oztv.live.aussiemovie.com www.oztv.live.aussiemovie.com nuclionic.net nuclionic.org nuclionic.com saxconsult.com iclassify.com.ng www.iclassify.deopax.com.ng deopax.com.ng freonsupplies.xyz freon.live www.iptvlive.a8im.com iptvlive.a8im.com iptvcloud.online fusemail.xyz salam.co.com algoniatech.com down.masterpc.shop www.down.masterpc.shop website4u.shop www.paintmycar.net fish123.top www.lotsofservice.waterdamage24hours.com lotsofservice.waterdamage24hours.com detectortormenta.com guldrens.com card.cbhost.com.br pz.cbhost.com.br www.mrmagiccarpetcleaning.waterdamage24hours.com mrmagiccarpetcleaning.waterdamage24hours.com radionucleobase.com.br omelhordaqui.com.br cbhost.com.br crm.zoozaa.com detectoresdetormenta.com acurite.tk ogafurniture.com pecasofts.online dealdul.com mailili.org maililiorg.xtelli.host www.maililiorg.xtelli.host www.maililisite.xtelli.host mailili.blog www.mailili.xtelli.host www.pharmaregi.multilaboratories.com pharmaregi.com pharmaregi.multilaboratories.com www.bulut.gerilim.uno bulut.gerilim.uno rolired.com rerenters.com waterremoval.waterdamage24hours.com www.waterremoval.waterdamage24hours.com worldhosting.xyz xraydeltaone.in www.domain.oismart.web.id domain.oismart.web.id mail.scientigo.com terus.me www.ana.ingser.online ana.ingser.online www.zuluscope.live www.loginsmp.darussalamsolo.sch.id loginsmp.darussalamsolo.sch.id goodnplentyboats.com goodnplentyboats.com.johnjclark.com www.goodnplentyboats.com.johnjclark.com www.boatnready.com.johnjclark.com www.aquajohn.com.johnjclark.com aquajohn.com multilaboratories.com dinheiroganho.pt ozielrdz.com www.wpt.prestige-limos.site wpt.prestige-limos.site autorepairworkshop.com www.autorepairworkshop.com paintmycar.net xtelligents.com www.xtelligents.com.xtelli.host xtelligents.com.xtelli.host prestige-limos.site prestige-limos.site.xtelli.host www.prestige-limos.site.xtelli.host lilis.blog xtelli.host www.elid.ger.co.il elid.ger.co.il agroempaqueseltigre.xyz.mlaudio.gt www.agroempaqueseltigre.xyz.mlaudio.gt agroempaqueseltigre.xyz www.wpt.ingser.online wpt.ingser.online t.ingser.online www.t.ingser.online oztv.live aussiemovie.com detectorthunderbolt.com radiolatina.com.pe volcorautomated.com parabolicas.net globhost.xyz fcd.fiduciarycommission.com www.fcd.fiduciarycommission.com aldosmar.com www.pozoatierra.com pozoatierra.com whm.pozoatierra.com feelyourbodykropsterapi.dk reviqa.dk www.reviqa.dk cashclubcanada.com broketwinkslive.com resellerbusinessglobal.com flairdispatch.com 3dbilledet.dk firmalegal.online www.rxpharma.nl rxpharma.nl sallysspace.com www.oficinacontable.plusgt.cf oficinacontable.plusgt.cf www.caraudio.mlaudio.gt caraudio.mlaudio.gt metropolitanservices.xyz dinacord.tk megastereo.tk turadiorock.com www.mediaplus.top mediaplus.top secondpassportconsultants.pro surebets1x2.com ipvisi.org miptv.club www.miptv.club comdialrepair.com newsbangla.quraneman.com www.newsbangla.quraneman.com newsbangla.live buypdf.net cerotres28.com glnations.com serverchain.com rockfinltd.com www.comprasegura.importatu.com comprasegura.importatu.com colegiobethel.edu.gt www.colegiobethel.edu.gt.mlaudio.gt colegiobethel.edu.gt.mlaudio.gt www.impossible2possibleu.live buyoutlet.xyz www.test.manchesterinfo.eu test.manchesterinfo.eu radiotronicgizmo.com radiotronicgizmo.net www.greezhost.com greezhost.com whm.greezhost.com www.server2.true-hosting.com server2.true-hosting.com www.zukitguides.ger.co.il zukitguides.ger.co.il www.sas.inmarty.club inmarty.club www.store.inmarty.club www.cdn.inmarty.club tyfoods.pk www.branderz.pk relaxapk.com zolahosting.com intecsgroup.net onesupportcenter.com www.resources.adzsubmit.shop adzsubmit.shop www.learn.adzsubmit.shop www.promo.adzsubmit.shop www.news.adzsubmit.shop www.insights.adzsubmit.shop www.landing.adzsubmit.shop www.meet.adzsubmit.shop www.articles.adzsubmit.shop www.blog.adzsubmit.shop www.remote.adzsubmit.shop brotherconsultingllc.com www.delivery.brownsi.com delivery.brownsi.com www.marketing.ingser.online marketing.ingser.online woodworx.bendingtrees.com www.woodworx.bendingtrees.com bendingtrees.com www.jerusalemglobal.co.uk www.easyrsm.xyz www.next.mymet.net next.mymet.net www.test.mymet.net test.mymet.net www.jaivellc.com plustech.plusgt.cf www.plustech.plusgt.cf daraz.branderz.pk www.daraz.branderz.pk www.kagerneogbagerne.dk kagerneogbagerne.dk scandinaviansecurity.dk www.scandinaviansecurity.dk byggeboksen.dk www.byggeboksen.dk vmi979376.contaboserver.net canadawideauctions.com canadianonlinesales.com brokestraightkids.com torontohomerealty.ca hosting-ape.com www.brandejs-kolaric.toni-web.com brandejs-kolaric.toni-web.com url-tracking.online url-tracking.click dailybuysell.com cuentaz.xyz www.cuentaz.xyz sexadultshop.club ayamgroupe.site ayamgroupe.fun aus-conferention.site sitehost.link aus-sydney-confirention.fun www.aus-sydney-confirention.fun www.visitehonduras.com visitehonduras.com allskinproblems.com strong.strong.mymet.net www.strong.strong.mymet.net strong.mymet.net ingser.online arado.org.pk smadire.com omniaudio.us auhandyman.com nflscores.top cyberdepot.xyz webhost.my tv.ipvisi.org www.tv.ipvisi.org yprohost.one licensehost.in aroundtheusa.org cubanamericancafe.com www.geminiinjoe.hebermaroc.com geminiinjoe.hebermaroc.com hostfast.com.br theonlinebloggers.com server-hosting.ca perekaweb.com www.websitehostingnetwork.com whm.websitehostingnetwork.com www.brownsi.com whm.brownsi.com www.gemin.hebermaroc.com gemin.hebermaroc.com www.jerkdollss.hebermaroc.com jerkdollss.hebermaroc.com mnfacaderens.com lavaglamp.com www.jerkdolls.hebermaroc.com jerkdolls.hebermaroc.com ubld.co.il www.travel.africaster.com travel.africaster.com rabatappen.com geminiinv.hebermaroc.com www.geminiinv.hebermaroc.com www.domain.bengalihost.com domain.bengalihost.com brianneanderson.com www.brianneanderson.com ubld.tcom.co.il www.ubld.tcom.co.il impossible2possibleu.live ns2.tcom.co.il tcom.co.il www.africaster.com www.shihab.cloud shihab.cloud comparevoipproviderrates.com rpemble.org rpemble.com rpemble.net www.client.hebermaroc.com client.hebermaroc.com radiotronic.tech www.hostreview.host hostreview.host c.airbiip.com www.c.airbiip.com radiotronic.in radiotronic.xyz radiotronic.cc radiotronic.wtf xraydeltaone.org xraydeltaone.xyz xraydelta.one xraydeltaone.us xray-delta.one whm.din-webekspert.net www.din-webekspert.net xraydeltaone.com xd1.xyz xray-delta-one.com xd1.cc

Open Ports Detected

22 3306 443 80

CVEs Detected

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

Map

Whois Information

• NetRange: 149.102.0.0 - 149.102.255.255
• CIDR: 149.102.0.0/16
• NetName: COGENT-149-102-16
• NetHandle: NET-149-102-0-0-1
• Parent: NET149 (NET-149-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS174
• Organization: PSINet, Inc. (PSI-1)
• RegDate: 1992-01-28
• Updated: 2016-02-04
• Ref: https://rdap.arin.net/registry/ip/149.102.0.0
• OrgName: PSINet, Inc.
• OrgId: PSI-1
• Address: 2450 N Street NW
• City: Washington
• StateProv: DC
• PostalCode: 20037
• Country: US
• RegDate: 1992-01-28
• Updated: 2023-10-11
• Comment: Geofeed https://geofeed.cogentco.com/geofeed.csv
• Ref: https://rdap.arin.net/registry/entity/PSI-1
• OrgNOCHandle: ZC108-ARIN
• OrgNOCName: Cogent Communications
• OrgNOCPhone: +1-877-875-4311
• OrgNOCEmail: noc@cogentco.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/ZC108-ARIN
• OrgTechHandle: IPALL-ARIN
• OrgTechName: IP Allocation
• OrgTechPhone: +1-877-875-4311
• OrgTechEmail: ipalloc@cogentco.com
• OrgTechRef: https://rdap.arin.net/registry/entity/IPALL-ARIN
• OrgAbuseHandle: COGEN-ARIN
• OrgAbuseName: Cogent Abuse
• OrgAbusePhone: +1-877-875-4311
• OrgAbuseEmail: abuse@cogentco.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/COGEN-ARIN

Links to attack logs

bruteforce-ip-list-2024-08-10 bruteforce-ip-list-2024-08-11