161.97.146.53 Threat Intelligence and Host Information

Share on:
Apr 07, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 161.97.146.53 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: Bruteforce, Brute-Force, cowrie, ssh, SSH

  • View other sources: Spamhaus VirusTotal

  • Country: Germany
  • Network: AS51167 contabo gmbh
  • Noticed: 10 times
  • Protocols Attacked: ssh
  • Passive DNS Results: fsuba.cm startuplit.learningsolutions.cm www.downloadmaven.com demowebsite.fsuba.ml demowebsite.webtoolist.com downloadmaven.com videos.superlifecam.com www.webtoolist.com webtoolist.com sitedoctor.learningsolutions.cm www.magical-hermann.161-97-146-53.plesk.page magical-hermann.161-97-146-53.plesk.page firm.learningsolutions.cm zend.superlifecam.com sms.superlifecam.com mautic1.superlifecam.com bague.brightmarketingfirm.ml njock.brightmarketingfirm.ml yimga.brightmarketingfirm.ml elong.brightmarketingfirm.ml nzie.brightmarketingfirm.ml wametcha.brightmarketingfirm.ml teyimdong.brightmarketingfirm.ml moukory.brightmarketingfirm.ml mouffe.brightmarketingfirm.ml mohamadou.brightmarketingfirm.ml mbeng.brightmarketingfirm.ml manga.brightmarketingfirm.ml kamdeu.brightmarketingfirm.ml kam.brightmarketingfirm.ml honba.brightmarketingfirm.ml foumbaina.brightmarketingfirm.ml feuzeu.brightmarketingfirm.ml eyengue.brightmarketingfirm.ml etoundi.brightmarketingfirm.ml essendje.brightmarketingfirm.ml djayou.brightmarketingfirm.ml dimandi.brightmarketingfirm.ml www.knowyourfamilytree.tk chichem.brightmarketingfirm.ml abdoul.brightmarketingfirm.ml cheuko.brightmarketingfirm.ml job.brightmarketingfirm.ml azongha.brightmarketingfirm.ml mokto.brightmarketingfirm.ml zobo.brightmarketingfirm.ml ngangue.brightmarketingfirm.ml djoustso.brightmarketingfirm.ml kamguia.brightmarketingfirm.ml ekosso.brightmarketingfirm.ml nwaha.brightmarketingfirm.ml noubissie.brightmarketingfirm.ml nehon.brightmarketingfirm.ml pakam.brightmarketingfirm.ml kemjio.brightmarketingfirm.ml vibrant-ritchie.161-97-146-53.plesk.page www.vibrant-ritchie.161-97-146-53.plesk.page naughty-goldstine.161-97-146-53.plesk.page www.naughty-goldstine.161-97-146-53.plesk.page www.beautiful-khorana.161-97-146-53.plesk.page beautiful-khorana.161-97-146-53.plesk.page www.charming-lehmann.161-97-146-53.plesk.page charming-lehmann.161-97-146-53.plesk.page www.exciting-hertz.161-97-146-53.plesk.page exciting-hertz.161-97-146-53.plesk.page optimistic-cartwright.161-97-146-53.plesk.page www.optimistic-cartwright.161-97-146-53.plesk.page elated-mcclintock.161-97-146-53.plesk.page www.elated-mcclintock.161-97-146-53.plesk.page gallant-colden.161-97-146-53.plesk.page www.gallant-colden.161-97-146-53.plesk.page gracious-tereshkova.161-97-146-53.plesk.page www.gracious-tereshkova.161-97-146-53.plesk.page hopeful-raman.161-97-146-53.plesk.page www.hopeful-raman.161-97-146-53.plesk.page flamboyant-gauss.161-97-146-53.plesk.page www.flamboyant-gauss.161-97-146-53.plesk.page www.xenodochial-brattain.161-97-146-53.plesk.page xenodochial-brattain.161-97-146-53.plesk.page boring-turing.161-97-146-53.plesk.page www.boring-turing.161-97-146-53.plesk.page www.cool-engelbart.161-97-146-53.plesk.page cool-engelbart.161-97-146-53.plesk.page www.unruffled-wiles.161-97-146-53.plesk.page unruffled-wiles.161-97-146-53.plesk.page optimistic-williams.161-97-146-53.plesk.page www.optimistic-williams.161-97-146-53.plesk.page trial.brightmarketingfirm.ml crazy-lovelace.161-97-146-53.plesk.page www.crazy-lovelace.161-97-146-53.plesk.page ecstatic-black.161-97-146-53.plesk.page www.ecstatic-black.161-97-146-53.plesk.page www.competent-banach.161-97-146-53.plesk.page competent-banach.161-97-146-53.plesk.page www.interesting-nash.161-97-146-53.plesk.page interesting-nash.161-97-146-53.plesk.page www.blissful-pascal.161-97-146-53.plesk.page blissful-pascal.161-97-146-53.plesk.page strange-ishizaka.161-97-146-53.plesk.page www.strange-ishizaka.161-97-146-53.plesk.page www.quirky-wright.161-97-146-53.plesk.page quirky-wright.161-97-146-53.plesk.page www.amazing-ptolemy.161-97-146-53.plesk.page amazing-ptolemy.161-97-146-53.plesk.page loving-borg.161-97-146-53.plesk.page www.loving-borg.161-97-146-53.plesk.page tender-poincare.161-97-146-53.plesk.page www.tender-poincare.161-97-146-53.plesk.page sleepy-mestorf.161-97-146-53.plesk.page www.sleepy-mestorf.161-97-146-53.plesk.page strange-proskuriakova.161-97-146-53.plesk.page www.strange-proskuriakova.161-97-146-53.plesk.page www.tender-sinoussi.161-97-146-53.plesk.page tender-sinoussi.161-97-146-53.plesk.page www.brave-kepler.161-97-146-53.plesk.page brave-kepler.161-97-146-53.plesk.page www.ecstatic-goodall.161-97-146-53.plesk.page ecstatic-goodall.161-97-146-53.plesk.page www.quirky-torvalds.161-97-146-53.plesk.page quirky-torvalds.161-97-146-53.plesk.page www.nifty-cray.161-97-146-53.plesk.page nifty-cray.161-97-146-53.plesk.page eloquent-snyder.161-97-146-53.plesk.page www.eloquent-snyder.161-97-146-53.plesk.page ecstatic-hellman.161-97-146-53.plesk.page www.ecstatic-hellman.161-97-146-53.plesk.page www.upbeat-wescoff.161-97-146-53.plesk.page upbeat-wescoff.161-97-146-53.plesk.page friendly-cray.161-97-146-53.plesk.page www.friendly-cray.161-97-146-53.plesk.page strange-wescoff.161-97-146-53.plesk.page www.strange-wescoff.161-97-146-53.plesk.page admiring-easley.161-97-146-53.plesk.page www.admiring-easley.161-97-146-53.plesk.page vigilant-villani.161-97-146-53.plesk.page www.vigilant-villani.161-97-146-53.plesk.page www.dazzling-austin.161-97-146-53.plesk.page dazzling-austin.161-97-146-53.plesk.page www.condescending-merkle.161-97-146-53.plesk.page condescending-merkle.161-97-146-53.plesk.page www.cranky-goldwasser.161-97-146-53.plesk.page cranky-goldwasser.161-97-146-53.plesk.page www.romantic-knuth.161-97-146-53.plesk.page romantic-knuth.161-97-146-53.plesk.page moodle.learningsolutions.cm try.superlifecam.com fs.learningsolutions.cm www.try.ish.cm www.plateforme-distance.ish.cm www.inscriptions.ish.cm www.essai.ish.cm try.ish.cm bookshop.superlifecam.com fs.superlifecam.com www.brightmarketingfirm.ml brightmarketingfirm.ml plateforme-distance.ish.cm www.concours2022.ish.cm concours2022.ish.cm infos.ish.cm now.ish.cm trial1.ish.cm plateforme-distance.ish.cm.ish.cm concours2021.ish.cm orientation.ish.cm inscriptions.ish.cm essai.ish.cm ish.cm www.ish.cm www.fsuba.ml fsuba.ml chatpion.superlifecam.com trashmails.superlifecam.com ultimatesms.superlifecam.com mailwizz.superlifecam.com maildoll.superlifecam.com knowyourfamilytree.tk english.superlifecam.com www.superlifecam.com www.brightmarketingfirm.com superlifecam.com brightmarketingfirm.com phplist.brightmarketingfirm.com site1.brightmarketingfirm.com www.excellencebookshop.com learningsolutions.cm www.learningsolutions.cm hungry-mcnulty.161-97-146-53.plesk.page www.hungry-mcnulty.161-97-146-53.plesk.page www.vigilant-neumann.161-97-146-53.plesk.page vigilant-neumann.161-97-146-53.plesk.page site3.excellencebookshop.com informatics.excellencebookshop.com www.upstreamotivation.space upstreamotivation.space trial.upstreamotivation.space excellencebookshop.com elastic-engelbart.161-97-146-53.plesk.page www.elastic-engelbart.161-97-146-53.plesk.page vmi891397.contaboserver.net

Open Ports Detected

22

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51384 CVE-2023-51385 CVE-2023-51767

Map

Whois Information

  • NetRange: 161.97.64.0 - 161.97.189.255
  • CIDR: 161.97.160.0/20, 161.97.188.0/23, 161.97.64.0/18, 161.97.184.0/22, 161.97.128.0/19, 161.97.176.0/21
  • NetName: RIPE
  • NetHandle: NET-161-97-64-0-1
  • Parent: NET161 (NET-161-0-0-0-0)
  • NetType: Early Registrations, Transferred to RIPE NCC
  • OriginAS:
  • Organization: RIPE Network Coordination Centre (RIPE)
  • RegDate: 2020-05-07
  • Updated: 2020-05-07
  • Ref: https://rdap.arin.net/registry/ip/161.97.64.0
  • OrgName: RIPE Network Coordination Centre
  • OrgId: RIPE
  • Address: P.O. Box 10096
  • City: Amsterdam
  • StateProv:
  • PostalCode: 1001EB
  • Country: NL
  • RegDate:
  • Updated: 2013-07-29
  • Ref: https://rdap.arin.net/registry/entity/RIPE
  • OrgTechHandle: RNO29-ARIN
  • OrgTechName: RIPE NCC Operations
  • OrgTechPhone: +31 20 535 4444
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
  • OrgAbuseHandle: ABUSE3850-ARIN
  • OrgAbuseName: Abuse Contact
  • OrgAbusePhone: +31205354444
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
  • inetnum: 161.97.128.0 - 161.97.159.255
  • netname: CONTABO
  • descr: Contabo GmbH
  • org: ORG-GG22-RIPE
  • country: DE
  • admin-c: MH7476-RIPE
  • tech-c: MH7476-RIPE
  • status: ASSIGNED PA
  • mnt-by: MNT-CONTABO
  • created: 2020-05-08T06:41:38Z
  • last-modified: 2020-05-08T06:48:05Z
  • organisation: ORG-GG22-RIPE
  • org-name: Contabo GmbH
  • country: DE
  • org-type: LIR
  • address: Aschauer Strasse 32a
  • address: 81549
  • address: Munchen
  • address: GERMANY
  • phone: +498921268372
  • fax-no: +498921665862
  • abuse-c: MH12453-RIPE
  • mnt-ref: RIPE-NCC-HM-MNT
  • mnt-ref: MNT-CONTABO
  • mnt-ref: MNT-OCIRIS
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: MNT-CONTABO
  • created: 2009-12-09T13:41:08Z
  • last-modified: 2021-09-14T10:49:04Z
  • person: Wilhelm Zwalina
  • address: Contabo GmbH
  • address: Aschauer Str. 32a
  • address: 81549 Muenchen
  • phone: +49 89 21268372
  • fax-no: +49 89 21665862
  • nic-hdl: MH7476-RIPE
  • mnt-by: MNT-CONTABO
  • mnt-by: MNT-GIGA-HOSTING
  • created: 2010-01-04T10:41:37Z
  • last-modified: 2020-04-24T16:09:30Z
  • route: 161.97.146.0/23
  • origin: AS51167
  • mnt-by: MNT-CONTABO
  • created: 2020-05-08T07:24:18Z
  • last-modified: 2020-05-08T07:24:18Z

Links to attack logs

digitaloceanlondon-ssh-bruteforce-ip-list-2024-01-18