188.130.150.3 Threat Intelligence and Host Information

Share on:
Apr 20, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: Malicious IP, Nextray, blacklist, botnet, bruteforce, cyber security, digital ocean, ioc, malicious, mirai, phishing, scan, tcp, telnet

  • View other sources: Spamhaus VirusTotal

  • Country: Russian Federation
  • Network: AS40977 intercom llc
  • Noticed: 5 times
  • Protcols Attacked: telnet
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

111 123 3128 445 53 80 8080

CVEs Detected

CVE-2007-6752 CVE-2010-5312 CVE-2012-0825 CVE-2012-0826 CVE-2012-0827 CVE-2012-1588 CVE-2012-1589 CVE-2012-1590 CVE-2012-1591 CVE-2012-2153 CVE-2012-2922 CVE-2012-4553 CVE-2012-4554 CVE-2012-5651 CVE-2012-5653 CVE-2013-0244 CVE-2013-0245 CVE-2013-0246 CVE-2013-0316 CVE-2013-6385 CVE-2013-6386 CVE-2013-6387 CVE-2013-6388 CVE-2013-6389 CVE-2014-2983 CVE-2014-3704 CVE-2014-5019 CVE-2014-5020 CVE-2014-5021 CVE-2014-5022 CVE-2014-5265 CVE-2014-5266 CVE-2014-5267 CVE-2014-9015 CVE-2014-9016 CVE-2015-2559 CVE-2015-2749 CVE-2015-2750 CVE-2015-3231 CVE-2015-3232 CVE-2015-3233 CVE-2015-3234 CVE-2015-6658 CVE-2015-6659 CVE-2015-6660 CVE-2015-6661 CVE-2015-6665 CVE-2015-7943 CVE-2016-3162 CVE-2016-3163 CVE-2016-3164 CVE-2016-3168 CVE-2016-3169 CVE-2016-3170 CVE-2016-6211 CVE-2016-6212 CVE-2017-6922 CVE-2017-6927 CVE-2017-6928 CVE-2017-6929 CVE-2017-6932 CVE-2018-7600 CVE-2018-7602 CVE-2019-11358 CVE-2019-11831 CVE-2019-6338 CVE-2019-6339 CVE-2019-6341 CVE-2020-11022 CVE-2020-11023 CVE-2020-13662 CVE-2020-13663 CVE-2020-13666 CVE-2020-13671 CVE-2020-13672 CVE-2020-13677 CVE-2020-28948 CVE-2020-28949 CVE-2020-36193 CVE-2021-41182 CVE-2021-41183 CVE-2021-41184 CVE-2022-25271

Map

Whois Information

  • inetnum: 188.130.144.0 - 188.130.151.255
  • netname: PRK-NET
  • descr: Intercom LLC
  • org: ORG-IL386-RIPE
  • country: RU
  • admin-c: ASM92-RIPE
  • tech-c: ASM92-RIPE
  • status: ASSIGNED PA
  • mnt-by: MNT-NETART
  • mnt-routes: PRK-MNT
  • mnt-domains: PRK-MNT
  • created: 2015-10-27T16:37:03Z
  • last-modified: 2015-10-27T16:37:03Z
  • organisation: ORG-IL386-RIPE
  • org-name: Intercom LLC
  • country: RU
  • org-type: OTHER
  • address: Pionersky pr. 25, off. 4
  • address: Novokuznetsk, 654005, Russia
  • abuse-c: SR9856-RIPE
  • mnt-ref: MNT-NETART
  • mnt-by: MNT-NETART
  • mnt-by: PRK-MNT
  • created: 2015-10-22T16:48:16Z
  • last-modified: 2022-12-01T17:15:02Z
  • person: Andrey S. Mamontov
  • address: 25, Pionerskiy, Novokuznetsk, Russia
  • address: Limited liability company “Intercom”
  • phone: +7 3846 655865
  • nic-hdl: ASM92-RIPE
  • mnt-by: MNT-NETART
  • mnt-by: PRK-MNT
  • created: 2013-09-10T10:57:11Z
  • last-modified: 2015-10-27T16:39:29Z
  • route: 188.130.144.0/21
  • descr: PRK-NET ADSL&ETTH&SERVICE
  • origin: AS40977
  • mnt-by: PRK-MNT
  • created: 2009-08-26T00:36:33Z
  • last-modified: 2015-08-04T01:32:28Z

Links to attack logs

dotoronto-telnet-bruteforce-ip-list-2021-11-03