199.168.103.50 Threat Intelligence and Host Information

Share on:
Apr 29, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Tags: Nextray, awsau, bruteforce, cyber security, ioc, la, lafusioncenter, louisiana, malicious, phishing, redis, tsec

  • View other sources: Spamhaus VirusTotal

  • Country: United States of America
  • Network: AS33387 nocix llc
  • Noticed: 6 times
  • Protcols Attacked: redis
  • Countries Attacked: Australia, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: qlms3507.cn m.k1tw9.icu 6g.gzwy3.icu 6g.gzyl2.icu kcolo.com.cn jzfysj.cn 3g.gzyr0.icu m.gzyh8.icu mip.zmyuo30.icu 6g.zmyuq43.icu 5g.gzyw3.icu m.k1sx2.icu 6g.gzvr3.icu mip.gzyw3.icu 4g.zmyuo75.icu 6g.gzwx0.icu 5g.zmyuq22.icu m.zmyut02.icu 5g.gzvg4.icu 4g.zmyup97.icu wap.gzvk5.icu zmyuo37.icu zmyuq37.icu zmyut94.icu zmyus02.icu zmyus98.icu zmyuq70.icu zmyur82.icu zmyus28.icu zmyut62.icu zmyur19.icu zmyun25.icu zmyum81.icu zmyus42.icu zmyur69.icu zmyup95.icu zmyun45.icu zmyur92.icu zmyuq73.icu zmyur71.icu zmyuq77.icu zmyuu02.icu zmyuw22.icu zmyuv26.icu zmyus34.icu zmyup23.icu zmyuq43.icu zmyuw19.icu zmyut34.icu zmyuv42.icu zmyuw61.icu zmyup55.icu zmyut88.icu zmyut89.icu zmyuo75.icu zmyuu60.icu zmyut01.icu zmyut02.icu zmyuw67.icu zmyuu83.icu zmyuu25.icu zmyut96.icu zmyum97.icu zmyuo31.icu zmyur53.icu zmyuu31.icu zmyup68.icu zmyur22.icu zmyun00.icu zmyuq55.icu zmyuu00.icu zmyuq29.icu zmyut15.icu zmyuq62.icu zmyut07.icu zmyuq44.icu zmyut85.icu zmyuv03.icu zmyuw57.icu zmyus58.icu zmyuq38.icu zmyum86.icu zmyut05.icu zmyuu78.icu zmyut90.icu zmyut40.icu zmyuq49.icu zmyut251.icu zmyuw04.icu zmyup48.icu zmyus73.icu zmyup89.icu zmyuq59.icu zmyus64.icu zmyuo28.icu zmyuo08.icu zmyut99.icu zmyuq33.icu zmyut55.icu zmyuq27.icu zmyuq09.icu zmyur76.icu zmyun61.icu zmyut97.icu zmyum91.icu zmyup15.icu zmyut74.icu zmyur07.icu zmyun88.icu zmyus10.icu zmyup41.icu zmyup71.icu zmyun59.icu zmyuq88.icu zmyur04.icu zmyum93.icu zmyuu93.icu zmyuo30.icu zmyuu15.icu zmyun75.icu zmyun62.icu zmyur86.icu zmyup97.icu zmyus51.icu zmyun60.icu zmyuv82.icu zmyuo45.icu zmyus76.icu zmyut11.icu zmyus55.icu zmyun78.icu zmyur65.icu zmyut72.icu zmyup201.icu zmyup88.icu zmyuw77.icu zmyuu99.icu zmyun47.icu zmyuu07.icu zmyut06.icu zmyur09.icu zmyuo44.icu zmyuq71.icu zmyuq86.icu zmyuq68.icu zmyuu11.icu zmyuw51.icu zmyup61.icu zmyuw12.icu zmyuu79.icu zmyup14.icu zmyun14.icu zmyuw09.icu zmyus71.icu zmyup13.icu zmyur17.icu zmyus89.icu zmyuv98.icu zmyuq80.icu zmyut77.icu zmyut95.icu zmyuu63.icu zmyuo67.icu zmyup98.icu zmyuq16.icu zmyun76.icu zmyus30.icu zmyup17.icu zmyut30.icu zmyus03.icu zmyut50.icu zmyur41.icu zmyum89.icu zmyut26.icu zmyuv15.icu zmyuq97.icu wap.qlms3508.cn 6g.qlms3495.cn mip.fsbaoxun.com 4g.qlms3468.cn wap.fsbaoxun.com vragen-verstuur.info 3p3pp.com azanbrazen.com

Map

Whois Information

  • NetRange: 199.168.96.0 - 199.168.103.255
  • CIDR: 199.168.96.0/21
  • NetName: DSV4-3
  • NetHandle: NET-199-168-96-0-1
  • Parent: NET199 (NET-199-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS33387
  • Organization: Nocix, LLC (DL-9)
  • RegDate: 2012-04-05
  • Updated: 2012-04-05
  • Comment: http://www.datashack.net
  • Ref: https://rdap.arin.net/registry/ip/199.168.96.0
  • OrgName: Nocix, LLC
  • OrgId: DL-9
  • Address: 201 East 16th Ave
  • City: North Kansas City
  • StateProv: MO
  • PostalCode: 64116
  • Country: US
  • RegDate: 2011-03-15
  • Updated: 2022-07-19
  • Comment: http://www.nocix.net
  • Ref: https://rdap.arin.net/registry/entity/DL-9
  • OrgTechHandle: KRH22-ARIN
  • OrgTechName: HODLE, Kevin Robert
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/KRH22-ARIN
  • OrgTechHandle: IPADM563-ARIN
  • OrgTechName: IP Admin
  • OrgTechPhone: +1-816-389-5200
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/IPADM563-ARIN
  • OrgTechHandle: AWE13-ARIN
  • OrgTechName: Wendel, Aaron
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWE13-ARIN
  • OrgAbuseHandle: DATAS1-ARIN
  • OrgAbuseName: DataShack Security
  • OrgAbusePhone: +1-816-389-5209
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/DATAS1-ARIN
  • OrgTechHandle: KAISE102-ARIN
  • OrgTechName: kaiser, rebecca
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/KAISE102-ARIN
  • OrgTechHandle: REGIO-ARIN
  • OrgTechName: Region, Bob
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/REGIO-ARIN
  • OrgNOCHandle: IPADM563-ARIN
  • OrgNOCName: IP Admin
  • OrgNOCPhone: +1-816-389-5200
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/IPADM563-ARIN
  • NetRange: 199.168.103.48 - 199.168.103.55
  • CIDR: 199.168.103.48/29
  • NetName: DS-199-168-103-49-55
  • NetHandle: NET-199-168-103-48-1
  • Parent: DSV4-3 (NET-199-168-96-0-1)
  • NetType: Reassigned
  • OriginAS: AS33387
  • Customer: JBSD (C08500285)
  • RegDate: 2022-06-03
  • Updated: 2022-06-03
  • Ref: https://rdap.arin.net/registry/ip/199.168.103.48
  • CustName: JBSD
  • Address: 201 E. 16th st
  • City: North Kansas City
  • StateProv: MO
  • PostalCode: 64116
  • Country: US
  • RegDate: 2022-06-03
  • Updated: 2022-06-03
  • Ref: https://rdap.arin.net/registry/entity/C08500285
  • OrgTechHandle: KRH22-ARIN
  • OrgTechName: HODLE, Kevin Robert
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/KRH22-ARIN
  • OrgTechHandle: IPADM563-ARIN
  • OrgTechName: IP Admin
  • OrgTechPhone: +1-816-389-5200
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/IPADM563-ARIN
  • OrgTechHandle: AWE13-ARIN
  • OrgTechName: Wendel, Aaron
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWE13-ARIN
  • OrgAbuseHandle: DATAS1-ARIN
  • OrgAbuseName: DataShack Security
  • OrgAbusePhone: +1-816-389-5209
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/DATAS1-ARIN
  • OrgTechHandle: KAISE102-ARIN
  • OrgTechName: kaiser, rebecca
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/KAISE102-ARIN
  • OrgTechHandle: REGIO-ARIN
  • OrgTechName: Region, Bob
  • OrgTechPhone: +1-816-256-3031
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/REGIO-ARIN
  • OrgNOCHandle: IPADM563-ARIN
  • OrgNOCName: IP Admin
  • OrgNOCPhone: +1-816-389-5200
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/IPADM563-ARIN

Links to attack logs

awsau-redis-bruteforce-ip-list-2021-09-10