202.142.159.204 Threat Intelligence and Host Information

Share on:
May 02, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Likely Malicious Host 🟠 65/100

Host and Network Information

  • Mitre ATT&CK IDs: T1110 - Brute Force, T1498 - Network Denial of Service
  • Tags: Cyclops, Gamardeon, HermeticWiper, IsaacWiper, PartyTicket, WhisperGate, attack ddos, botnet, ddos, list ips, russia, russian, ukraine, vnc
  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: botscout_1d, botscout_30d, botscout_7d, lashback_ubl, proxylists_1d, proxylists_30d, proxylists_7d, proxz_30d, proxz_7d, socks_proxy_30d, stopforumspam, stopforumspam_180d, stopforumspam_1d, stopforumspam_30d, stopforumspam_365d, stopforumspam_7d, stopforumspam_90d

  • Country: Pakistan
  • Network: AS23750 gerrys information technology pvt ltd.
  • Noticed: 50 times
  • Protcols Attacked: spam
  • Countries Attacked: Russian Federation

Malware Detected on Host

Count: 118 dfb7bd7970dc2af37ee04e953c657657dcca299a51d6efa54b40e8126ccfd021 c19834c775b81ac03f2be3114bab42c225b84359abfa4c1b0913aaa7fc21ec08 c1f0b8d83f2776a614be84a72e62be9ec79c08a02628379eec1b14fb3e0198e6 6a94567681d520ec7c75f6d819a83b812548ee551606fa673980abd66ea3bfda 30e0467dbbc69656170bb4dcd2cdbc764f8c7ab9b4b59e806ed7f56be5719607 4ad1000dade1a8516ce8e59043208ec6a58cf7ada7592ab100ca63f581b01239 4ad1000dade1a8516ce8e59043208ec6a58cf7ada7592ab100ca63f581b01239 f1df1539ef2e37df9e0774e14c988caef2c7350fc946a4cea2c794dfc34de27e c55745a5bd376439e48e401f7d81430643749e2a8c512e32b94bc6c26635ea56 994f4c51f81f68222831661f0dfbed1bef1e192b559e7af9b85cd1b353cb8d29

Open Ports Detected

1723 2000 53 9988

Map

Whois Information

  • inetnum: 202.142.144.0 - 202.142.159.255
  • netname: GERRYSNET
  • descr: Gerrys Information Technology Pvt Ltd.
  • descr: Internet Service Provider
  • descr: Karachi, Pakistan.
  • country: PK
  • org: ORG-GITL1-AP
  • admin-c: SK121-AP
  • tech-c: SK121-AP
  • abuse-c: AG961-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-PK-GERRYS
  • mnt-routes: MAINT-PK-GERRYS
  • mnt-irt: IRT-GERRYS-PK
  • last-modified: 2021-01-11T00:28:38Z
  • irt: IRT-GERRYS-PK
  • address: 3rd Floor,Central Hotel Building, Mereweather,
  • address: Karachi,
  • address: Pakistan
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: MK845-AP
  • tech-c: MK845-AP
  • mnt-by: MAINT-PK-GERRYS
  • last-modified: 2023-01-04T05:17:52Z
  • organisation: ORG-GITL1-AP
  • org-name: Gerrys Information Technology (PVT) Ltd
  • country: PK
  • address: 3rd Floor,Central Hotel Building, Mereweather
  • address: Road
  • phone: +9221-111-123-321
  • fax-no: +92-21-5651050
  • e-mail: [email protected]
  • mnt-ref: APNIC-HM
  • mnt-by: APNIC-HM
  • last-modified: 2017-08-20T22:55:00Z
  • role: ABUSE GERRYSPK
  • address: 3rd Floor,Central Hotel Building, Mereweather,
  • address: Karachi,
  • address: Pakistan
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: MK845-AP
  • tech-c: MK845-AP
  • nic-hdl: AG961-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2023-01-04T05:18:16Z
  • person: Saeed Khalid
  • address: 3rd Floor,Central Hotel Building,
  • address: Mereweather Road,Karachi
  • country: PK
  • phone: +92-21-5651063
  • fax-no: +92-21-5651050
  • e-mail: [email protected]
  • nic-hdl: SK121-AP
  • mnt-by: MAINT-NEW
  • last-modified: 2008-09-04T07:29:11Z
  • route: 202.142.159.0/24
  • descr: Gerrys Route - TWA
  • origin: AS23750
  • mnt-by: MAINT-PK-GERRYS
  • country: PK
  • last-modified: 2010-06-22T14:17:31Z

Links to attack logs

forum-spam-ip-list-2021-07-15 forum-spam-ip-list-2021-07-20 forum-spam-ip-list-2022-03-11 forum-spam-ip-list-2021-02-02