69.49.229.80 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 69.49.229.80 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Likely Malicious Host 🟠 55/100

Host and Network Information

• Mitre ATT&CK IDs: T1078 - Valid Accounts, T1083 - File and Directory Discovery, T1098.004 - SSH Authorized Keys, T1105 - Ingress Tool Transfer, T1110.004 - Credential Stuffing, T1110 - Brute Force

• Tags: brute force, Bruteforce, Brute-Force, cowrie, ssh, SSH

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network: AS46606 unified layer
• Noticed: 7 times
• Protocols Attacked: ssh
• Countries Attacked: Australia
• Passive DNS Results: grizzlyrescue.com airlaunchdrone.org micro51.com cashknox.com airlaunchdrone.com cradytactical.com enrollment-impact.com microdronesystems.com 071957.com celticcapitalproperties.com 6milla.com primordialfood.net cyberdefensefund.com www.keeperlessons.com keeperlessons.com www.wheelinnh.com wheelinnh.com expeditionme.com www.lechuvnelcha.com lechuvnelcha.com www.nabjreport.com nabjreport.com nabjreports.org www.nabjreports.org almostnewforkids.com www.almostnewforkids.com themomeo.com petrowrks.com www.harborlegacypartners.com stacyr.com harborlegacypartners.com www.find-your-jam.com find-your-jam.com teamasic.com www.teamasic.com williamtlowery.com www.williamtlowery.com bodybiohacking.com idyllpictures.com www.idyllpictures.com www.eliseduquette.com eliseduquette.com fullsecsolutions.com www.fullsecsolutions.com nhbuyherepayhere.com aeronutronicdrone.net www.aeronutronicdrone.net www.poohthecavapoo.com michaelaft.com poohthecavapoo.com www.michaelaft.com www.nabjreport.net feyermusic.com nabjreport.net www.feyermusic.com mocoexport.com www.mocoexport.com sarahmedia.com www.sarahmedia.com chatwithstacy.com www.idyllpics.com idyllpics.com droneaeronutronics.net www.droneaeronutronics.net theworldisgrey.com www.theworldisgrey.com nhmotors.com www.aeronauticaldronesystems.org aeronauticaldronesystems.org usefuldrone.com www.usefuldrone.com dj6milla.com www.dj6milla.com www.keeperlesson.com keeperlesson.com kepleringenieria.com.mx www.kepleringenieria.com.mx aeronauticaldronesystems.net www.aeronauticaldronesystems.net www.inspireblackmen.com inspireblackmen.com exploringinnewengland.com expeditionma.com massive27payments.club www.equinemityllc.com equinemityllc.com johanssonfamily.net www.johanssonfamily.net wehemptheworld.com www.wehemptheworld.com www.srpventures.com nabjreports.com srpventures.com www.nabjreports.com www.spoileralert.us spoileralert.us livelaughlovehemp.com www.livelaughlovehemp.com exploringma.com celticcapitalpartners.com www.celticcapitalpartners.com www.madeitfromhemp.com madeitfromhemp.com sarahmedia.net www.sarahmedia.net www.movingpicturescompany.co movingpicturescompany.co www.savedbyhemp.com savedbyhemp.com sarahmedia.org www.sarahmedia.org offroadtraveling.com cyberdefensefund.net www.cyberdefensefund.net toptierbybgt.com pineapplesquish.com www.pineapplesquish.com heatherfawndesigns.com www.heatherfawndesigns.com wgustories.org www.wgustories.org www.hemerawear.com hemerawear.com wellbridgesanmarcos.com www.wellbridgesanmarcos.com homemadecash.biz springcreekvillagesl.com www.springcreekvillagesl.com www.j00bb3i.com j00bb3i.com www.danjohansson.com danjohansson.com aprillandesrealtor.com ssyardcards.com spotlessblocks.com ohgoodiebag.com doyourdamnmarketing.com zira.world snl-properties.com kerricurtisstudio.com splashtimewatersport.com toptiercable.com nilanaturals.com alandesrealty.com threedotbox.com khomeinspection.com bakedjoyblog.com shopslayera.com lesdentistesduvieuxport.ca thegeorgiatrafficlawyer.com ronitshalem.com aprillandesrealestate.com amazongonow.org kmplxroots.com juliantavera.com lifeslessons.org teacherswithteachers.com hemerahair.com alandesrealtor.com positive-neuropsychology.info ashlingquigley.com angermanagementinatlanta.net cannon-masonagency.com tristatesteals.com soreeapparel.com tuskerdigital.com bernal-edd.com dadeandbeyond.com makerztools.com positive-neuropsychology.com petalandpeel.com homegestures.com bakedjoybakery.com realtorregine.com mymightymilk.com thegreenwichgrocer.com jordanwilshaw.com angermanagementinatlanta.org ashling.nyc positive-neuropsychology.net urbaanmisfit.store telehr.org songstarrmusic.com yunquecatering.com noahmays.com gesturehome.com lyandi.com blushnblingboutique.com positiveneuro.org landesrealty.com hushboxxx.com lily-yeh.com ganjababez.com efficientenergystar.com shopbelievenb.com chrisflippo.com covidcleaninganddisinfecting.com positiveneuro.net solarandenergysolutions.com tacklenbeauty.com solarandenergyservices.com regie911.com z1stop.com luandemjewelry.com lorintimates.com zira.cloud sutsd.com rwcollective.com finallyfullblog.com marylandsitesolutions.com djaytv.com melissadotterman.com coachwithabbey.com lesdentistesduvieuxport.com lesdentistesduvieuxportdemontreal.ca younique.studio lesdentistesduvieuxportdemontreal.com trusting-hermann.69-49-229-80.plesk.page

Open Ports Detected

22 443 80

Map

Whois Information

• NetRange: 69.49.224.0 - 69.49.255.255
• CIDR: 69.49.224.0/19
• NetName: OPENTRANSFER-ECOMMERCE
• NetHandle: NET-69-49-224-0-1
• Parent: NET69 (NET-69-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS32392
• Organization: Newfold Digital, Inc. (EIG-12)
• RegDate: 2003-05-27
• Updated: 2017-10-23
• Ref: https://rdap.arin.net/registry/ip/69.49.224.0
• OrgName: Newfold Digital, Inc.
• OrgId: EIG-12
• Address: 5535 Gate Parkway
• City: Jacksonville
• StateProv: FL
• PostalCode: 32256
• Country: US
• RegDate: 2005-02-07
• Updated: 2023-11-16
• Ref: https://rdap.arin.net/registry/entity/EIG-12
• OrgAbuseHandle: EIGAB-ARIN
• OrgAbuseName: eig-abuse
• OrgAbusePhone: +1-781-852-3200
• OrgAbuseEmail: eig-abuse@endurance.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/EIGAB-ARIN
• OrgTechHandle: ENO74-ARIN
• OrgTechName: EIG Network Operations
• OrgTechPhone: +1-781-852-3200
• OrgTechEmail: eig-noc@endurance.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ENO74-ARIN
• OrgNOCHandle: ENO74-ARIN
• OrgNOCName: EIG Network Operations
• OrgNOCPhone: +1-781-852-3200
• OrgNOCEmail: eig-noc@endurance.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/ENO74-ARIN

Links to attack logs

digitaloceanlondon-ssh-bruteforce-ip-list-2024-07-30 digitaloceansingapore-ssh-bruteforce-ip-list-2024-07-18 digitaloceansingapore-ssh-bruteforce-ip-list-2024-08-22 vultrmadrid-ssh-bruteforce-ip-list-2024-07-17