70.39.149.147 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 70.39.149.147 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network: AS54641 inmotion hosting inc.
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: vendsvendor.com mhelgar.com www.mhelgar.com www.leisure-comfort.com www.samfestbehavioralhomecarellc.com sofreshandsocleaning.com www.sofreshandsocleaning.com leisure-comfort.com lintocfoundation.org www.lintocfoundation.org www.allinonefoundation.com www.davisandhaynes.com www.worldleadinginnovations.com refinishingprimebath.com www.refinishingprimebath.com www.xtream4u.com www.partyplusllc.org partyplusllc.org www.partyplussllc.org partyplussllc.org www.nocobuildings.com samfestbehavioralhomecarellc.com worldleadinginnovations.com gfdpartners.com www.gfdpartners.com www.reipremier.com www.sanaaguniversity.org sanaaguniversity.org creatingopportunities.net nocobuildings.com www.proavresources.com easi.st www.easi.st www.butterflyswingband.com www.birdcitylawncare.com birdcitylawncare.com www.mbacompany.pro reipremier.com xtream4u.com www.reipremierrealty.com reipremierrealty.com proavresources.com allinonefoundation.com rmzaccountingsvc.com aishajanitorial.com www.aishajanitorial.com www.precioussoulsorphanage.org precioussoulsorphanage.org krafttreeemporium.com www.krafttreeemporium.com www.awsallacheat.net awsallacheat.net chtbusiness.com www.chtbusiness.com kmmcompleteservicesllc.com gearedforperformance.com www.gearedforperformance.com donerightelectric-swmo.com www.donerightelectric-swmo.com houseofmercy.faith www.houseofmercy.faith www.hesmorethanenough.com hesmorethanenough.com harborviewplumbing.com www.harborviewplumbing.com www.windsorcricketclubnj.org www.chosencontractorsllc.com chosencontractorsllc.com adorelhr.com www.adorelhr.com bereavementandglit.com www.bereavementandglit.com bonafideint.com www.bonafideint.com www.raisepros.co raisepros.co www.refreshcarz.com refreshcarz.com www.checkluluresources.com checkluluresources.com www.prestigeresumeservicesllc.com prestigeresumeservicesllc.com cpcalendars.postrealtyinc.com mbacompany.pro postrealtyinc.com www.postrealtyinc.com www.sturdymedicalstaffing.com sturdymedicalstaffing.com windsorcricketclubnj.org www.asmusseas.com www.creativedirectorsclub.in www.nicksexteriors.com www.northreadingfamilydentistry.com www.instituteofantiagingandwellness.com www.alayjiahinc.com professionalresumeservicesllc.com www.professionalresumeservicesllc.com www.daytoncardiologyconsultants.com www.daytoncardio.com daytoncardio.com christianfaithbaptistchurch.com www.christianfaithbaptistchurch.com www.independenceshredding.com www.tltcommandsol.com tltcommandsol.com allinlimousine.com www.allinlimousine.com www.emergingleaderslearningcenter.com iomechanical.com www.iomechanical.com www.utopyaspeaks.com www.rivernile.co www.superlifeinsurances.com www.solokoyaservices.com www.tltcommansol.com tltcommansol.com www.springcares.com www.gypsyscelestialgarden.com www.preventchildabusect.org www.hummingbirdinternational.net www.versityle.net www.tuffpestcontrol.com www.telanp.com www.premierlogisticservice.com www.jrnonemergencytransport.com www.doublearrowvetwa.com www.rmcapitalanalytics.com www.nlrgroup.net www.judahdevelopmentllc.com www.boltg.com www.capitalglassdistributor.com www.backinmotionplus.com www.alwcd.ae www.ajkcoaches.com www.weldoneevents.com www.princetonpainters.net www.acceleratenarise.org www.sonovueimaging.com residencechoicemanagement.com www.residencechoicemanagement.com www.marinepowermaldives.com www.southernfoodconcepts.com ondeckroofing.com www.ondeckroofing.com doublearrowvetwa.com whiteboxfabrication.com rivernile.co solokoyaservices.com southernfoodconcepts.com davisandhaynes.com cpcontacts.superlifeinsurances.com cpcalendars.superlifeinsurances.com cpcalendars.pcstore.ae pcstore.ae cpcontacts.pcstore.ae cpcontacts.daytoncardiologyconsultants.com daytoncardiologyconsultants.com cpcalendars.daytoncardiologyconsultants.com cpcalendars.acceleratenarise.org acceleratenarise.org cpcontacts.acceleratenarise.org cpcalendars.gypsyscelestialgarden.com gypsyscelestialgarden.com cpcontacts.telanp.com cpcalendars.telanp.com cpcalendars.emergingleaderslearningcenter.com cpcontacts.emergingleaderslearningcenter.com cpcontacts.tiik.org cpcalendars.tiik.org tiik.org cpcalendars.nicksexteriors.com nicksexteriors.com cpcontacts.nicksexteriors.com cpcalendars.weldoneevents.com cpcontacts.weldoneevents.com cpcontacts.rmcapitalanalytics.com cpcalendars.rmcapitalanalytics.com www.reeserconsulting.com reeserconsulting.com jrnonemergencytransport.com cpcalendars.jrnonemergencytransport.com cpcontacts.jrnonemergencytransport.com cpcalendars.tuffpestcontrol.com cpcontacts.tuffpestcontrol.com cpcontacts.mdrsolutions1720.com mdrsolutions1720.com cpcalendars.mdrsolutions1720.com cpcontacts.graphicdesignforinnercity.org cpcalendars.graphicdesignforinnercity.org cpcontacts.butterflyswingband.com cpcalendars.butterflyswingband.com movementprojectpt.com sonovueimaging.com thebarvida.com cpcontacts.judahdevelopmentllc.com cpcalendars.judahdevelopmentllc.com cpcalendars.alwcd.ae cpcontacts.alwcd.ae alwcd.ae cpcalendars.pinnacleassetmanagers.com cpcontacts.pinnacleassetmanagers.com pinnacleassetmanagers.com cpcalendars.hummingbirdinternational.net cpcontacts.hummingbirdinternational.net cpcalendars.d5consultinggroupllc.com cpcontacts.d5consultinggroupllc.com cpcontacts.alayjiahinc.com cpcalendars.alayjiahinc.com cpcalendars.ajkcoaches.com cpcontacts.ajkcoaches.com utopyaspeaks.com cpcontacts.utopyaspeaks.com cpcalendars.utopyaspeaks.com cpcalendars.versityle.net versityle.net cpcontacts.versityle.net cpcalendars.sonographysolutionsllc.com cpcontacts.sonographysolutionsllc.com cpcalendars.resortntwkintl.com cpcontacts.resortntwkintl.com cpcontacts.principalpropertymanagement.com cpcalendars.principalpropertymanagement.com cpcalendars.princetonpainters.net cpcontacts.princetonpainters.net cpcontacts.northreadingfamilydentistry.com cpcalendars.northreadingfamilydentistry.com instituteofantiagingandwellness.com cpcontacts.golfrehab.net cpcalendars.golfrehab.net cpcontacts.eaglegroup.kr cpcalendars.eaglegroup.kr cpcalendars.creativedirectorsclub.in cpcontacts.creativedirectorsclub.in cpcalendars.capitalglassdistributor.com cpcontacts.capitalglassdistributor.com cpcalendars.brotherstruckingcompany.com cpcontacts.brotherstruckingcompany.com cpcontacts.brioschicken.com cpcalendars.brioschicken.com cpcalendars.backinmotionplus.com cpcontacts.backinmotionplus.com cpcontacts.atyapparel.com cpcalendars.atyapparel.com cpcontacts.abokocleaningservices.com cpcalendars.abokocleaningservices.com northreadingfamilydentistry.com telanp.com sonographysolutionsllc.com emergingleaderslearningcenter.com weldoneevents.com marinepowermaldives.com www.commanderpestcontrolsvc.com commanderpestcontrolsvc.com thedrsoni.com chairswithastory.com corevaluesservices.com graphicdesignforinnercity.org resortntwkintl.com anytrvl.com boltg.com accidentandinjurysolutions.com springcares.com gaulogisticssoultions.com atyapparel.com asmusseas.com www.grimaldilawoffice.com grimaldilawoffice.com golfrehab.net primehrservices.net premierlogisticservice.com principalpropertymanagement.com tuffpestcontrol.com creativedirectorsclub.in rmcapitalanalytics.com eaglegroup.kr capitalglassdistributor.com gaulogistics.com preventchildabusect.org d5consultinggroupllc.com independenceshredding.com alayjiahinc.com brioschicken.com butterflyswingband.com superlifeinsurances.com backinmotionplus.com ajkcoaches.com valtoripizzakitchen.com princetonpainters.net hummingbirdinternational.net abokocleaningservices.com www.abokocleaningservices.com www.convergentmissions.com convergentmissions.com judahdevelopmentllc.com signetbuilders.com sdproheatairco.com whatistruthmin.org millsconstructionllc.com naturalsoulyorkshire.com jonartzproduction.com arjforwarding.co.uk www.arjforwarding.co.uk fashioninspir.com nlrgroup.net boldfurnishing.com talentdimensions.today brotherstruckingcompany.com

Malware Detected on Host

Count: 1 d0940848e075544b1b9012e2036a9d48968b5f4f6a73c59f3e4d18b2513df54d

Open Ports Detected

110 2082 2083 2087 21 2222 25 3306 443 465 53 587 80 993 995

CVEs Detected

CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408

Map

Whois Information

• NetRange: 70.39.128.0 - 70.39.255.255
• CIDR: 70.39.128.0/17
• NetName: NETBLK-PACKETEXCHANGE-V4-10
• NetHandle: NET-70-39-128-0-1
• Parent: NET70 (NET-70-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS25973
• Organization: PacketExchange, Inc (PACKE-25)
• RegDate: 2009-11-24
• Updated: 2012-02-24
• Ref: https://rdap.arin.net/registry/ip/70.39.128.0
• OrgName: PacketExchange, Inc
• OrgId: PACKE-25
• Address: GTT Communications, Inc.
• Address: 8484 Westpark Drive
• Address: Suite 720
• City: McLean
• StateProv: VA
• PostalCode: 22102
• Country: US
• RegDate: 2008-02-26
• Updated: 2021-02-28
• Ref: https://rdap.arin.net/registry/entity/PACKE-25
• OrgTechHandle: GNOC16-ARIN
• OrgTechName: GTT Network Operations Center
• OrgTechPhone: +1-703-442-5500
• OrgTechEmail: noc@gtt.net
• OrgTechRef: https://rdap.arin.net/registry/entity/GNOC16-ARIN
• OrgAbuseHandle: GAD46-ARIN
• OrgAbuseName: GTT Abuse Department
• OrgAbusePhone: +1-703-442-5500
• OrgAbuseEmail: abuse@gtt.net
• OrgAbuseRef: https://rdap.arin.net/registry/entity/GAD46-ARIN
• OrgTechHandle: AS3251-ARIN
• OrgTechName: AS3257 Netguard
• OrgTechPhone: +49 6102 8235 381
• OrgTechEmail: netguard@gtt.net
• OrgTechRef: https://rdap.arin.net/registry/entity/AS3251-ARIN
• OrgNOCHandle: GNOC16-ARIN
• OrgNOCName: GTT Network Operations Center
• OrgNOCPhone: +1-703-442-5500
• OrgNOCEmail: noc@gtt.net
• OrgNOCRef: https://rdap.arin.net/registry/entity/GNOC16-ARIN
• NetRange: 70.39.144.0 - 70.39.151.255
• CIDR: 70.39.144.0/21
• NetName: IMH-IAD
• NetHandle: NET-70-39-144-0-1
• Parent: NETBLK-PACKETEXCHANGE-V4-10 (NET-70-39-128-0-1)
• NetType: Reallocated
• OriginAS: AS25973
• Organization: InMotion Hosting, Inc. (INMOT-1)
• RegDate: 2011-02-16
• Updated: 2020-10-26
• Ref: https://rdap.arin.net/registry/ip/70.39.144.0
• OrgName: InMotion Hosting, Inc.
• OrgId: INMOT-1
• Address: 555 S Independence Blvd
• City: Virginia Beach
• StateProv: VA
• PostalCode: 23452
• Country: US
• RegDate: 2008-06-03
• Updated: 2022-07-21
• Ref: https://rdap.arin.net/registry/entity/INMOT-1
• OrgTechHandle: NETWO9334-ARIN
• OrgTechName: Network Operations
• OrgTechPhone: +1-757-693-5293
• OrgTechEmail: noc@inmotionhosting.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NETWO9334-ARIN
• OrgAbuseHandle: SYSTE299-ARIN
• OrgAbuseName: Systems Team
• OrgAbusePhone: +1-888-321-4678
• OrgAbuseEmail: abuse@inmotionhosting.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/SYSTE299-ARIN

Links to attack logs

****** ****** ******