8.29.155.200 Threat Intelligence and Host Information

Dec 01, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 8.29.155.200 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 30/100

Host and Network Information

  • Tags: Scanner, scanning, smtp, ssh, tcp, Webattack

  • JARM: 2ad2ad0002ad2ad00042d42d0000005d86ccb1a0567e012264097a0315d7a7

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: blocklist_net_ua

  • Country: United States
  • Network: AS36444 liquid web l.l.c
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Countries Attacked: Germany
  • Passive DNS Results: ctbackup.com bauguessbuilds.com www.tailgatecountry.com 1fe4d0259f.nxcli.io tailgatecountry.com ppimobileapi-dev.processdistillery.com ohiovilleboro.org www.ohiovilleboro.org fafd7158b2.nxcli.io 0fbe46e683.nxcli.io 05c3e2ef7f.nxcli.io dylanbauguessconstruction.com www.dylanbauguessconstruction.com a0d25a85d2.nxcli.io 8f719c9fa4.nxcli.io 520cf7083b.nxcli.io marketplace.healthmeans.com 36ab901be2.nxcli.io a9168c4029.nxcli.io www.crystalkeyproperties.com crystalkeyproperties.com www.jumarkanbrand.com.br jumarkanbrand.com.br a90276d46b.nxcli.io texasbusiness.org b12ab531e4.nxcli.io www.texasbusiness.org dealtastic.gencreative.com 8cacbc372e.nxcli.io a317d3bf8b.nxcli.io 4494497fae.nxcli.io mig.gagglestrollers.com f5a48f5557.nxcli.io 044a9c5206.nxcli.io e183711083.nxcli.io jendayforjudge.com www.jendayforjudge.com 54082b7037.nxcli.io 1624e4b3a9.nxcli.net www.clearpathmaine.com www.barbarafranz.com 02fbb2e06f.nxcli.io www.punchbugmarketing.com 7ec5e7b618.nxcli.io punchbugmarketing.com www.lsuphimu.com stage.gagglestrollers.com ad07fc9076.nxcli.io b5168d7ef2.nxcli.io clearpathmaine.com brandtech.lumenvo.com lsuphimu.com 5b42397796.nxcli.net sorevasesponge.nxcli.net bc714baae7.nxcli.net center4solutions.org armorybotting.com www.armorybotting.com www.primavr.com www.bitchinoneclicks.com 0ed812254c.nxcli.net nebulousmeasure.nxcli.net bitchinoneclicks.com www.poocrew.com csvbelleville.com tallappliance.nxcli.net 64225f3d1e.nxcli.net www.michaeldiamondstein.com michaeldiamondstein.com noisyhistoryquilt.nxcli.net fc5874d1c9.nxcli.net www.etapetes.com adventurousfriends.nxcli.net 6b9a07d3cd.nxcli.net www.ctraceworx.com ctraceworx.com www.paesanospastahouse.com paesanospastahouse.com d373cba883.nxcli.net sarcasticnation.nxcli.net www.venezaconstrucao.com.br venezaconstrucao.com.br 33af2f3afa.nxcli.net knottybottlebirds.nxcli.net venezamais.com.br www.venezamais.com.br tishalandrum.com www.tishalandrum.com 2a5ed5d0aa.nxcli.net abidingshapeneedle.nxcli.net cynicalspotdaughter.nxcli.net 544ee825da.nxcli.net powerweek.dotankdo.com e01d38a11c.nxcli.net distraughtelbow.nxcli.net daffyweekfriend.nxcli.net 0b51281fea.nxcli.net etapetes.com revolvingboundary.nxcli.net 6e02506dc2.nxcli.net d3fc387559.nxcli.net knownwomenpush.nxcli.net www.port82.com port82.com tastevisalia.port82.com www.pinemountain.org pinemountain.org insistentprice.nxcli.net 402a80ff43.nxcli.net adaptablefinger.nxcli.net f02d6ffac8.nxcli.net fuzionathleticsurfaces.com b4f5044963.nxcli.net 282491a18a.nxcli.net energi.world www.energi.world www.punkhazard.com punkhazard.com e6d6917904.nxcli.net 979cb05863.nxcli.net staging.energi.world 684c75f4a9.nxcli.net a97d495212.nxcli.net 86d21b8af9.nxcli.net static.genlabdirect.com media.genlabdirect.com f499fc604e.nxcli.net redesign.aquaa.com 567275bfc4.nxcli.net ee39d9d1de.nxcli.net stage.vanlock.com bf78ae565a.nxcli.net 472bf86686.nxcli.net upgrade.genlabdirect.com 4630878251.nxcli.net processdistillery.com www.processdistillery.com c998ab106c.nxcli.net e4de28c634.nxcli.net 518e8937d8.nxcli.net 3c84dd8370.nxcli.net www.gkcollectors.com fb8719e0e0.nxcli.net gkcollectors.com 3bf94bd196.nxcli.net pmtnwp.adsmithdev.com 0781f2e492.nxcli.net www.cbdregistereddietitian.com cbdregistereddietitian.com 76b7fd00c7.nxcli.net taylor.lumenvo.com 756492848a.nxcli.net 0350b4fb69.nxcli.net rollingforksvineyards.com www.rollingforksvineyards.com 371769dea0.nxcli.net directory.ohiobiz.com poocrew.com 4c7bcce2b3.nxcli.net f2b0ef5493.nxcli.net 12211c5c4f.nxcli.net skellyskills.com www.skellyskills.com d5c07dc528.nxcli.net c319ed28cc.nxcli.net barbarafranz.com 37e1067d3c.nxcli.net dd785e21fc.nxcli.net cf8f0b1e6b.nxcli.net 5211bca9c2.nxcli.net 726c040214.nxcli.net 46f0801a30.nxcli.net buildingpawsitivefuture.com www.buildingpawsitivefuture.com 6721cfcc0f.nxcli.net stage.buildingpawsitivefuture.com e576909c6d.nxcli.net 72d5b0026c.nxcli.net www.livelongstayyoung.com livelongstayyoung.com dallofinancial.com 02906c2de7.nxcli.net ceraudo.com www.ceraudo.com 5d7436ff5a.nxcli.net efe847e86a.nxcli.net www.taylorscientific.com taylorscientific.com 432a3e981f.nxcli.net www.leasenet1.com ea4b705109.nxcli.net leasenet1.com hrdevelopmentinfo.com stories.mysticseaport.org 1cdd386c48.nxcli.net 97ff0b8c36.nxcli.net www.daddygotcoffee.com 348d03488b.nxcli.net 53c46fe831.nxcli.net a58ac14706.nxcli.net ajicscienceintopractice.org cloudhost-2912993.us-midwest-1.nxcli.net www.theimaginativeconservative.org theimaginativeconservative.org 28702ecd34.nxcli.net louisvilleconcretepros.com 5341b02364.nxcli.net f3f7ee0f50.nxcli.net 64cd0f840a.nxcli.net 47abc84d57.nxcli.net 7ccf1321cb.nxcli.net 5408aea1d7.nxcli.net d1cb9fb2fb.nxcli.net 2c0f5da9a1.nxcli.net d900e338c6.nxcli.net 14fd6396d0.nxcli.net bonniemarting.com www.bonniemarting.com aquaa.com www.aquaa.com 8eccf0991e.nxcli.net www.emscoscientific.com 1afd56bfdd.nxcli.net westborovillage.com 6d71757c60.nxcli.net www.tutoringinatx.com tutoringinatx.com www.brandtech.com brandtech.com 611a4123cd.nxcli.net www.atlantictirechampionships.com atlantictirechampionships.com store.cdmgirlsvolleyball.com 55b992fb5a.nxcli.net cc9c1379df.nxcli.net staff.mysticseaport.org blog.all-rite.com cdmgirlsvolleyball.com www.cdmgirlsvolleyball.com primavr.com 7c3b1053de.nxcli.net www.sientta.com sientta.com 2c0045dbb1.nxcli.net d032690db8.nxcli.net www.nuevel.com nuevel.com gstmiworks.org ba8cd76237.nxcli.net uncasgas.com www.uncasgas.com faa7f8bafb.nxcli.net 1a5f5c4c99.nxcli.net c05fc6a891.nxcli.net 83b3ee35a3.nxcli.net 6912399834.nxcli.net f5b498e982.nxcli.net 758e3da750.nxcli.net 43d6a908a1.nxcli.net 4caba65933.nxcli.net fb1141777e.nxcli.net e51a8d203b.nxcli.net 8fff122f55.nxcli.net 2dc092d413.nxcli.net a979e48d60.nxcli.net heimadecor.is www.heimadecor.is families.andrewjosephportraits.com b70bc34af1.nxcli.net 521ee4490c.nxcli.net 48dda397e9.nxcli.net 24e1799274.nxcli.net 5a2685467f.nxcli.net ruttledg.com enviropropane.com cab992cd19.nxcli.net 842ddb24e2.nxcli.net a2aaa35e17.nxcli.net firstland.us www.firstcigaraccessories.com firstcigaraccessories.com c666ecd1de.nxcli.net 4b1c4ed22f.nxcli.net cc396e9b45.nxcli.net 7e1b37264c.nxcli.net daddygotcoffee.com metalbuildingsgreenvillesc.com 14c5d9bbc0.nxcli.net 06a51a4448.nxcli.net 11c8cf5e76.nxcli.net 4d62d16de1.nxcli.net a18f334165.nxcli.net 17b2de7a9e.nxcli.net 9ced2cd0f1.nxcli.net bc36b32d61.nxcli.net nftstories.com www.nftstories.com edb93a120a.nxcli.net f9ddaf3797.nxcli.net 754bf6f839.nxcli.net d4a2ad8894.nxcli.net 96410971a6.nxcli.net 28408efc9a.nxcli.net 590c4d03a6.nxcli.net b46e3aa98a.nxcli.net www.enviropropane.com ergservices.com www.ergservices.com csvbelleville.myosm.ca 4c1bea6f1e.nxcli.net 8e78f3326c.nxcli.net 0f5819de1a.nxcli.net 883af72c26.nxcli.net 21ae33417c.nxcli.net 2eeada0187.nxcli.net 3437a210df.nxcli.net bd921e4091.nxcli.net intranet.redwayinsurance.com c54348b350.nxcli.net 7ea0992812.nxcli.net 00b6c7fea9.nxcli.net 132c7bbb51.nxcli.net 8f17f63f85.nxcli.net signpanels.com 3fb1408004.nxcli.net cloudhost-2009104.us-midwest-1.nxcli.net affexpert.com stackthatmoney.com

Open Ports Detected

443 80

Map

Whois Information

  • NetRange: 8.0.0.0 - 8.127.255.255
  • CIDR: 8.0.0.0/9
  • NetName: LVLT-ORG-8-8
  • NetHandle: NET-8-0-0-0-1
  • Parent: NET8 (NET-8-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: Level 3 Parent, LLC (LPL-141)
  • RegDate: 1992-12-01
  • Updated: 2018-04-23
  • Ref: https://rdap.arin.net/registry/ip/8.0.0.0
  • OrgName: Level 3 Parent, LLC
  • OrgId: LPL-141
  • Address: 100 CenturyLink Drive
  • City: Monroe
  • StateProv: LA
  • PostalCode: 71203
  • Country: US
  • RegDate: 2018-02-06
  • Updated: 2023-08-10
  • Comment: USAGE OF IP SPACE MUST COMPLY WITH OUR ACCEPTABLE USE POLICY:
  • Comment: https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
  • Comment:
  • Comment:
  • Comment: 1. You are permitted to route the Lumen IP prefixes listed via Public BGP to your alternate ISP from the designated ASN. Any other ASN originating the prefix listed is forbidden.
  • Comment: 2. The Lumen IP prefixes listed can be routed via Public BGP to your alternate ISP as long as you remain an active customer with Lumen and continue to route the prefixes over at least one Lumen Internet circuit without significant traffic engineering.
  • Comment: 3. Should your Internet services with Lumen be discontinued, Lumen reserves the right to have your alternate ISP terminate the routing of the Lumen IP prefixes without advanced notification, should you fail to do so.
  • Comment: 4. All IP Addresses assigned or allocated by Lumen to an end-user (customer or ISP) shall be considered non-portable and will be reclaimed by Lumen upon service termination.
  • Comment: 5. Lumen reserves the right to conduct audits to ensure the LOA conditions are being met.
  • Comment: 6. Usage of IP space must comply with our AUP https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
  • Comment:
  • Comment: Our looking glass is located at: https://lookingglass.centurylink.com/
  • Comment:
  • Comment: For subpoena or court order please fax 844.254.5800 or refer to our Trust & Safety page:
  • Comment: https://www.lumen.com/en-us/about/legal/trust-center/trust-and-safety.html
  • Comment:
  • Comment: For abuse issues, please email abuse@aup.lumen.com
  • Comment: All abuse reports MUST include:
  • Comment: * src IP
  • Comment: * dest IP (your IP)
  • Comment: * dest port
  • Comment: * Accurate date/timestamp and timezone of activity
  • Comment: * Intensity/frequency (short log extracts)
  • Comment: * Your contact details (phone and email)
  • Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
  • Ref: https://rdap.arin.net/registry/entity/LPL-141
  • OrgAbuseHandle: LAC56-ARIN
  • OrgAbuseName: L3 Abuse Contact
  • OrgAbusePhone: +1-877-453-8353
  • OrgAbuseEmail: abuse@level3.com
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/LAC56-ARIN
  • OrgTechHandle: APL7-ARIN
  • OrgTechName: ADMIN POC LVLT
  • OrgTechPhone: +1-877-453-8353
  • OrgTechEmail: ipadmin@centurylink.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/APL7-ARIN
  • NetRange: 8.29.152.0 - 8.29.159.255
  • CIDR: 8.29.152.0/21
  • NetName: LVLT-8-29-152-0-21
  • NetHandle: NET-8-29-152-0-1
  • Parent: LVLT-ORG-8-8 (NET-8-0-0-0-1)
  • NetType: Reassigned
  • OriginAS:
  • Organization: Liquid Web, L.L.C (LQWB)
  • RegDate: 2021-01-28
  • Updated: 2021-01-28
  • Ref: https://rdap.arin.net/registry/ip/8.29.152.0
  • OrgName: Liquid Web, L.L.C
  • OrgId: LQWB
  • Address: 4210 Creyts Rd.
  • City: Lansing
  • StateProv: MI
  • PostalCode: 48917
  • Country: US
  • RegDate: 2001-07-20
  • Updated: 2020-04-29
  • Ref: https://rdap.arin.net/registry/entity/LQWB
  • OrgTechHandle: IPADM47-ARIN
  • OrgTechName: IP Administrator
  • OrgTechPhone: +1-800-580-4985
  • OrgTechEmail: ipadmin@liquidweb.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/IPADM47-ARIN
  • OrgAbuseHandle: ABUSE551-ARIN
  • OrgAbuseName: Abuse
  • OrgAbusePhone: +1-800-580-4985
  • OrgAbuseEmail: abuse@liquidweb.com
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE551-ARIN

Links to attack logs

****** ****** ******

Share on: