89.208.104.69 Threat Intelligence and Host Information

Share on:
Mar 31, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Possibly Malicious Host 🟢 26/100

Host and Network Information

  • Mitre ATT&CK IDs: T1110 - Brute Force
  • Tags: Brute-Force, Bruteforce, SSH, brute force, ssh

  • View other sources: Spamhaus VirusTotal

  • Country: Russian Federation
  • Network: AS12695 llc digital network
  • Noticed: 3 times
  • Protcols Attacked: ssh
  • Countries Attacked: Australia
  • Passive DNS Results: lol.malfin.site 9111.malfin.site 911.malfin.site 103103.malfin.site cp.malfin.site message.malfin.site popoop.malfin.site popl.malfin.site lool.malfin.site keeper.malfin.site www.yii2.malfin.site yii2.malfin.site 92.malfin.site 123.malfin.site www.123.malfin.site test.malfin.site www.test.malfin.site vizart.malfin.site folk45.malfin.site xn–45-6kchzf2dq.xn–p1ai api.vizart.malfin.site

Open Ports Detected

100 10000 10001 102 1022 1025 1028 1029 104 10443 10554 106 1063 1080 1099 11 110 11000 111 1111 11112 11210 11211 113 11300 1167 119 1200 12000 121 1234 1290 13 131 1311 1344 1366 139 14265 143 1433 1471 15 1500 1521 1599 1604 1650 1660 17 1723 175 179 18245 1883 19000 19071 1947 195 1950 1951 1962 1990 2000 20000 2003 2006 2008 2010 2021 2022 2048 2049 2052 20547 2056 2059 2062 2063 2064 2065 2067 2068 2069 2070 2077 2080 2081 2087 2095 21 2100 2111 2121 2126 21379 2154 2181 22 2201 221 2211 2220 2222 22222 2225 2259 2266 2320 2345 2375 2379 2404 2443 2455 25001 25105 2549 2551 2552 2556 25565 2558 2559 2563 2567 2568 2570 2572 2598 26 2602 264 2701 27015 27017 2761 2762 2806 3001 3049 3050 3051 3054 3056 3058 3059 3062 3063 3068 3069 3070 3076 3077 3078 3080 3082 3083 3084 3085 3087 3090 3094 3096 3101 3102 3104 3109 3110 3113 3115 3117 32400 3260 3268 32764 3301 3306 33060 3310 3337 3388 3389 3400 3402 3404 3406 3409 3412 3479 35000 3503 3521 3548 3552 3555 3556 3561 3563 3567 3569 3690 37777 3780 3790 3792 38 3838 389 3922 3950 3954 4000 4001 4010 4022 4063 4064 4117 41800 4242 427 4282 43 4321 4369 44158 443 444 4444 4445 445 44818 450 4500 4506 4550 4643 465 4700 4782 4786 4808 4840 4848 4899 4949 4999 5000 50000 5003 5005 5007 5009 5010 5025 503 5050 5122 5201 5269 5280 52869 53 5357 5400 541 54138 5432 5500 55000 5542 55442 555 55554 5560 5590 5593 5594 5595 5596 5599 5600 5602 5606 5672 5800 5822 5853 5858 587 5901 5906 5907 593 5984 5985 6000 6001 6002 6003 6004 6080 6161 61613 6308 6379 6510 6512 6560 6565 6580 6600 6602 6603 6622 6633 6650 6653 666 6666 6667 6668 6697 6748 675 6887 6955 7000 7002 7003 7004 7014 7070 7080 7081 7171 7443 7445 7465 7474 7493 7500 7535 7548 7634 7654 7700 771 7778 7788 7887 789 7999 80 800 8000 8004 8006 8009 801 8010 8012 8018 8023 8025 8027 8028 8034 8036 8037 8040 8042 8047 8049 8051 8052 8055 8056 8057 806 8069 8071 8081 8085 8086 8087 8090 8091 8092 8095 8096 8097 8098 8099 8100 8105 8106 8110 8111 8182 8184 8190 8200 8237 8238 8249 8251 8282 83 8333 8401 8402 8403 8406 8408 8411 8412 8413 8414 8416 8419 8420 8421 8422 8423 8425 8426 8429 843 8431 8442 8445 8446 8545 8553 8554 8575 86 8623 8637 8649 8663 8666 87 8728 8767 8779 8787 8788 8789 8790 8801 8802 8803 8804 8811 8813 8815 8816 8818 8819 8822 8825 8826 8827 8828 8830 8832 8833 8834 8835 8836 8837 8838 8839 8840 8841 8842 8844 8846 8848 8849 8850 8851 8853 8855 8856 8857 8858 8859 8860 8861 8862 8865 8867 8872 8873 8874 8876 8878 8879 888 8881 8885 8887 8888 8889 8969 8988 8989 8990 8991 9000 9003 9007 9009 9013 9015 9019 902 9020 9023 9024 9025 9026 9027 9031 9032 9033 9034 9035 9036 9039 9043 9044 9045 9048 9049 9050 9051 9080 9082 9092 9093 9096 9097 9098 9100 9101 9102 9103 9104 9105 9109 9111 9119 9151 9160 9199 9201 9206 9207 9209 9210 9212 9214 9216 9218 9220 9221 9222 9251 9295 9299 9301 9302 9306 9307 9308 9309 9310 9311 9389 9418 943 9445 9500 9527 9530 9595 9600 9606 9663 9682 9704 9743 9761 98 9800 9861 9898 9899 990 992 993 995 9950 9955 9966 9988 9990 9992 9994 9998 9999

Map

Whois Information

  • inetnum: 89.208.104.0 - 89.208.107.255
  • netname: NL-AEZA-NETWORK
  • descr: AEZA GROUP Ltd
  • geofeed: https://aeza.net/static/ipv4_f.csv
  • geoloc: 52.3559446 4.9531184
  • mnt-domains: aeza-mnt
  • mnt-routes: aeza-mnt
  • country: NL
  • org: ORG-AGL38-RIPE
  • admin-c: AN32681-RIPE
  • tech-c: AN32681-RIPE
  • status: ASSIGNED PA
  • mnt-by: DN-MNT
  • created: 2009-03-16T11:16:53Z
  • last-modified: 2023-02-27T08:06:12Z
  • organisation: ORG-AGL38-RIPE
  • org-name: AEZA GROUP LLC
  • org-type: OTHER
  • address: 350001, Krasnodar, st. im. Mayakovskogo, b. 160, office 2.4
  • abuse-c: AA38875-RIPE
  • mnt-ref: aeza-mnt
  • mnt-ref: DN-MNT
  • mnt-ref: VF1-MNT
  • mnt-ref: DATAMAX-M
  • mnt-by: aeza-mnt
  • created: 2021-11-23T13:59:30Z
  • last-modified: 2023-01-06T12:18:43Z
  • role: Aeza Network
  • address: 350001, Krasnodar, st. im. Mayakovskogo, b. 160, office 2.4
  • nic-hdl: AN32681-RIPE
  • mnt-by: aeza-mnt
  • created: 2021-10-13T17:49:21Z
  • last-modified: 2022-08-02T11:43:36Z
  • route: 89.208.104.0/22
  • origin: AS210644
  • mnt-by: aeza-mnt
  • mnt-by: AEZA-NETWORK-MNT
  • created: 2022-08-11T09:07:50Z
  • last-modified: 2022-08-11T09:07:50Z

Links to attack logs

vultrmadrid-ssh-bruteforce-ip-list-2023-03-30