92.204.139.111 Threat Intelligence and Host Information

Share on:
Nov 25, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 92.204.139.111 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • JARM: 3fd3fd00000000000043d3fd3fd43d1f95be2da273ef2c8a48299dbff3c2cf

  • View other sources: Spamhaus VirusTotal

  • Country: United States
  • Network: AS398108 godaddy.com llc
  • Noticed: 1 times
  • Protcols Attacked: mysql sip
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: registry.smartdici.com bwallsandsons.com www.bwallsandsons.com www.cedarcitypizzacart.com cedarcitypizzacart.com www.unifiedroofing.net unifiedroofing.net www.stairwaysllc.com stairwaysllc.com www.precisionlandscapingandlawncare.com precisionlandscapingandlawncare.com www.concretetaxi-utah.com concretetaxi-utah.com www.heartofdixiecardiologycenter.com heartofdixiecardiologycenter.com www.firstshorefederalbank.com firstshorefederalbank.com beehivestateexteriors.com www.beehivestateexteriors.com www.toddslawn.com toddslawn.com www.taxpreparationoceancitymd.com taxpreparationoceancitymd.com dougfsmithdds.com www.dougfsmithdds.com www.acehighcarpetcleaning.com acehighcarpetcleaning.com wallacetowingandrecovery.com www.wallacetowingandrecovery.com wcsw.org www.wcsw.org www.itsabouttimede.com itsabouttimede.com troyscustom.com www.troyscustom.com bellacapride.com www.bellacapride.com amfusa1.com www.amfusa1.com thedirtydoggroomingsalon.com www.lecomptemonument.com lecomptemonument.com www.sg3towingandrecovery.com sg3towingandrecovery.com www.coastaltowingandautode.com coastaltowingandautode.com www.freedomtowingut.com www.royalgranitemarbles.com royalgranitemarbles.com mikeshightorque.com cvmcutah.com www.cvmcutah.com www.avamerroofinginc.com avamerroofinginc.com slatepaintingllc.com www.slatepaintingllc.com www.actionairandplumbing.com actionairandplumbing.com www.classicdiamondcatering.com classicdiamondcatering.com surfacepuredisinfect.com www.surfacepuredisinfect.com www.a1sg.com a1sg.com www.riseradiantlywithmartha.com riseradiantlywithmartha.com billyssubs.com www.billyssubs.com www.dbrentalsidaho.com dbrentalsidaho.com chardonltd.com www.chardonltd.com www.heartofdixieveincenter.com heartofdixieveincenter.com americanfrontierroofing.com www.americanfrontierroofing.com www.jasonarthurconstruction.com jasonarthurconstruction.com southwestpumpsandmotors.com penndellock.com www.penndellock.com www.learningallhours.com learningallhours.com www.slateratlas.com slateratlas.com makanaurgentcare.com www.makanaurgentcare.com www.stgeorgeutahlaw.com stgeorgeutahlaw.com www.naturesbalancepestcontrol.net naturesbalancepestcontrol.net host.skoshe.com www.paradisemadesimple.com paradisemadesimple.com www.daviscolemanrealty.com daviscolemanrealty.com www.pestoffutah.com pestoffutah.com miguelslawncareandlandscape.com www.miguelslawncareandlandscape.com creamerinsuranceagency.com www.creamerinsuranceagency.com steelenjosbone.com www.steelenjosbone.com utahprosthetics.com stillmansheatingandair.com www.stillmansheatingandair.com millerstreeandoutdoor.com www.millerstreeandoutdoor.com www.gsfloorsutah.com gsfloorsutah.com mayflowervrm.com www.mayflowervrm.com www.unitedgaragedoors247.com unitedgaragedoors247.com www.uniquehomestagingandredesignbydee.com uniquehomestagingandredesignbydee.com freedomtowingut.com jceisenbreyandson.com laguadalupanalatinstore.com www.laguadalupanalatinstore.com delawarestorefronts.com www.delawarestorefronts.com collinspodiatry.com www.hafenspools.com www.kwconcreteutah.com kwconcreteutah.com hernandezlawncaremd.com www.hernandezlawncaremd.com carmackhvac.com www.carmackhvac.com www.cinemaworksav.com cinemaworksav.com casalimpiahousecleaning.com www.casalimpiahousecleaning.com goclimatecontrol.com www.goclimatecontrol.com erichardsonlaw.com www.erichardsonlaw.com www.allisonscleaningllc.com allisonscleaningllc.com claysautorepair.com www.claysautorepair.com ns1010557.ip-92-204-139.us

Open Ports Detected

22 2222 443 80

CVEs Detected

CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408

Map

Whois Information

  • inetnum: 92.204.128.0 - 92.204.143.255
  • netname: GDY-US-EAST
  • country: US
  • admin-c: GDDY
  • tech-c: GDDY
  • abuse-c: AR16180-RIPE
  • status: SUB-ALLOCATED PA
  • mnt-by: GODADDY-MNT
  • created: 2020-02-20T08:24:24Z
  • last-modified: 2020-02-20T08:33:37Z
  • role: GoDaddy LIR
  • address: Host Europe GmbH
  • address: c/o WeWork, Friesenplatz 4
  • address: 50672 Koeln
  • admin-c: JOKO
  • admin-c: MOMO
  • admin-c: SEPP
  • admin-c: SR5534-RIPE
  • tech-c: JOKO
  • tech-c: MOMO
  • tech-c: SEPP
  • tech-c: SR5534-RIPE
  • nic-hdl: GDDY
  • mnt-by: GODADDY-MNT
  • created: 2019-02-11T09:26:09Z
  • last-modified: 2023-07-20T08:54:06Z
  • route: 92.204.128.0/20
  • origin: AS398108
  • mnt-by: GODADDY-MNT
  • created: 2020-02-20T08:25:58Z
  • last-modified: 2020-02-20T08:25:58Z

Links to attack logs

awsau-sip-bruteforce-ip-list-2021-11-05 awsau-mysql-bruteforce-ip-list-2021-11-05