Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Register

Quick Links


Shells Virtual Desktop
BMail.ag - Secure Email Service
Server.net
CPLicense.net
VPS Server
Buy VPN
Vultr
VMs for AI
HostDare
HostDare
ReliableSite White-Label Dedicated Hosting for Resellers
InterServer VPS
BMail.ag - Secure Email Service
Best VPN
High-Performance Bare Metal Server Solutions
Karvl.com
Server Mania Cloud Hosting
DataWagon Hosting
AlphaVPS Hosting
Evoxt.com
Clouvider
VPS Hosting with NVMe
Residential IPs in the US & 4G Mobile Proxies in EU & US with Unlimited Bandwidth
ReliableSite White-Label Dedicated Hosting for Resellers
Rabisu - Hosting Solutions
Shells Virtual Desktop

Categories

In this Discussion

Home Offers
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

Unmetered 10G Dedicated Servers starting at 150 EUR per month | Special offer

2»

Comments

  • OpaqueRegistrantOpaqueRegistrant Member

    @darkmaster said:
    FYI for those considering SMARTNET LIMITED's services:

    SMARTNET LIMITED (AS203446) currently acts as an upstream provider for H2.nexus (AS215730). According to Qurium's analysis of the Doppelganger disinformation network, H2Nexus Ltd is identified as part of the Aeza network cluster which they described as a network of closely linked hosting companies in Russia and the UK, with H2Nexus being either a direct or hidden offshoot of Aeza.

    Additionally, threat intelligence scanning shows that AS203446 has multiple downstream ASNs with detected malware/C2 infrastructure.

    @AS203446 said:
    Optibounce is AnonRDP.

    Interesting to see Optibounce in your downstream's.

    Worth keeping in mind when evaluating your transit and server rental options.

    Cool. If they can keep Russian malware online they must have a good network. Green flag, IMO.

    Thanked by 1rpqu
  • SoliSoli Member

    Aeza IP blocks are banned by many US ISP’s FYI

  • hyperblasthyperblast Member

    @OpaqueRegistrant said: Cool. If they can keep Russian malware online they must have a good network. Green flag, IMO.

    then it makes sense not to have an imprint... ;)

  • Michal212Michal212 Member

    @OpaqueRegistrant said:

    @darkmaster said:
    FYI for those considering SMARTNET LIMITED's services:

    SMARTNET LIMITED (AS203446) currently acts as an upstream provider for H2.nexus (AS215730). According to Qurium's analysis of the Doppelganger disinformation network, H2Nexus Ltd is identified as part of the Aeza network cluster which they described as a network of closely linked hosting companies in Russia and the UK, with H2Nexus being either a direct or hidden offshoot of Aeza.

    Additionally, threat intelligence scanning shows that AS203446 has multiple downstream ASNs with detected malware/C2 infrastructure.

    @AS203446 said:
    Optibounce is AnonRDP.

    Interesting to see Optibounce in your downstream's.

    Worth keeping in mind when evaluating your transit and server rental options.

    Cool. If they can keep Russian malware online they must have a good network. Green flag, IMO.

    @AS203446

  • AS203446AS203446 Member, Patron Provider

    I think a lot of clarification is needed here:

    1. The so called "Impressum" was removed after some people sent funny letters and placed orders on that address.
    2. The website has now been updaded with a Legal page. SMARTNET LIMITED owns and manages the website, so SMARTNET is the contact for it. SMARTNET LIMITED's contact address in Germany is our IBX Flex office at Equinix, which is perfectly legal.
    3. SMARNET LIMITED is not being used to conceal something or evade taxes. We pay taxes here in Germany and operate the infrastructure in Germany but considering that we also offer DDoS Protection, we are a constant target - both online and offline. I think nobody would want their personal address on the Legal / "Impressum" / Contact page after people have sent threats and placed fake orders.

    Regarding the never ending discussion about us hosting or at least providing connectivity for/to Russian propaganda:

    There is no evidence that H2NEXUS belongs to Aeza or is a subsidiary of Aeza. And we have never received any abuse. Just check the AS on Shodan and you can check the content that is being hosted there. Standard VPS hosting.

    Correctiv's Doppelganger article does not count as evidence since they did not provide any source of their investigation regarding the connecting between H2NEXUS and Aeza.

    Other downstreams / C2 / Malware

    You'll find plenty of other networks(VPS hosting) that host similar malware or show up in threat intelligence reports. And these networks use the well known T1 carriers like Cogent, Lumen, Arelion etc. If you are sure that there is malware being hosted by one of our downstreams, please send the abuse report to the downstream network.

    @darkmaster Zayo is one of our upstreams - seems like your tool is unable to distinguish between upstreams and downstreams?

  • darkmasterdarkmaster Member

    I cited Qurium's findings. Dispute it with them if you disagree.

    You're focusing on 'downstreams' when the scan shows all connected networks with malware/C2. Including Optibounce, which you previously identified as AnonRDP, a bulletproof hoster.

    'T1 carriers have malware too' misses the point. Cogent has millions of customers where abuse is statistical noise. You have a much smaller network where compromised connections represent a significant pattern, not random distribution. 'Send abuse downstream' is what providers say when they don't want to address their customer selection.

  • apollo15apollo15 Member
    edited January 13

    @AS203446 said: I think nobody would want their personal address on the Legal / "Impressum" / Contact page after people have sent threats and placed fake orders.

    thats why people open companies and rent office space, not deal as private individuals.

    Thanked by 1OpaqueRegistrant
  • YekongTATYekongTAT Member

    Can the memory be upgraded?

  • ozontiozonti Member, Host Rep

    Access to aeza.net is no longer available

    It seems that only aeza.ru

    Thanked by 1oloke
  • olokeoloke Member, Host Rep
    edited January 23

    @ozonti said:
    Access to aeza.net is no longer available

    It seems that only aeza.ru

    Yes, the domain seems to be on clientHold currently.

    image

  • AS203446AS203446 Member, Patron Provider

    One of these servers is available again:

    2x Xeon E5-2680v4
    80GB RAM
    500GB SSD
    1x10G port(Unmetered)
    1x IPv4, 1xIPv6

    170 EUR per month

    We also have other servers available(Threadripper 3970X for example). If you are interested, just send a DM

Sign In or Register to comment.