103.175.248.226 Threat Intelligence and Host Information

Aug 03, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 103.175.248.226 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 7/100

Host and Network Information

  • Mitre ATT&CK IDs: T1046 - Network Service Scanning

  • Tags: abuseipdb

  • JARM: 27d27d27d00027d00042d42d0000007d20e9b9a3e87aa1ec17cb4d646ce9a5

  • View other sources: Spamhaus VirusTotal

  • Country: Vietnam
  • Network: AS140834 saigon travel service trading joint stock company
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: nucuoimekong.com cms.kdigi.vn what.com.vn quangcao.me confluence.mykdigi.com 10.edu.vn jira.mykdigi.com oa.id.vn phuc.tech mykdigi.com bdscantho.io hondacantho.org pop.tichxanh.net www.tichxanh.net smtp.tichxanh.net ftp.tichxanh.net docs.kdigi.app drive.kdigi.app smtp.canthocar.com pop.canthocar.com ftp.canthocar.com www.canthocar.com airdrop1.kdigi.app tichxanh.net www.canthostudio.com hoadon.kdigi.vn pop.larksuite.io www.larksuite.io ftp.larksuite.io smtp.larksuite.io data.kdigi.app content.kdigi.app www.baohiemcantho.net pop.baohiemcantho.net sv.kdigi.app vn.digital portal.kdigi.app larksuite.io xuatkhaulaodongct.com work.canthostudio.com canthostudio.com wct.vn www.wct.vn nucuoimekong.host.kdigi.app baohiemcantho.net canthocar.com smtp.kdigi.vn ftp.kdigi.vn pop.kdigi.vn www.thamtucantho.net ftp.thamtucantho.net thamtucantho.net smtp.thamtucantho.net pop.thamtucantho.net smtp.ghemassagecantho.com ftp.ghemassagecantho.com ghemassagecantho.com pop.ghemassagecantho.com www.ghemassagecantho.com ftp.maychaybocantho.com pop.maychaybocantho.com www.maychaybocantho.com smtp.maychaybocantho.com maychaybocantho.com www.congchungcantho.com pop.congchungcantho.com ftp.congchungcantho.com smtp.congchungcantho.com monitor.kdigi.app monitoring.kdigi.app lark.kdigi.vn pop.kiengiangweb.vn kiengiangweb.vn ftp.kiengiangweb.vn smtp.kiengiangweb.vn www.kiengiangweb.vn hcm.land www.hcm.land pop.ct.city ftp.ct.city www.ct.city smtp.ct.city ct.city airdrop2.kdigi.app chat.kdigi.app admin.kdigi.app www.kdigi.vn kdigi.vn toyotacantho.org ftp.toyotacantho.org pop.toyotacantho.org smtp.toyotacantho.org www.toyotacantho.org peugeotcantho.net pop.peugeotcantho.net ftp.peugeotcantho.net smtp.peugeotcantho.net www.peugeotcantho.net www.mazdacantho.net mazdacantho.net pop.mazdacantho.net ftp.mazdacantho.net smtp.mazdacantho.net cantho.io smtp.cantho.io pop.cantho.io www.cantho.io ftp.cantho.io www.kdigi.app kdigi.app congchungcantho.com

Open Ports Detected

21 3306 443 5432 80 8080 8090 8888 9080 9090 9100

Whois Information

  • inetnum: 103.175.248.0 - 103.175.249.255
  • netname: SAIGONDATANET-VN
  • descr: SAIGON TRAVEL SERVICE TRADING JOINT STOCK COMPANY
  • descr: P7-12B.OT09, Vinhomes Central Park, 208 Nguyen Huu Canh, Ward 22, Binh Thanh District, Ho Chi Minh City
  • admin-c: HDT5-AP
  • tech-c: PTD3-AP
  • country: VN
  • mnt-by: MAINT-VN-VNNIC
  • mnt-lower: MAINT-VN-VNNIC
  • mnt-irt: IRT-VNNIC-AP
  • status: ALLOCATED PORTABLE
  • last-modified: 2021-11-08T06:47:23Z
  • irt: IRT-VNNIC-AP
  • address: Ha Noi, VietNam
  • phone: +84-24-35564944
  • fax-no: +84-24-37821462
  • e-mail: hm-changed@vnnic.vn
  • abuse-mailbox: hm-changed@vnnic.vn
  • admin-c: NTTT1-AP
  • tech-c: NTTT1-AP
  • mnt-by: MAINT-VN-VNNIC
  • last-modified: 2017-11-08T09:40:06Z
  • person: Hoang Dinh Tuyen
  • address: SAIGONDATANET-VN
  • country: VN
  • phone: +84-2873038368
  • e-mail: info@sgtravel.vn
  • nic-hdl: HDT5-AP
  • mnt-by: MAINT-VN-VNNIC
  • last-modified: 2021-11-08T06:32:37Z
  • person: Pham The Duong
  • address: SAIGONDATANET-VN
  • country: VN
  • phone: +84-2873038368
  • e-mail: duongpham@sgtravel.vn
  • nic-hdl: PTD3-AP
  • mnt-by: MAINT-VN-VNNIC
  • last-modified: 2021-11-08T06:34:52Z

Links to attack logs

bruteforce-ip-list-2024-07-09 bruteforce-ip-list-2024-07-13 bruteforce-ip-list-2024-07-12 bruteforce-ip-list-2024-07-14

Share on: