103.242.45.233 Threat Intelligence and Host Information

Share on:
Feb 23, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Host and Network Information

  • Tags: awsbah, bruteforce, mothership, mssql, nmap, port-scan, tsec

  • View other sources: Spamhaus VirusTotal

  • Country: Mongolia
  • Network: AS9934 mongolia telecom
  • Noticed: 6 times
  • Protcols Attacked: mssql
  • Countries Attacked: Australia

Malware Detected on Host

Count: 1 9993de32253befe604de9528835dd804e073e413df148b1a4f699c6cf416a334

Open Ports Detected

22 80

Map

Whois Information

  • inetnum: 103.242.44.0 - 103.242.45.255
  • netname: MICOM-NETWORK-BROADBAND
  • descr: MICOM-NETWORK-BROADBAND
  • country: MN
  • admin-c: DD408-AP
  • tech-c: DD408-AP
  • abuse-c: AT960-AP
  • status: ALLOCATED NON-PORTABLE
  • mnt-by: MAINT-MN-MICOM
  • mnt-lower: MAINT-MN-MICOM
  • mnt-routes: MAINT-MN-MICOM
  • mnt-irt: IRT-TELECOM-MN
  • last-modified: 2020-06-10T02:42:10Z
  • irt: IRT-TELECOM-MN
  • address: Sq.Sukhbaatar-1
  • address: Chingeltei District
  • address: Ulaanbaatar-210611
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: DD408-AP
  • tech-c: DD408-AP
  • mnt-by: MAINT-MN-MICOM
  • last-modified: 2023-01-30T05:42:57Z
  • role: ABUSE TELECOMMN
  • address: Sq.Sukhbaatar-1
  • address: Chingeltei District
  • address: Ulaanbaatar-210611
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: DD408-AP
  • tech-c: DD408-AP
  • nic-hdl: AT960-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2023-01-30T05:43:03Z
  • person: Damdintsogt D
  • address: Telecom building, Sqrt 1 Dist. Chingeltei, Ulaanbaatar
  • country: MN
  • phone: +976-70102502
  • fax-no: +976-70102375
  • e-mail: [email protected]
  • nic-hdl: DD408-AP
  • notify: [email protected]
  • abuse-mailbox: [email protected]
  • mnt-by: MAINT-MN-MICOM
  • last-modified: 2013-07-29T13:36:33Z
  • route: 103.242.44.0/22
  • descr: MN-MICOM-BLOCK-103
  • origin: AS9934
  • mnt-lower: MAINT-MN-MICOM
  • mnt-routes: MAINT-MN-MICOM
  • mnt-by: MAINT-MN-MICOM
  • last-modified: 2013-09-12T02:31:50Z

Links to attack logs

awsbah-mssql-bruteforce-ip-list-2020-08-29 nmap-scanning-list-2020-11-16