110.172.170.204 Threat Intelligence and Host Information

Jun 02, 2024 ipinfopage

General

IP Address

110.172.170.204

IPv4 Address

Location

🇮🇳 Bodinayakkanur, India

Network

AS18002

AS Number for Interdomain Routing

Threat Score

61/100

High Risk

analyzeblockBruteforcehighorvalattackSSH

Attack Intelligence

MITRE ATT&CK Techniques

T1110.001 - Password Guessing, T1110.002 - Password Cracking, T1110.003 - Password Spraying, T1110 - Brute Force, T1583.005 - Botnet

Open Ports Detected

10001

Geographic Location

Country

India

City

Bodinayakkanur

Region

Tamil Nadu

Coordinates

10.0148, 77.3455

Network Information

ASN

AS18002

Organization

AS Number for Interdomain Routing

Network

AS18002 AS Number for Interdomain Routing

WHOIS Information

inetnum

110.172.170.0 - 110.172.170.255

netname

Balaji

descr

World Phone Internet Services Pvt Ltd

country

admin-c

RR918-AP

tech-c

RR918-AP

status

ASSIGNED NON-PORTABLE

mnt-by

MAINT-IN-WPISPL

mnt-irt

IRT-WORLDPHONE-IN

last-modified

2020-08-27T12:25:30Z

irt

IRT-WORLDPHONE-IN

address

F1/9, Okhla Industrial Area, Phase -1, New Delhi -110020

e-mail

ipadmin@worldphone.in

abuse-mailbox

abuse@worldphone.in

role

Network Admin

phone

+91-11-2690 2000

nic-hdl

NA760-AP

route

110.172.170.0/24

mnt-routes

MAINT-IN-WPISPL

origin

AS18002

Attack Logs

Date	Target Location	Protocol	Link
2024-05-11	Perth, Australia	MULTIPLE	View Log

Country: India
Network: AS18002 interdomain routing
Noticed: 6 times
Protocols Attacked: SSH
Countries Attacked: Australia, Belgium

CVEs Detected

CVE-2015-3200 CVE-2018-19052 CVE-2019-11072

Disclaimer

This page contains threat intelligence information for the IPv4 address 110.172.170.204 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.