182.52.17.209 Threat Intelligence and Host Information

Share on:
Apr 19, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 41/100

Host and Network Information

  • Tags: Nextray, cyber security, ioc, malicious, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: Thailand
  • Network: AS23969 tot public company limited
  • Noticed: 3 times
  • Protcols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: topty.synology.me

Malware Detected on Host

Count: 1 df0051ca2cf1b11223bf6d747117a1e951ee14c42e0f238f7be672fe7aca614a

Open Ports Detected

10000 10134 102 1023 1024 10243 1025 10250 1026 10443 1050 10554 1099 11000 11112 113 1153 1167 119 1200 12000 1234 1250 1337 1344 13579 1388 139 1400 143 1433 1494 1521 1554 1650 17 175 18245 1830 19 19071 1911 1925 195 1951 1981 1990 20 2000 2002 2008 2020 2021 20547 2061 2063 2067 2079 2082 2086 21 21025 2111 21379 2154 22 22222 2233 2320 2323 23424 2375 2379 2404 2480 25105 2550 2555 2557 2558 2572 264 2709 28017 2806 3001 3002 3050 3052 3056 3067 3068 3071 3073 3080 3081 3086 3092 3094 3096 3097 3104 3105 3107 311 3111 3128 3129 3268 32764 3306 3310 3333 3337 3352 3405 3406 3409 35000 3521 3522 3541 3542 3550 3560 3566 3689 3690 37777 3780 3790 38 3838 4002 4022 4040 4063 4064 41800 4190 427 4282 4321 4369 44158 444 4443 447 4545 4567 4664 4782 4840 4899 49 4911 49153 4949 4999 5000 50000 5001 5005 50050 5006 50070 5009 502 5025 51 51235 515 5150 5172 5201 5280 52869 53 5432 5494 5500 55000 55443 555 5555 55554 5590 5591 5604 5801 5906 5910 593 5938 5984 6000 60001 6003 6006 6007 6008 6010 6080 6161 62078 6262 6308 6379 646 6581 6603 666 6662 6664 70 7001 7002 7004 7071 7401 7415 7443 7500 7657 7779 789 8006 8007 8008 8009 8014 8018 8039 8040 8043 8045 805 8056 8060 8069 8080 8085 8090 8093 8094 8095 8097 8098 81 8101 8103 8118 8123 8140 8180 8184 8222 8239 8251 83 830 8333 8334 8383 8402 8403 8411 8416 8418 8447 8545 8575 8585 8649 8767 8779 8808 8810 8822 8829 8834 8841 8849 8850 8856 8860 8862 8866 8869 8871 8878 888 8887 8888 8899 9000 9002 9008 9025 9031 9045 9051 9070 9080 9084 9091 9092 9101 9104 9109 9136 9160 9189 9191 9206 9207 9209 9211 9305 9306 9310 9389 9418 943 9443 9527 9595 9600 9663 9682 9690 9743 9765 9861 9869 9876 9898 9899 990 993 994 9944 995 9998 9999

CVEs Detected

CVE-2006-20001 CVE-2019-17567 CVE-2020-11984 CVE-2020-11993 CVE-2020-13938 CVE-2020-13950 CVE-2020-1971 CVE-2020-35452 CVE-2020-7068 CVE-2020-7069 CVE-2020-7070 CVE-2020-9490 CVE-2021-23840 CVE-2021-23841 CVE-2021-26690 CVE-2021-26691 CVE-2021-33193 CVE-2021-3449 CVE-2021-34798 CVE-2021-36160 CVE-2021-3711 CVE-2021-3712 CVE-2021-39275 CVE-2021-40438 CVE-2021-4160 CVE-2021-44224 CVE-2021-44790 CVE-2022-0778 CVE-2022-1292 CVE-2022-2068 CVE-2022-2097 CVE-2022-22719 CVE-2022-22720 CVE-2022-22721 CVE-2022-23943 CVE-2022-26377 CVE-2022-28330 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30556 CVE-2022-31628 CVE-2022-31629 CVE-2022-31813 CVE-2022-36760 CVE-2022-37436 CVE-2022-37454 CVE-2022-4304 CVE-2022-4450 CVE-2023-0215 CVE-2023-0286 CVE-2023-0464 CVE-2023-0465 CVE-2023-0466 CVE-2023-25690 CVE-2023-27522

Map

Whois Information

  • inetnum: 182.52.0.0 - 182.53.255.255
  • netname: TOT-AP
  • descr: TOT Public Company Limited
  • descr: Zone A, 6th Floor, Building 1
  • descr: Swicthing and Network Interconnection System Standard Sector
  • descr: TOT Public Company
  • descr: 89/2 Moo 3 Chaengwatthana Road
  • country: TH
  • org: ORG-TPCL1-AP
  • admin-c: pa82-ap
  • tech-c: ag100-ap
  • abuse-c: AT950-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-TH-TOT
  • mnt-routes: MAINT-TH-TOT
  • mnt-irt: IRT-TOT-TH
  • last-modified: 2020-07-09T07:13:21Z
  • irt: IRT-TOT-TH
  • address: TOT Public Company Limited
  • address: 89/2 Moo 3 Chaengwattana Rd, Laksi,Bangkok 10210 THAILAND
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: ira3-ap
  • tech-c: ira3-ap
  • mnt-by: MAINT-TH-TOT
  • last-modified: 2023-02-15T04:49:48Z
  • organisation: ORG-TPCL1-AP
  • org-name: TOT Public Company Limited
  • country: TH
  • address: National Telecom Public Company Limited
  • address: Chaengwattana Office
  • address: 89/2 Chaengwatthana Road
  • address: Thoongsonghong
  • phone: +66-2-574-9178
  • e-mail: [email protected]
  • mnt-ref: APNIC-HM
  • mnt-by: APNIC-HM
  • last-modified: 2022-11-29T12:55:04Z
  • role: ABUSE TOTTH
  • address: TOT Public Company Limited
  • address: 89/2 Moo 3 Chaengwattana Rd, Laksi,Bangkok 10210 THAILAND
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: ira3-ap
  • tech-c: ira3-ap
  • nic-hdl: AT950-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2023-02-15T04:50:46Z
  • person: Apipol Gunabhibal
  • nic-hdl: AG100-AP
  • e-mail: [email protected]
  • address: TOT Public Company Limited
  • address: 89/2 Moo 3 Chaengwattana Rd, Laksi, Bangkok 10210 THAILAND
  • phone: +66-2574-9178
  • country: TH
  • mnt-by: MAINT-TH-TOT
  • last-modified: 2022-08-29T04:23:40Z
  • person: Pansak Arpakajorn
  • nic-hdl: PA82-AP
  • e-mail: [email protected]
  • address: TOT Public Company Limited
  • address: 89/2 Moo 3 Chaengwattana Rd, Laksi,Bangkok 10210 THAILAND
  • phone: +66-2574-9178
  • fax-no: +66-2574-8401
  • country: TH
  • mnt-by: MAINT-TH-TOT
  • last-modified: 2010-05-07T07:54:11Z
  • route: 182.52.0.0/19
  • descr: TOT Public Company Limited
  • origin: AS9737
  • mnt-by: MAINT-TH-TOT
  • last-modified: 2010-07-25T06:58:01Z

Links to attack logs

bruteforce-ip-list-2022-03-11