190.85.227.211 Threat Intelligence and Host Information

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Host and Network Information

• Mitre ATT&CK IDs: T1140 - Deobfuscate/Decode Files or Information
• Tags: RDP, atif feed, banlist feed, binary defense, chain, compromise, dark halo, hafnium, highly evasive, icedid malware, la, lafusioncenter, louisiana, multiple global, nmap, port-scan, qakbot, qbot, redis, shathak, victims, word

• View other sources: Spamhaus VirusTotal

• Country: Colombia
• Network: AS14080 telmex colombia s.a.
• Noticed: 50 times
• Protcols Attacked: SSH
• Countries Attacked: Australia

Map

Whois Information

• inetnum: 190.85.0.0/16
• status: allocated
• aut-num: AS14080
• owner: Telmex Colombia S.A.
• ownerid: CO-ACSA-LACNIC
• responsible: Operaciones Core IP
• address: CLARO FIJO COLOMBIA - Cra 68A No. 24B-10, 11111,
• address: 11111 - Bogota - DC
• country: CO
• phone: +57 01 7480000
• owner-c: ATI
• tech-c: ATI
• abuse-c: ATI
• inetrev: 190.85.0.0/16
• nserver: NS3.TELMEXLA.NET.CO
• nsstat: 20230220 AA
• nslastaa: 20230220
• nserver: NS2.TELMEXLA.NET.CO
• nsstat: 20230220 AA
• nslastaa: 20230220
• created: 20100311
• changed: 20100311
• nic-hdl: ATI
• person: Network Security Team
• e-mail: [email protected]
• address: 111321 - Bogota - DC
• country: CO
• phone: +57 017480456 [81966]
• created: 20020909
• changed: 20220920

Links to attack logs

nmap-scanning-list-2021-11-30 nmap-scanning-list-2021-12-08 nmap-scanning-list-2021-09-16 nmap-scanning-list-2022-01-14 nmap-scanning-list-2021-10-07