197.155.71.114 Threat Intelligence and Host Information

Share on:
Apr 24, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 37/100

Host and Network Information

  • Tags: Nextray, awsau, bruteforce, cyber security, ioc, malicious, mssql, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: Kenya
  • Network: AS30844 liquid telecommunications ltd
  • Noticed: 5 times
  • Protcols Attacked: mssql
  • Countries Attacked: Australia, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Malware Detected on Host

Count: 2 b3c8acf77018c6e4a88b73f26a4f67773c9eb00ada2fc8254dd52d9519d5e610 7ed2d62009c8867485e96ad9a56d17f555c038b049d37afd86fc362729ad3809

Open Ports Detected

161 2000 53 8080 8291

Map

Whois Information

  • inetnum: 197.155.71.0 - 197.155.71.255
  • netname: Icon
  • descr: Icon Telesec
  • country: KE
  • admin-c: AA110-AFRINIC
  • tech-c: AA110-AFRINIC
  • status: ASSIGNED PA
  • mnt-by: LIQUID-TOL-MNT
  • parent: 197.155.64.0 - 197.155.95.255
  • person: Andrew Alston
  • address: Block A, Sameer Business Park,
  • address: Mombasa Road,
  • address: Nairobi
  • address: Kenya
  • phone: tel:+254-20-5000000
  • nic-hdl: AA110-AFRINIC
  • mnt-by: AA110-MNTR
  • route: 197.155.71.0/24
  • descr: Maintainer Liquid Telecommunications Operations Limited
  • origin: AS30844
  • org: ORG-LTOL1-AFRINIC
  • mnt-lower: LIQUID-TOL-MNT
  • mnt-by: AFRINIC-HM-MNT
  • organisation: ORG-LTOL1-AFRINIC
  • org-name: Liquid Telecommunications Operations Limited
  • org-type: LIR
  • country: MU
  • address: 10th Floor,
  • address: Raffles Tower,
  • address: 19 Cybercity
  • address: Ebene
  • phone: tel:+254-733-222204
  • phone: tel:+230-466-7620
  • phone: tel:+263-8677-033306
  • phone: tel:+254-731-033754
  • admin-c: RD10-AFRINIC
  • admin-c: DH19-AFRINIC
  • admin-c: CM53-AFRINIC
  • admin-c: AS116-AFRINIC
  • tech-c: DV5-AFRINIC
  • tech-c: DH19-AFRINIC
  • tech-c: CM53-AFRINIC
  • tech-c: MC69-AFRINIC
  • tech-c: AA110-AFRINIC
  • tech-c: AS116-AFRINIC
  • mnt-ref: AFRINIC-HM-MNT
  • mnt-ref: LIQUID-TOL-MNT
  • mnt-by: AFRINIC-HM-MNT

Links to attack logs

awsau-mssql-bruteforce-ip-list-2021-12-27