203.146.170.168 Threat Intelligence and Host Information

Share on:
May 02, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: Malicious IP, Nextray, blacklist, botnet, bruteforce, cyber security, ioc, la, lafusioncenter, louisiana, malicious, mirai, mssql, phishing, scan, smb, tcp, vultr

  • View other sources: Spamhaus VirusTotal

  • Country: Thailand
  • Network: AS9891 cs loxinfo public company limited.
  • Noticed: 26 times
  • Protcols Attacked: mssql
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: naco.co.th expressway-n1.com www.kelosil.com xn–72caa5dd2dfxf1f5bi6aiy2le5lid.com thalibypass-doh.com hw4090nikhom-hindan.com xn–12cbfmbav5hdtl0gejc1b8a1dk2i3ack1m0h8a8m.com kicnetwork.com ipcsthai.com aursook.com aursook.com best-for-sale.com mindvacation.net goodbyebugs.net farangtaxi.com tharasale.com aplusarchitect.com hotelchumphongarden.com siamtmc.com photohandmade.com bnhspa.com saranyasuccess.com rkresortandspa.com star-flex.co.th trampolinethai.com greatoceanrice.com bkgmax.com softhut.net greenocean-thailand.com nayharn.com fti.co.th adept-idea.com solvent-sscv.com buasee.com jytprojects.com phatcharaporn-resort.com kelosil.com chiangmai-transitredline.com naiharn-residence.com siamnex.com xn–12cs8ar6bc1dwbbw6m8a9dl.com kstengitech.com madooduang.com americayabangkok.com nikombangpoogas.com phdindevadmin.com ongkarn-leio.org jazycards.com tunsanee.com licyliquidgel.com thathongroad.com drr-smk2037.com xn–12cyu0ddb5bijav5a1ac3c7k8e.com sermngamhospital.go.th gpa-gpart.com tokaengineering.com www.star-flex.co.th siamtrendy.com worldsuperclubs.com vlkcenter.com thaikhoen.info www.milkyway-travel.com ringroad231.com tke.co.th www.tke.co.th www.kruden.net wannakorn-automation.com supakitlogistics.com web.labschools.net anajakbadal.com PRCURTAIN.COM pickupforrent.com www.supervisory34.net suta125.com www.suta125.com b4b.co.th ratanagroup.com car99999.com songserm.ssk3.go.th quickserviceshop.com chemicalideal.com inaba-juku.co.th nitate.ssk3.go.th ns52.4gbhost.com ns51.4gbhost.com www.qsat.co.th i-maru.com saitarnboon.com director.ssk3.go.th www.outdoorsylife.com money.ssk3.go.th outdoorsylife.com plan.ssk3.go.th labschools.net www.labschools.net www.minervaskinclinic.com minervaskinclinic.com www.pattanavechschool.com tga-nne.com pattanavechschool.com idiomms.com thebestcadet.net nativecom.com go.th

Open Ports Detected

10000 10134 10243 10443 10554 110 11112 11210 11300 12000 12345 13579 137 14147 14265 143 1433 16010 18081 19000 19071 20256 21 21025 22222 23023 23424 25 27015 28015 28017 31337 32400 32764 3306 33060 35000 37215 37777 41800 443 44818 50000 50070 51106 51235 53 54138 55442 55553 55554 80

CVEs Detected

CVE-2010-1899 CVE-2010-2730 CVE-2010-3972 CVE-2015-9253 CVE-2016-1283 CVE-2017-16642 CVE-2017-7272 CVE-2017-7963 CVE-2018-10545 CVE-2018-10546 CVE-2018-10547 CVE-2018-10548 CVE-2018-10549 CVE-2018-14851 CVE-2018-14883 CVE-2018-15132 CVE-2018-17082 CVE-2018-19395 CVE-2018-19396 CVE-2018-19518 CVE-2018-19520 CVE-2018-19935 CVE-2018-20783 CVE-2018-7584 CVE-2019-9020 CVE-2019-9021 CVE-2019-9023 CVE-2019-9024 CVE-2019-9637 CVE-2019-9638 CVE-2019-9639 CVE-2019-9641 CVE-2022-31628 CVE-2022-31629

Map

Whois Information

  • inetnum: 203.146.170.0 - 203.146.170.255
  • netname: idc-csloxinfo
  • descr: CSLOXINFO-IDC
  • descr: contact
  • country: TH
  • admin-c: LIA1-AP
  • tech-c: LIA1-AP
  • abuse-c: AC1613-AP
  • status: ASSIGNED NON-PORTABLE
  • mnt-by: LOXINFO-IS
  • mnt-irt: IRT-CSLOXINFO-TH
  • last-modified: 2021-01-20T01:53:02Z
  • irt: IRT-CSLOXINFO-TH
  • address: CW Tower
  • address: Ratchadapisek Road, Huai Khwang, Bangkok 10310
  • phone: +66 2 2638000
  • fax-no: +66 2 2638790
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: LIA1-AP
  • tech-c: LIA1-AP
  • mnt-by: CSLOXINFO-IS
  • last-modified: 2023-02-07T15:17:07Z
  • role: ABUSE CSLOXINFOTH
  • address: CW Tower
  • address: Ratchadapisek Road, Huai Khwang, Bangkok 10310
  • country: ZZ
  • phone: +66 2 2638000
  • e-mail: [email protected]
  • admin-c: LIA1-AP
  • tech-c: LIA1-AP
  • nic-hdl: AC1613-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2023-02-07T15:18:02Z
  • role: Loxinfo IP Admins
  • address: CW Tower
  • address: Ratchadapisek Road, Huai Khwang, Bangkok 10310
  • country: TH
  • phone: +66-2263-8000
  • fax-no: +66-2263-8790
  • e-mail: [email protected]
  • admin-c: LIA1-AP
  • tech-c: LIA1-AP
  • nic-hdl: LIA1-AP
  • mnt-by: CSLOXINFO-IS
  • last-modified: 2017-06-09T17:43:45Z

Links to attack logs

vultrparis-mssql-bruteforce-ip-list-2021-04-04