45.143.223.42 Threat Intelligence and Host Information

Share on:
Jun 13, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 45.143.223.42 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

  • Tags: C&C, tsec

  • View other sources: Spamhaus VirusTotal

  • Country: Belize
  • Network: AS213371 squitter networks
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Passive DNS Results: tukutin.lat gasfonk.xyz

Malware Detected on Host

Count: 6 7cfaf26781ee6223977b0a5dd5fa1c807a97ef97c18924c300c1e903bd99aac5 d2e575b523fbe799c553de21314048db74cd86a72977875612609e76387a4646 9574b5f62d074a58d9275f5273f1213916df84b5a8e53d5fedff603d79264907 04e81c22378c8204094042ac81f13bd42b87eb15bc2cc9c95eb852ccffdef9d2 8b2c2c3a9c9780040965eb634f0768a8976d7bcf4f1ae40d813de51fbcb46c36 a26b63086632ecf7db1fbf6a1f1c3b46ee1201858c40b86d40a956a3f78f6d01

Open Ports Detected

2086 22 443 7999

Map

Whois Information

  • inetnum: 45.143.223.0 - 45.143.223.255
  • netname: ABC-NL-NV-VPS2
  • country: NL
  • geoloc: 52.370216 4.895168
  • geofeed: https://gist.githubusercontent.com/myweblimited/d5e6acaa3e15c7d2abb768ad4e7a0b1f/raw/2612a56c6ef4368f85021c449e3219c96ca64ae5/mywebgeofeed.csv
  • admin-c: SN8949-RIPE
  • tech-c: SN8949-RIPE
  • org: ORG-SQTR1-RIPE
  • status: ASSIGNED PA
  • mnt-by: SQUITTER-MNT
  • created: 2019-10-13T10:37:32Z
  • last-modified: 2023-05-29T15:58:35Z
  • organisation: ORG-SQTR1-RIPE
  • org-name: ABC Consultancy
  • country: IN
  • org-type: OTHER
  • address: Netherlands
  • geoloc: 52.3702 4.8952
  • abuse-c: SN8949-RIPE
  • mnt-ref: SQUITTER-MNT
  • mnt-ref: PREFIXBROKER-MNT
  • mnt-by: SQUITTER-MNT
  • created: 2020-04-13T10:54:36Z
  • last-modified: 2022-12-01T17:26:41Z
  • role: ABC Consultancy
  • address: Netherlands
  • abuse-mailbox: [email protected]
  • nic-hdl: SN8949-RIPE
  • mnt-by: SQUITTER-MNT
  • created: 2020-04-13T10:51:05Z
  • last-modified: 2020-12-09T11:35:47Z
  • route: 45.143.223.0/24
  • origin: AS213371
  • mnt-by: SQUITTER-MNT
  • created: 2022-02-23T12:37:40Z
  • last-modified: 2022-02-23T12:37:40Z

Links to attack logs

bruteforce-ip-list-2023-04-04