58.27.205.28 Threat Intelligence and Host Information

Share on:
Apr 25, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Possibly Malicious Host 🟢 29/100

Host and Network Information

  • Tags: bruteforce, digital ocean, mssql, nmap, port-scan

  • View other sources: Spamhaus VirusTotal

  • Country: Pakistan
  • Network: AS38264 national wimax/ims environment
  • Noticed: 2 times
  • Protcols Attacked: mssql
  • Countries Attacked: Australia, Germany

Malware Detected on Host

Count: 1 7192643e8d5f7f5faac1cc5643699d8f4d70679c65750efc298b12c5374ffe75

Open Ports Detected

161

Map

Whois Information

  • inetnum: 58.27.205.0 - 58.27.205.255
  • netname: WATEEN-TEL
  • descr: National Wimax/IMS environment
  • country: PK
  • admin-c: MA1104-AP
  • tech-c: MA1104-AP
  • abuse-c: AW997-AP
  • status: ASSIGNED NON-PORTABLE
  • mnt-by: MAINT-PK-WATEEN
  • mnt-irt: IRT-WATEENTEL-PK
  • geoloc: 31.457933501 74.252230242
  • last-modified: 2022-12-06T12:49:53Z
  • irt: IRT-WATEENTEL-PK
  • address: Wateen Telecom Limited Main Walton Road, Opp. Bab-e-Pakistan, Walton Cantt., Lahore
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: MA1104-AP
  • tech-c: MA1104-AP
  • mnt-by: MAINT-PK-WATEEN
  • last-modified: 2022-12-20T09:28:57Z
  • role: ABUSE WATEENTELPK
  • address: Wateen Telecom Limited Main Walton Road, Opp. Bab-e-Pakistan, Walton Cantt., Lahore
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: MA1104-AP
  • tech-c: MA1104-AP
  • nic-hdl: AW997-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2022-12-20T09:29:01Z
  • person: Muhammad Ashraf
  • address: Wateen Telecom Limited Main Walton Road, Opp. Bab-e-Pakistan, Walton Cantt., Lahore
  • country: PK
  • phone: +92-321-4497383
  • e-mail: [email protected]
  • nic-hdl: MA1104-AP
  • mnt-by: MAINT-PK-WATEEN
  • last-modified: 2017-04-24T07:41:16Z
  • route: 58.27.205.0/24
  • descr:
  • origin: AS38264
  • mnt-by: MAINT-PK-WATEEN
  • last-modified: 2010-05-24T12:56:10Z

Links to attack logs

dofrank-mssql-bruteforce-ip-list-2023-03-11 nmap-scanning-list-2022-02-27