87.251.248.41 Threat Intelligence and Host Information

Share on:
May 06, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Mitre ATT&CK IDs: T1110 - Brute Force
  • Tags: Bruteforce, LBL, Nextray, afghanistan, albania, algeria, andorra, angola, anguilla, armenia, belarus, chad, congo, cuba, cyber security, enter country, guinea, indonesia, ioc, malicious, mexico, mirai, panama, paraguay, phishing, samoa, slovakia, ukraine, uruguay

  • View other sources: Spamhaus VirusTotal

  • Country: Poland
  • Network: AS8374 polkomtel sp. z o.o.
  • Noticed: 6 times
  • Protcols Attacked: ssh
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

1024 104 1099 113 1337 1400 1471 1599 1723 1741 175 1925 195 1962 2008 2081 2154 23 2375 3000 3001 3260 3388 3389 3541 3542 3551 3689 3749 3780 3790 4040 4063 4282 4321 4369 444 4444 4782 4949 5000 5005 5269 5357 5555 5858 5901 593 5938 5985 631 6443 6664 6667 7171 7547 7657 7777 7779 7989 8000 8010 8086 8098 8112 8200 83 8334 8554 8649 8728 873 8888 8889 9000 9999

Map

Whois Information

  • inetnum: 87.251.248.0 - 87.251.255.255
  • netname: PLUSNET
  • descr: Polkomtel sp. z o.o.
  • descr: Warszawa
  • country: PL
  • org: ORG-PN5-RIPE
  • admin-c: PKL1-RIPE
  • tech-c: PKL1-RIPE
  • status: ASSIGNED PA
  • mnt-by: POLKOMTEL-MNT
  • mnt-lower: POLKOMTEL-MNT
  • mnt-domains: POLKOMTEL-MNT
  • mnt-routes: POLKOMTEL-MNT
  • created: 2009-07-01T14:11:54Z
  • last-modified: 2013-04-17T11:11:33Z
  • organisation: ORG-PN5-RIPE
  • org-name: Polkomtel Sp. z o.o.
  • country: PL
  • org-type: LIR
  • address: ul. Pulawska 466
  • address: 02-884
  • address: Warszawa
  • address: POLAND
  • phone: +48 224 261 000
  • fax-no: +48224260088
  • admin-c: SO1236-RIPE
  • admin-c: IN3-RIPE
  • mnt-ref: POLKOMTEL-MNT
  • mnt-ref: RIPE-NCC-HM-MNT
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: POLKOMTEL-MNT
  • abuse-c: PKL1-RIPE
  • tech-c: SO1236-RIPE
  • tech-c: MB29626-RIPE
  • tech-c: KT3222-RIPE
  • tech-c: TB8799-RIPE
  • created: 2004-04-17T11:47:51Z
  • last-modified: 2021-06-28T06:58:58Z
  • role: PlusGSM IP Team
  • address: Polkomtel sp. z o.o.
  • address: ul. Konstruktorska 4
  • address: 02-673 Warszawa
  • address: Poland
  • phone: +48 22 4261599
  • fax-no: +48 22 4260099
  • abuse-mailbox: [email protected]
  • admin-c: SO1236-RIPE
  • admin-c: IN3-RIPE
  • tech-c: KT3222-RIPE
  • tech-c: MB29626-RIPE
  • tech-c: TB8799-RIPE
  • nic-hdl: PKL1-RIPE
  • mnt-by: POLKOMTEL-MNT
  • created: 2003-10-07T14:54:25Z
  • last-modified: 2021-12-14T12:36:18Z
  • route: 87.251.224.0/19
  • descr: PlusGSM Net
  • descr: Warsaw, Poland
  • origin: AS8374
  • mnt-by: POLKOMTEL-MNT
  • created: 2005-09-15T12:01:49Z
  • last-modified: 2005-09-15T12:01:49Z

Links to attack logs

** dotoronto-ssh-bruteforce-ip-list-2023-05-06