139.45.197.151 Threat Intelligence and Host Information

Sep 02, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 139.45.197.151 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Mitre ATT&CK IDs: T1003 - OS Credential Dumping, T1071.001 - Web Protocols, T1481 - Web Service, T1498 - Network Denial of Service, T1499 - Endpoint Denial of Service, T1505.003 - Web Shell, T1587.001 - Malware, T1588.001 - Malware, T1608.001 - Upload Malware

  • Tags: ddos, denial of service, distributed denial of service, domain, domain request, dos, intrusion, malware, stairtuy.com, trojan, ufonet, virtual machines, vmware, vmware workstation, web attack, web redirection, windows, windows 10, windows 11

  • View other sources: Spamhaus VirusTotal

  • Country: United Kingdom
  • Network: AS9002 retn limited
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Countries Attacked: Philippines, Qatar, United Arab Emirates, United Kingdom of Great Britain and Northern Ireland, United States Minor Outlying Islands, United States of America
  • Passive DNS Results: v.whauglorga.com h.moaptaidu.com k.shainsie.com t.shainsie.com x.shainsie.com vvsesfeunlu.com uewwxpdnbtgi.com y.ooshauksofas.com i.shainsie.com v.faudabere.com fvmardwgrxlveon.xyz q.moaptaidu.com yvhasowjvncjk.com ppwmaptmwrwfu.xyz cxotiggg.com xpfmsqgslmw.com pnnuuljfxohkna.com fksovacnas.com mirrbwlv.com rpywhwdjjw.com v.ureckeeds.com h.ureckeeds.com f.wholeactualnewz.com wnklcpmvt.com aoyrydvgnsbap.com y.maichobooy.com xansixnhy.com basuxxdyufre.com kuexncpqxkakrkb.xyz tpjageoaehyir.com kxuattexg.com lagqmwyvqr.com a.appbetnewapp.top ylyqhauslrkiy.com nsjyyygrqytd.com gbjvegyw.com k.applabzzeydoo.com ugqcifmue.com lncfuqbgpnmxm.xyz frtvubqrwm.com nmmqrnloekubgxy.xyz rnqmecketdkunfs.xyz binnnwswaugxh.com rwukxmcypp.com d.appbetnewapp.top i.poagourait.com cwhrfkpniuvkn.xyz rteqrsktyal.com cujlpsdtcl.com lqpmulou.com enqpjgdbvf.com ouglotso.net cycjmxrrto.com ccoybmnjw.com f.gipsouglow.com iangakwvtjrpbew.xyz cjvxbuodtjjonbk.com ijpjchxjddjsvm.xyz zoopheez.com uluophgs.com evvykulupl.com rufcajndtsvoph.com ethoamee.xyz mfyuoabudnuyv.com b.moaptaidu.com rjyafwdkitfmt.xyz kjisypvbsanmlem.xyz kdwdrpiwdxof.com ibonmfvcwb.xyz kxrglnpolgofvr.xyz ptoajait.net cxygrlfrj.com sfxvoothmyewja.com fcaopwlgl.com yodtohqfsvyps.xyz gaupsaur.xyz seehaucu.net wedevwmt.com tvggjapmfkgd.com qguvfokqg.com gmkxcobeevc.com kwybhssodgfjo.com tlwixvejx.xyz mgmvgcltigut.xyz oayaihjtdbvveb.xyz dequcqljctxlxd.com mvqycoenp.com ptjdpumh.com eqpbskmjcfoj.com ebdlthbijshfj.com kfaksmehporrj.com fwftmuxxeh.com cvjfmrrgyrqnsnw.xyz ginsicih.xyz jsbpegtvuur.xyz uiydxdjewwdfi.xyz xaxtqxmi.com whtwtlrgybk.com iebfcfcthrepbqw.com uimaodkhcokm.com utysvtujmg.com ekncmwlld.com bxikceucv.com xwlqtdmvu.xyz bbqckhmgboal.xyz roelrpfe.xyz vcbydvfouqqyls.com licwtlmmpjlcynn.com a.moaptaidu.com wywrmtkahnumvby.com vjrlsgqjw.xyz pholrock.net xduenseggx.com hlvndpqwiwnyq.com lteuyqnxpbgpxl.com yragcvgrtfsuafy.com jogytuuey.com eraopeuvrutqpb.com b.famtoaphoobo.com ezaicmee.xyz hqtwyhampwu.xyz ddjmypwjkau.com msrwkntc.com ipsvptuxn.com qchfbnjagbdst.com qeqmfcgwcypxi.com eupjjylulbgvwf.com iltwthpa.xyz wvmlmcvoiy.com vwhbikcm.com qkkcsxwh.com ynisramnmcm.com quwtddxbsrudos.com jjmxksqyfagljmg.com ujdguowfwte.com rusvsreff.com cmddtqrw.xyz hbqtoxeouivlw.xyz rdmvnmixfmcjtmd.xyz accbxepcls.com aylkqmahecgyl.com gnmiaibgkasf.com oaboapeejiw.com fwyhyryyqvs.com dslsgbrckqshuep.com wwlctbmtx.xyz hklqhohohbmaeu.com pqyvtsrw.com bgucepgpkmsyde.com xlmlsdgwfpwp.xyz rurdauth.net wuirfunbjkkohfl.com cgscvavskgvm.com mqrvqbfon.com bdiqtyyhg.com reunpkalqq.com ymwiryjwwltab.com bfcfbgalx.com ejpkmgwawdsql.com b.shaighax.com fhtygvqhwwecwjr.xyz cypcetbc.com vamwugchxg.com qsotcgbtfsixt.com oethjkqt.com ftqygccvexbxpb.com lhlslyijgmeq.com trjxehoxjcbxvuc.xyz pnvbfxwbeg.com pvkntojw.com rjhiomohthqr.com rykwyoaeaamhykw.com jgdipcsviur.com vlqllpeevoch.com jwynfocqiwaxim.xyz hqhwiwcahavywie.com bsolaoecm.xyz staifong.net dsujqhgxba.com kbbxlmne.com j.famtoaphoobo.com d.famtoaphoobo.com o.famtoaphoobo.com i.famtoaphoobo.com thauhoux.com wlgeaphevavka.com eegamaub.net iudtkrymwh.com hcwmnryoyf.com ldclxgkcy.xyz hbowywpeqhfpwru.com coolehim.xyz ucteqibnblrjhpb.com mwcxljdywq.com bbtsqjfnfl.xyz hipvaeciaqqtrhy.xyz wscgglhyfnq.com tscubhkj.com irgvfdwicqerqfy.com gqwwlifeq.com gbrnpmcm.com xvjrveks.com opukufxtc.com n.promolandforapp.com wemfpbtd.xyz savtvkdny.xyz oqcrqirncna.xyz uloaludu.xyz ykmskivf.com xfcpdigfsx.xyz e.paiwhisep.com c.faukoocifaly.com a.phignubsordy.com l.zoulikoopty.com s.sheewaulro.com dgwmrddx.xyz vesytvcyvxtnj.xyz hiljcovbfk.xyz boomouso.xyz esqarqiqwulytqy.xyz toopsoah.net whejohux.net toadaihy.net dognixus.net aicabsix.net veevuhew.net lurgafty.net vidoaxou.net caukoaph.net veevozoa.net ewhuwhie.net glojeecm.net ilumtoux.net oabsoupy.net peezanoo.net jurauduz.net hgirsxsgetv.com mjxexuwnx.com qefxfqlrthsxqdd.com qiqgvcrnhwc.com ymfvocyqers.com ygayylbnmd.com famtoaphoobo.com fkcvtiqbbgedb.com q.ibugreeza.com r.appmateforbests.com w.phignubsordy.com y.suwotsoukry.com h.whatisnewappforyou.top saiceezu.xyz f.wempooboa.com kfcculkonclcfox.xyz wegleelr.com afoaglux.com chauvoog.com studseth.com stoagnoa.com vmjomaeq.com sfbcmglkml.com shaitchy.com zuphaips.com ykfqbgbmd.com psaulrab.com baibuque.com byxdtgvsgg.com joudotee.com gghmyocmyl.com oorouglu.com oadsoroa.com eyxdytcjjinym.com naupseko.com x.faukoocifaly.com f.evivuwhoa.com p.asoursuls.com p.ikouthaupi.com x.staubsuthil.com r.ceebikoph.com o.whatisnewappforyou.top j.woaneezy.com r.woupheezoh.com s.whauglorga.com antgvaxn.com pjlufuwtxv.com gisdlugvr.com oatchelt.com newojhsa.com radhdsotedmsqx.com rbqnxrbeebjfp.com fsgjiqgfhotfmg.com ptaicmog.com vaicashu.net noathoaw.net loopauth.net zugloopt.com whoacair.com eshauroo.net gsclvurjec.xyz qbjbabbthumyov.xyz wuhcueidt.com xcowuheclvwryh.com jdhgswknl.com kjqsajadwspk.com w.daizuleesh.com h.glooksohu.com n.ooshauksofas.com ctqvmwdxla.com cruhjmhyrxpgl.xyz whujoagh.net toabaise.net tmiawrrysqk.com hyweasoco.com bdihjsaf.com dkesqebismkqec.com wsdtnibivx.xyz dwrpelyef.xyz sunbpcbqluuo.xyz fivulsou.xyz wrmylfhph.com csfabdtmrs.com hwrdmnldmpbnjl.com mroqogotufe.com ougrauty.com kqqwutgln.com ramcwhbhplp.com bbsgsmmqviaob.xyz befsbiiqif.xyz hyhltxfovd.com bgyeouoavr.xyz dmdnvvjmdgn.com qbtsukrm.com vfwbhmtyipkni.com moxsidymi.xyz ywsxkucwyghaa.xyz amyaxgaqvoh.com nitiigwdvgoccpp.com klisejrwgir.com kgxpbxhigq.com faudabere.com tuudrwnbglqqvm.com hsmrabnj.com loxihgdilm.com qbnanpdjuldqegd.com ucvtxoqykmnrnor.com expoilmtxa.com sgvxioyyive.xyz d.promolandforapp.com y.promolandforapp.com q.promolandforapp.com phoosuss.net doodoaru.net eekeeghoolsy.com alppcbkrmxsci.xyz kqtvdljwv.com wsvibiysludyfwp.xyz hclcxxjwtm.xyz ytbarwktxjrfxr.xyz qbxwgnyrogc.xyz twdjklxt.com clwdhaxwlgwucsj.com hbuvpsfplllwsj.com muecjrqls.com qmchotdasf.com oqxybccaooh.com cwyeturjusmmym.xyz cwwspxawd.com lpravybegqv.com ydygdsnss.com ytpailsherb.com jrgjioekhsgmpc.com junverwkpnl.com rbjxexeh.com wouthula.xyz upsajeve.com nvkyjvyyafo.com amqxvwmsfn.xyz cekkwgxdnd.xyz yelsymgmtol.xyz xdpwrcdcafc.com xqxknnvbwqfj.com dauptoawhi.com idprkcened.com irsnylnjgcfytxq.com yewljmvlrq.com gliufwcsjq.com uhoaghuli.com utmtxewl.com exuharpxs.com fxwykuxh.com e.shaighax.com i.shaighax.com h.shaighax.com w.shaighax.com c.shaighax.com m.shaighax.com l.shaighax.com u.shaighax.com vdamsbflhypjsqw.xyz hdpdrandpd.xyz lnhujljf.xyz aggjprvqamtl.com cbolelrgphblpcb.com shoageep.com evctmfgubtytpdm.com nwjxmtvijtj.com kgrugvpmy.com hgsosrgldtgmyb.xyz hrsfcojtnyw.com pxdujpdbdqkisil.com jljrllijyuoinx.com wbjjkdofo.xyz tnhdrusurnelr.xyz vmnsadfywjivr.xyz prfpktammbj.xyz nsbioopwcaexl.xyz voowiche.com vmduttik.com siwasxqiohxp.com qvlckjduksqw.com yrsrvelnheqqsew.com kdvtfbqhftvgpd.com p.promolandforapp.com d.zprelandappslab.com k.promolandforapp.com i.promolandforapp.com whnctvmoka.xyz sisomaitt.xyz gdjejefdqthxmy.xyz rxcghhurloldkeu.xyz shaighax.com hobftcfdrm.com l.infopagleey.com n.infopagleey.com x.infopagleey.com taudklexcq.com wrsnpevgfn.xyz aiyxrehstfh.xyz mcueidiq.xyz fkexeijtqstuh.xyz whodouth.net woghurti.net utouhaih.net vurdouss.net shoshaiw.net sockourg.net staltaze.net glorsugn.net wxppgmwao.com irmghmmlet.com ygoeqrmeqdbg.com bdjeunhkwlssw.com uejffkdafkcrp.com juorowldwyys.com kbjoxsxllarutn.com fcmwyxpaammtupx.com bhgmlryalkwx.xyz hhvivsbiip.com saupouni.xyz ugghvrkwwucgri.xyz dmhbmensxocctw.xyz xopbnnieebmpu.com thaiwhou.com cughpjbqfl.com grurawho.com emrhkwfaemnhhck.com kogoulri.com kqkekwosxpj.com q.worldcommonwords.com j.botsaunirt.com dfleywbt.xyz jmeeersdkmoir.xyz nhkvdjuvfgmpk.xyz dlhqffirehv.com iunnrqcmup.com kgqipyttin.com rvywpkkcqtqg.com fxrsmsyvbmbfof.com pulaptib.com veepafoa.net soodouph.net xxcpsqquegwmi.com wroofuvco.com ousinouk.xyz vauzoaph.net vooshozo.com vyoksdtdoc.com shabaiks.com juvuqsdxjfk.com jhwyadcak.com usrguksvbnejfsd.com finsoogn.xyz n.mydailynewz.com yhkusyik.xyz ljokijpwtkwib.com qaforfgcxtpi.com owhetair.com jgaguuqimcdgkoh.com vstnenmrkjlfxie.com qjfehnksquxeba.com nmxqtuyyojgm.com v.zeyappland.com

Open Ports Detected

443 80

Map

Whois Information

  • NetRange: 139.45.0.0 - 139.45.255.255
  • CIDR: 139.45.0.0/16
  • NetName: RIPE
  • NetHandle: NET-139-45-0-0-1
  • Parent: NET139 (NET-139-0-0-0-0)
  • NetType: Early Registrations, Transferred to RIPE NCC
  • OriginAS:
  • Organization: RIPE Network Coordination Centre (RIPE)
  • RegDate: 2018-03-05
  • Updated: 2018-03-05
  • Ref: https://rdap.arin.net/registry/ip/139.45.0.0
  • OrgName: RIPE Network Coordination Centre
  • OrgId: RIPE
  • Address: P.O. Box 10096
  • City: Amsterdam
  • StateProv:
  • PostalCode: 1001EB
  • Country: NL
  • RegDate:
  • Updated: 2013-07-29
  • Ref: https://rdap.arin.net/registry/entity/RIPE
  • OrgAbuseHandle: ABUSE3850-ARIN
  • OrgAbuseName: Abuse Contact
  • OrgAbusePhone: +31205354444
  • OrgAbuseEmail: abuse@ripe.net
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
  • OrgTechHandle: RNO29-ARIN
  • OrgTechName: RIPE NCC Operations
  • OrgTechPhone: +31 20 535 4444
  • OrgTechEmail: hostmaster@ripe.net
  • OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
  • inetnum: 139.45.196.0 - 139.45.197.255
  • netname: networkclaim-com
  • country: NL
  • admin-c: PALA1-RIPE
  • tech-c: PALA1-RIPE
  • abuse-c: PALA1-RIPE
  • status: LEGACY
  • mnt-by: MNT-RETN
  • mnt-by: MNT-RETN
  • created: 2022-03-31T09:37:19Z
  • last-modified: 2023-01-31T15:44:25Z
  • role: networkclaim-com Abuse-c
  • abuse-mailbox: claims@networkclaim.com
  • address: Keienbergweg 22, 1101 GB Amsterdam
  • nic-hdl: PALA1-RIPE
  • mnt-by: MNT-RETN
  • created: 2022-03-31T09:29:44Z
  • last-modified: 2023-01-13T08:39:37Z
  • route: 139.45.192.0/19
  • origin: AS9002
  • mnt-by: MNT-RETN
  • created: 2022-11-16T09:28:07Z
  • last-modified: 2022-11-16T09:28:07Z
Share on: