174.139.71.178 Threat Intelligence and Host Information

Share on:

May 04, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 40/100

Host and Network Information

Mitre ATT&CK IDs: T1595 - Active Scanning
Tags: bruteforce, digital ocean, scan, sip
View other sources: Spamhaus VirusTotal
Country: United States of America
Network: AS35908 krypt technologies
Noticed: 5 times
Protcols Attacked: sip
Countries Attacked: Australia, Canada, Germany, Singapore, United Kingdom
Passive DNS Results: feifei.ql-system.com

Open Ports Detected

22 5060

CVEs Detected

CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617

Map

Whois Information

NetRange: 174.139.0.0 - 174.139.255.255
CIDR: 174.139.0.0/16
NetName: VPLSNET
NetHandle: NET-174-139-0-0-1
Parent: NET174 (NET-174-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS35908
Organization: Krypt Technologies (VPLSI)
RegDate: 2008-11-11
Updated: 2012-03-02
Comment:
Comment: For legal requests/assistance please use the
Comment: following contact information:
Comment: VPLS Subpoena Phone: 213-406-9088
Comment: VPLS Abuse Fax: 213-406-9001
Comment: VPLS AUP, Terms of Service and DMCA/Copyright notices info:
Comment: http://www.vpls.net/privacy/
Ref: https://rdap.arin.net/registry/ip/174.139.0.0
OrgName: Krypt Technologies
OrgId: VPLSI
Address: 600 West 7th Street, Suite 510
City: Los Angeles
StateProv: CA
PostalCode: 90017
Country: US
RegDate: 2005-03-25
Updated: 2022-08-15
Comment: For legal requests/assistance please use the
Comment: following contact information:
Comment: VPLS Subpoena Phone: 213-406-9018
Comment: VPLS Abuse Fax: 888-365-2656
Comment: VPLS AUP, Terms of Service and DMCA/Copyright notices info: http://www.vpls.com/aup
Comment: descr: This space is statically assigned.
Ref: https://rdap.arin.net/registry/entity/VPLSI
OrgTechHandle: VPLSA-ARIN
OrgTechName: VPLS-ARIN
OrgTechPhone: +1-213-406-9018
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/VPLSA-ARIN
OrgAbuseHandle: VPLSA-ARIN
OrgAbuseName: VPLS-ARIN
OrgAbusePhone: +1-213-406-9018
OrgAbuseEmail: [email protected]
OrgAbuseRef: https://rdap.arin.net/registry/entity/VPLSA-ARIN
OrgNOCHandle: NETWO813-ARIN
OrgNOCName: Network Engineering
OrgNOCPhone: +1-866-599-9593
OrgNOCEmail: [email protected]
OrgNOCRef: https://rdap.arin.net/registry/entity/NETWO813-ARIN
OrgTechHandle: TME68-ARIN
OrgTechName: Mektrakarn, Ted
OrgTechPhone: +1-213-406-9000
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/TME68-ARIN
RTechHandle: KRYPT-ARIN
RTechName: Krypt Keeper
RTechPhone: +1-888-365-2656
RTechEmail: [email protected]
RTechRef: https://rdap.arin.net/registry/entity/KRYPT-ARIN
RAbuseHandle: KRYPT-ARIN
RAbuseName: Krypt Keeper
RAbusePhone: +1-888-365-2656
RAbuseEmail: [email protected]
RAbuseRef: https://rdap.arin.net/registry/entity/KRYPT-ARIN
RNOCHandle: NETWO813-ARIN
RNOCName: Network Engineering
RNOCPhone: +1-866-599-9593
RNOCEmail: [email protected]
RNOCRef: https://rdap.arin.net/registry/entity/NETWO813-ARIN
Found a referral to vault.krypt.com:4321.

Links to attack logs