198.199.88.249 Threat Intelligence and Host Information

Sep 08, 2023 ipinfopage

General

IP Address

198.199.88.249

IPv4 Address

Location

🇺🇸 North Bergen, United States

Network

AS14061

DIGITALOCEAN-ASN

Threat Score

45/100

Medium Risk

Nextraycybersecurityiocmaliciousphishingtsec

Attack Intelligence

MITRE ATT&CK Techniques

T1046 - Network Service Scanning, T1423 - Network Service Scanning, T1595.001 - Scanning IP Blocks, T1595.002 - Vulnerability Scanning, T1596.005 - Scan Databases, TA0043 - Reconnaissance

Geographic Location

Country

United States

City

North Bergen

Region

New Jersey

Coordinates

40.7930, -74.0247

Network Information

ASN

AS14061

Organization

DIGITALOCEAN-ASN

Network

AS14061 DIGITALOCEAN-ASN

WHOIS Information

NetRange

198.199.64.0 - 198.199.127.255

CIDR

198.199.64.0/18

NetName

DIGITALOCEAN-198-199-64-0

NetHandle

NET-198-199-64-0-1

Parent

NET198 (NET-198-0-0-0-0)

NetType

Direct Allocation

OriginAS

AS14061

Organization

DigitalOcean, LLC (DO-13)

RegDate

2012-05-14

Updated

2023-07-07

Comment

Ref

https://rdap.arin.net/registry/entity/DO-13

OrgName

DigitalOcean, LLC

OrgId

DO-13

Address

FL2

City

New York

StateProv

PostalCode

10013

Country

OrgAbuseHandle

ABUSE5232-ARIN

OrgAbuseName

Abuse, DigitalOcean

OrgAbusePhone

+1-347-875-6044

OrgAbuseEmail

abuse@digitalocean.com

OrgAbuseRef

https://rdap.arin.net/registry/entity/ABUSE5232-ARIN

Country: United States
Network: AS14061 digitalocean llc
Noticed: 1 times
Protcols Attacked: SSH
Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Italy, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
Passive DNS Results: lp2019.alce.works www.thefanlab.alce.works thefanlab.alce.works www.trak.cl www.condoneria.alce.works condoneria.alce.works trak.cl www.bsfseeds.alce.works bsfseeds.alce.works

Disclaimer

This page contains threat intelligence information for the IPv4 address 198.199.88.249 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.