51.68.137.240 Threat Intelligence and Host Information

Jun 19, 2024 ipinfopage

General

IP Address

51.68.137.240

IPv4 Address

Location

🇵🇱 Warsaw, Poland

Network

AS16276

OVH SAS

Threat Score

61/100

High Risk

abuseipdbBruteforceBrute-Forcecowriescanscannerssipsipvicious

Attack Intelligence

MITRE ATT&CK Techniques

T1046 - Network Service Scanning, T1078 - Valid Accounts, T1083 - File and Directory Discovery, T1098.004 - SSH Authorized Keys, T1105 - Ingress Tool Transfer, T1110.004 - Credential Stuffing, T1110 - Brute Force, T1595 - Active Scanning

Open Ports Detected

Geographic Location

Country

Poland

City

Warsaw

Region

Mazovia

Coordinates

52.2484, 21.0026

Network Information

ASN

AS16276

Organization

OVH SAS

Network

AS16276 OVH SAS

WHOIS Information

inetnum

51.68.136.0 - 51.68.143.255

netname

VPS-WAW2

country

org

ORG-OS23-RIPE

geoloc

52.225524 21.049737

admin-c

OK217-RIPE

tech-c

GM84-RIPE

status

LEGACY

mnt-by

OVH-MNT

created

2018-03-07T09:22:39Z

last-modified

2018-03-07T09:22:39Z

organisation

ORG-OS23-RIPE

org-name

OVH Sp. z o. o.

org-type

OTHER

address

Poland

mnt-ref

OVH-MNT

role

OVH PL Technical Contact

nic-hdl

OTC12-RIPE

abuse-mailbox

abuse@ovh.net

route

51.68.0.0/16

origin

AS16276

Attack Logs

Date	Target Location	Protocol	Link
2024-07-15	Vultrparis	SSH	View Log

Country: Poland
Network: AS16276 ovh sas
Noticed: 11 times
Protocols Attacked: ssh
Countries Attacked: Australia, Spain
Passive DNS Results: apartament-mikolaja.com apartamentmikolaja.com www.mobilnywarzywniak.com mobilnywarzywniak.com rabka-zdroj.com fryzjerwrabce.pl minion.pl

CVEs Detected

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

Disclaimer

This page contains threat intelligence information for the IPv4 address 51.68.137.240 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.