177.174.89.99
IP Intelligence Briefing: 177.174.89.99
Date: 2026-06-17
---
**1. Risk Profile**
- Risk Score: 80 (High Risk)
- Provider: TELEFÔNICA BRASIL S.A (ASN: 26599)
- Geolocation: Belo Horizonte, Brazil (MG)
- Network Role: Mobile LTE/5G service (Vivo carrier)
- Threat Indicators: No direct malicious activity detected.
---
**2. Key Observations**
- DNS:
- PTR hostname: `177-174-89-99.user.vivozap.com.br`
- No SPF/DKIM records detected.
- Services:
- Open SSH port (22/tcp) with banner: `SSH-2.0-OpenSSH_6.7`
- No TLS/HTTP services or certificates detected.
- Network:
- Subnet: `177.174.89.99/24` (abuse density: 1, classified as "mostly clean")
- Linked to mobile carrier Vivo (MCC: 724, MNC: 11).
---
**3. Historical Trends**
- Observation History:
- Last 30 days: 20 signals recorded (geolocation, network, and DNS).
- No persistent malicious activity or ownership changes.
- Geolocation inferred with 0.52 confidence (2500 km accuracy).
---
**4. Relationships & Neighbors**
- Network Relationships:
- Part of subnet `177.172.0.0/14` (AS26599).
- 35 related entities (network, hostnames, etc.), but no direct peer IPs.
- Neighbors:
- No active sibling IPs in the /24 subnet.
---
**5. Recommendations**
- Monitor SSH Service: Investigate open port 22/tcp for unauthorized access.
- Validate DNS: Confirm ownership of `vivozap.com.br` domain for potential spoofing.
- Network Segmentation: Isolate mobile carrier traffic to prevent lateral movement.
- Geolocation Verification: Cross-check inferred location with additional probes.
---
Source: IPDebrief Threat Intelligence Platform
Note: No immediate mitigation actions required, but continuous monitoring advised due to high risk score and mobile network exposure.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | TELEFÔNICA BRASIL S.A |
| ASN | AS26599 |
| Network Name | 184581 |
| CIDR Block | 177.172.0.0/14 |
| RIR | LACNIC |
| Country | BR |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | 177-174-89-99.user.vivozap.com.br |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | 177-174-89-99.user.vivozap.com.br |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Single-Service Host |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_6.7 |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 25% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 19% | 2 | 2 |
| reputation | 24% | 1 | 3 |
| geolocation | 32% | 2 | 3 |
| Overall | 21% | 10 | 15 |
| Data Coherence | Mostly Consistent (80%) โ 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:03:56 UTC |
| Last Seen | 2026-06-26 18:10:49 UTC |
| Profile Built | 2026-06-22 22:10:38 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 23 |
Full dossier details are available via our API.