104.192.102.211 Threat Intelligence and Host Information

ipinfopage

General

This page contains threat intelligence information for the IPv4 address 104.192.102.211 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

🟡 Low Risk — 30/100

Geographic Location

Host and Network Information

  • View other sources: Spamhaus VirusTotal Shodan AbuseIPDB
  • Country: United States
  • Network: AS16584 ionswitch llc
  • Noticed: 1 time
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Tor Node: No

Tags

  • cyber security
  • ioc
  • malicious
  • Nextray
  • phishing

Passive DNS

  • gearfill.fun

Attack Log References

Whois Information

NetRange: 104.192.100.0 - 104.192.103.255 CIDR: 104.192.100.0/22 NetName: GNS-2 NetHandle: NET-104-192-100-0-1 Parent: NET104 (NET-104-0-0-0-0) NetType: Direct Allocation OriginAS: AS32288 Organization: Garrison Network Solutions LLC (GNSL-3) RegDate: 2014-08-29 Updated: 2014-08-29 Ref: https://rdap.arin.net/registry/ip/104.192.100.0 OrgName: Garrison Network Solutions LLC OrgId: GNSL-3 Address: 15410 Rocky Oak Ct. City: Houston StateProv: TX PostalCode: 77059 Country: US RegDate: 2013-03-15 Updated: 2017-01-28 Ref: https://rdap.arin.net/registry/entity/GNSL-3 OrgTechHandle: NETWO6136-ARIN OrgTechName: Network Operations OrgTechPhone: +1-281-671-4678 OrgTechEmail: noc@garrisonnetwork.com OrgTechRef: https://rdap.arin.net/registry/entity/NETWO6136-ARIN OrgAbuseHandle: NETWO6136-ARIN OrgAbuseName: Network Operations OrgAbusePhone: +1-281-671-4678 OrgAbuseEmail: noc@garrisonnetwork.com OrgAbuseRef: https://rdap.arin.net/registry/entity/NETWO6136-ARIN OrgNOCHandle: NETWO6136-ARIN OrgNOCName: Network Operations OrgNOCPhone: +1-281-671-4678 OrgNOCEmail: noc@garrisonnetwork.com OrgNOCRef: https://rdap.arin.net/registry/entity/NETWO6136-ARIN NetRange: 104.192.102.0 - 104.192.102.255 CIDR: 104.192.102.0/24 NetName: IONSWITCH NetHandle: NET-104-192-102-0-1 Parent: GNS-2 (NET-104-192-100-0-1) NetType: Reallocated OriginAS: AS395970 Organization: IonSwitch, LLC (IL-446) RegDate: 2017-05-17 Updated: 2017-05-17 Ref: https://rdap.arin.net/registry/ip/104.192.102.0 OrgName: IonSwitch, LLC OrgId: IL-446 Address: 600 W Appleway Ave Address: Ste B City: Coeur d'Alene StateProv: ID PostalCode: 83814 Country: US RegDate: 2017-04-14 Updated: 2022-10-16 Comment: https://www.ionswitch.com Ref: https://rdap.arin.net/registry/entity/IL-446 OrgTechHandle: NOC32621-ARIN OrgTechName: Network Operations Center OrgTechPhone: +1-888-801-4667 OrgTechEmail: noc@ionswitch.com OrgTechRef: https://rdap.arin.net/registry/entity/NOC32621-ARIN OrgAbuseHandle: ABUSE5858-ARIN OrgAbuseName: Abuse OrgAbusePhone: +1-888-801-4667 OrgAbuseEmail: abuse@ionswitch.com OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5858-ARIN OrgNOCHandle: NOC32621-ARIN OrgNOCName: Network Operations Center OrgNOCPhone: +1-888-801-4667 OrgNOCEmail: noc@ionswitch.com OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32621-ARIN RNOCHandle: NOC32621-ARIN RNOCName: Network Operations Center RNOCPhone: +1-888-801-4667 RNOCEmail: noc@ionswitch.com RNOCRef: https://rdap.arin.net/registry/entity/NOC32621-ARIN RTechHandle: NOC32621-ARIN RTechName: Network Operations Center RTechPhone: +1-888-801-4667 RTechEmail: noc@ionswitch.com RTechRef: https://rdap.arin.net/registry/entity/NOC32621-ARIN RAbuseHandle: ABUSE5858-ARIN RAbuseName: Abuse RAbusePhone: +1-888-801-4667 RAbuseEmail: abuse@ionswitch.com RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5858-ARIN