104.248.85.68 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.248.85.68 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: Netherlands
• Network:
• Noticed: 1 times
• Protocols Attacked: ssh
• Passive DNS Results: cr.appshub.cloud www.cr.appshub.cloud mukhaiznainternational.com www.php74.khaza.in php74.khaza.in www.writeworld.online writeworld.online hhoman.com www.spastation.salon spastation.salon www.adventureworld.tours www.luban.site luban.site adventureworld.tours www.sollamrealestate.com sollamrealestate.com opal.bid www.opal.bid omanarbitration.om www.omanarbitration.om hse.khaza.in www.hse.khaza.in www.exportfrom.site appshub.cloud www.appshub.cloud sbdit.pro teashopom.com www.teashopom.com www.opalss.cloud rpos.itsc.cloud www.rpos.itsc.cloud www.host7.itsc.systems exportfrom.site opalss.cloud www.makhazen.om www.itsc.systems www.khazain.om www.allegiance.vip www.coffee-store.shop www.candidint.com thetrendy.app www.thetrendy.app www.omanitsc.com www.ohrc.om ohrc.om www.khaza.in www.qrmenu.cafe qrmenu.cafe www.akila.llc akila.om www.akila.om www.rawind.international www.itsc.om www.khalafaladawi.info www.nizwa.com www.itsc.cloud www.extradose.coffee www.daily-dose.cafe www.alrahbi.info allegiance.vip makhazen.om cpcontacts.rawind.international rawind.international cpcalendars.rawind.international cpcalendars.khalafaladawi.info cpcontacts.khalafaladawi.info omanitsc.com cpcalendars.itsc.systems cpcontacts.itsc.systems itsc.systems cpcalendars.akila.llc cpcontacts.akila.llc akila.llc pos.itsc.om www.pos.itsc.om cpcalendars.itsc.om cpcontacts.itsc.om itsc.om makhazen.itsc.om www.nbc.itsc.om www.makhazen.itsc.om nbc.itsc.om www.billing.itsc.om billing.itsc.om coffee-store.shop cpcalendars.khazain.om khazain.om cpcontacts.khazain.om cpcalendars.candidint.com cpcontacts.candidint.com candidint.com www.istore.omanitsc.com istore.omanitsc.com im.candidint.com www.im.candidint.com cpcalendars.sayyidkhalid.com cpcontacts.sayyidkhalid.com cpcalendars.itsc.cloud cpcontacts.itsc.cloud cpcalendars.moments.pictures cpcontacts.moments.pictures cpcalendars.nizwa.com cpcontacts.nizwa.com cpcalendars.extradose.coffee cpcontacts.extradose.coffee cpcontacts.harmonylyrics.com cpcalendars.harmonylyrics.com cpcalendars.daily-dose.cafe cpcontacts.daily-dose.cafe alrahbi.info cpcontacts.alrahbi.info cpcalendars.alrahbi.info cpcontacts.bahla.horse cpcalendars.bahla.horse bahla.horse khaza.in nizwa.com extradose.coffee wadimaawelschool.com www.ipa.gov.om ipa.gov.om moments.pictures harmonylyrics.com vidown.app host7.itsc.systems host8.itsc.systems khalafaladawi.info daily-dose.cafe itsc.cloud sayyidkhalid.com

Open Ports Detected

22 445

Map

Whois Information

• NetRange: 104.248.0.0 - 104.248.255.255
• CIDR: 104.248.0.0/16
• NetName: DIGITALOCEAN-104-248-0-0
• NetHandle: NET-104-248-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: DigitalOcean, LLC (DO-13)
• RegDate: 2018-08-06
• Updated: 2020-04-03
• Comment: Routing and Peering Policy can be found at https://www.as14061.net
• Comment:
• Ref: https://rdap.arin.net/registry/ip/104.248.0.0
• OrgName: DigitalOcean, LLC
• OrgId: DO-13
• Address: 105 Edgeview Drive, Suite 425
• City: Broomfield
• StateProv: CO
• PostalCode: 80021
• Country: US
• RegDate: 2012-05-14
• Updated: 2025-04-11
• Ref: https://rdap.arin.net/registry/entity/DO-13
• OrgTechHandle: NOC32014-ARIN
• OrgTechName: Network Operations Center
• OrgTechPhone: +1-646-827-4366
• OrgTechEmail: noc@digitalocean.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgNOCHandle: NOC32014-ARIN
• OrgNOCName: Network Operations Center
• OrgNOCPhone: +1-646-827-4366
• OrgNOCEmail: noc@digitalocean.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgAbuseHandle: DIGIT19-ARIN
• OrgAbuseName: DigitalOcean Abuse
• OrgAbusePhone: +1-646-827-4366
• OrgAbuseEmail: abuse@digitalocean.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN

Links to attack logs

digitaloceansingapore-ssh-bruteforce-ip-list-2025-11-30