108.138.94.48 Threat Intelligence and Host Information

Oct 16, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 108.138.94.48 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

View other sources: Spamhaus VirusTotal

Country: United States
Network: AS16509 amazon.com inc
Noticed: 1 times
Protcols Attacked: SSH
Passive DNS Results: d34azmi6bxg5fz.cloudfront.net actingobsessed.com 3375666.com 3385666.com sonarcloud.io www.mend.io url.gratis dhrau5qu9zro4.cloudfront.net cd7dji17fal16e.xyz zdjts8ez8xpqle.xyz b5s6ujk5rlx0h4.xyz gpydfialklmpif.xyz ka26lopfmxyb79.xyz 940z8l8dz69lxp.xyz 2p3ymf9psaoak6.xyz k7spns8hril7n4.xyz open.mkt6316.com lrczg.one 659511.com analiticbet.site nuttynorman.co.uk muebet.com akwatisuites.com luminarylovelounge.com sussexcommunityseedbank.com simplysweetphoto.com d38wv862wogbxh.amplifyapp.com motoz.bike smpdev2.peserv.cmbu.devl.intgfanniemae.com 292488.com gsrcunow.com dtuezdie8db0d.amplifyapp.com api.care.perceptionhealth.com d2wpcfpzcf1bhz.amplifyapp.com beabox2.com larkinforarizona.com d2aquv8wta0qbn.amplifyapp.com lvnp.online d2ico0nzsi3w1a.amplifyapp.com storiesbychey.com djduc7hq5y3vi.amplifyapp.com pr3532-patient.dentr.io cruises-halongbay.com duncavkskhb4j.amplifyapp.com d25il5mmnuevij.amplifyapp.com d28hr6tgc3npw.amplifyapp.com d2dw2hfefqdldc.amplifyapp.com kopaczflorist.com d1ehox0y5qf9t.cloudfront.net 7739666.com 7729666.com sfwcs.network segui08.com ccessfull.xyz api.web.clickup.com towerofpower.store chefseanbone.com trainlineeurope.be 8247e.com 8247d.com wagewar.store linqconnect.com help.rkp.na.smart-integration.ricoh.com av6k12.top bandonudie.com d1u0szejl2aem1.amplifyapp.com trainline-europe.at hakuba-aile.com somelikeithotnyc.store fchelpdesk.com adnthings.com classicmortgage.ca thetrainnline.co.uk trainline-europe.be willienelsonbirmingham.store sgxxx.site sg02.tv aisegui.vip aisegui.cc isegui.com segui.cc segui01.com segui03.com jokoyelpaso.store moranivsheriff.com ianstorck.com klanten.qa.openbank.nl nutcrackermiami.store www.njycwj.com expertballe.com d3lr5xrjxtvw3c.amplifyapp.com d3obrmgqcdgr8v.amplifyapp.com d3rybn40zqzc26.amplifyapp.com d2of40x9hd4erg.amplifyapp.com www.dreaminteriorswindowfashions.hdwfdealer.com m.mulante.com d3qpszj3pnndd3.amplifyapp.com gaiaresources.com.au d1tpzpx4i87hd0.amplifyapp.com d28cwc17jvi99p.amplifyapp.com dmt671j4ililp.amplifyapp.com aaronlewiserie.store d1vr9hiyajert6.amplifyapp.com media.sofarsounds.com stridelogin.com consiglionotarilebari.it d35156u6ghvnyb.amplifyapp.com crossgate.io d5ner5ljupyui.amplifyapp.com d1dzf400hcaqkm.amplifyapp.com uc.cars.co.za d3jxah9nwht3cg.amplifyapp.com getangelsnearby.com ddkda5fkjfh5k.amplifyapp.com development.reveleer.com licenciement-conseil.com fsa2mbsbbank.com dzcb4tc6b0yr.amplifyapp.com knacandlestop.com d1t387rhny69j9.amplifyapp.com d1xmmr0id713q4.amplifyapp.com d2abhvrp5iefg1.amplifyapp.com contractors.apartmenttherapy.com concredveiculos.sitewebmotors.com.br tdangalam.com www.primevideo.shop burnabyrefinery.ca cdn.blogdicalcio.it 888corner.com djlqrtttvgzlt.amplifyapp.com help.dev-integrate.objective.com d1g4u6axlagf9v.amplifyapp.com careers.criteo.com umpan.com.my www.votreamende.be dev.thmatc.co hesatinaco.com www.skysportnow.co.nz www.rmittraining.com tr.pli-petronas.com mitel.co.uk just-onweb.be amendesroutieres.be www.just-on-web.be www.nzari.com.au igneous.io farmandfleet.com www-p.lupronplaybook.abbvie.net shengpaitech.com www.281winecellar.com infimo-courtage.com buyinstagramslikescheap.com d132tozla82wjk.amplifyapp.com thepoolcloser.com redbikephoto.com ga4-changes-graph.dentr.io cloudcdn.nz vorresgallery.com midasdeli.com stanfordhomeinsurance.com oselescosmetiques.com arellanotowing.com kneesaver-brace.us rdc-personal-miriam.dev.arceo.dev pazago.com archedekathleen.com volu.ar nickque.com www.zenno.space zenno.space crescendoemflor.com refresh-sakika.com shakeelahmad.net dbw0pl3m5h3vu.amplifyapp.com lindaketelhut.com offishalbrandi20.com dti906gnmwrd3.amplifyapp.com telefoon-abonnement-vergelijken.com disputes-dev.silverflow.com restaurant-lepetitfrantz.com www.takamiya-j.hiroshima-c.ed.jp luxassets.sofasandsectionals.com trunkat.com d1oh57f50msdan.amplifyapp.com buysonovive.com wp-elektrotechnik.com lancocache.com www.tokyo-homeinspection.com tokyo-homeinspection.com elultimojoseantonio.com heirwaveradio.com segui05.com convertinofiori.com events.footwearnews.com d3e6apqq46zo7n.amplifyapp.com coffeebeanzen.com tiagoev.tatamotors.com blre.cc static.oval.ltd farmaciasedson.com.br kuragestudios.com advanceindianaarchive.com mend.io trainline-europe.biz pocketfulofsunshineevents.com bordervets.co.uk segui02.com arrbapp.com www.kosobijin.com d3kscw9d4elffh.amplifyapp.com ihls-group.com mirrorlifestylebd.com trainlineeurope.ch thetrainline-europe.se cyber.je djomico.com farmalyra.com.br okutanlaryapi.com himo.id 184044.com triadmassage.com hotelplayadecortes.com williamhill.se shopping.intautonation.com snapui.searchspring.io enkithemystik.com d11ul6oq1x47bt.amplifyapp.com site-dropdown-rest.dentr.io site-dropdown-graph.dentr.io site-dropdown-apis.dentr.io oraylimited.co.uk cdn.visiondatabasetesting.com daniel-aehr.aehr.dev uniyongfeng.com www.letsgetchecked.ie api.content.locuslabs.com staging.cloudsensum.com ddrb1zzvd9mod.amplifyapp.com d1d9u07wubdqub.amplifyapp.com d18z9dw54y2v7z.amplifyapp.com d3kocziaaaaxne.amplifyapp.com d3ij4ot1p3jj6m.amplifyapp.com www.njm.cloud custservice-loyalty.dev.crest.deckers.com kleo.com.ar cls.researchcapitalgroup.com d1wfo73pw86cve.amplifyapp.com www.clevercade.com clevercade.com mvmt-patient.zedoc.io dzq7r5qovshpa.amplifyapp.com letsgetchecked.ie d2ozm3xpb8gk3d.amplifyapp.com uwo.line.games udemysample.ml www.lespetitspoids.com lava919.com bootdesk.pt piecedata.com casinofluke.com scrivalryrun.com bradpaisleytickets.online earsofexpe.fun predikt.finance chabela-poderosa.com celsius-to-fahrenheit.net sferafarma.cloud shimazaki-dental.com farmaciakageane.com.br cosjamhomecareministry.com murrayshealthandwellness.com ceci.pizza ll-ceramic.com deroussan-artprojects.com thewackyscientist.com lakemitchellcondos.com sacasino69.com minstervets.co.uk bossedupup.com tts-engineering.com gaia-ops.com fvsocial.net pha5.com rokitokijoki.com waltham-hotels.com deg2.com d2xatnuqvvgj6t.cloudfront.net signsandprint.uk tantosec.com babel-1-cloudfront.babel.photobox.com d36s2qkk8jiusm.cloudfront.net musiqsoulchild.online d3sms3opfg2ci7.cloudfront.net jyllands-posten.dk volunteermatch.org mt.ssai.peacocktv.com cartrade.com viu.tv d3w1qto6dvkfe6.cloudfront.net melodious-life.com willowcreekplantation.com icamebytrain.com samithegame.com natashaalcantarcom.com iseuropemeeting.com spinellispizzeriatempe.com tvnplay.cl d3pdwmbg3m9k4w.cloudfront.net d31f576emp9ccb.cloudfront.net es.trustpilot.com sb.a0312.hydra888.com developers.thunes.com onestuffs.com tiktok-desi.com passnitonoutdoors.com diversityfertilityservices.com maisbrasilguanambi.com.br biofarmaanapolis.com.br gashewasf.xyz verify.notarize.com clickup.com farmaciadroganorte.com.br levafarma.com.br tavaresdrogaria.com.br drogariasmartfarma.com.br lsfarmacias.com.br brendastreet.com farmaciateixeiraparacambi.com.br mrmaxdrivertraining.com farmafappi.com.br poupefardrogarias.com.br fspharma.com.br mexpharma.com.br rededrogariasabrina.com.br americanasetelagoas.com.br spiderpillow.com fointernetsatis.com claudinechua.com pink-powderpuff-books.com dk.trustpilot.com drogariajardimindustrial.com.br jeffarmadrogarias.com.br d11tj9y30p0hqh.amplifyapp.com keyper.amalik.monitoring-nonprod.collegeboard.org test.instacoins.com stage.instacoins.com saudi-registration.com staging-miedge.zywave.com dykrne16lgk9i.amplifyapp.com al.dmm.co.jp www.tutogen.qarad.eifu.online eifu.tutogen.com d32ls1s28693ge.cloudfront.net test12.instacoins.com dpiu.noctis.it www-test.veka.com assets.ctfassets.net vehiclestatus.sc-microfrontends.rio.cloud ui.uat.upcp.wirewheel.io do3jfkjjgarof.amplifyapp.com api.epc.dev.aws-nexity.fr d1lu8trc70pmi7.cloudfront.net d1shbagnwgjo1w.amplifyapp.com d2f0kuriqjh2fc.amplifyapp.com d8cqxw4b7wq0s.amplifyapp.com blueflow.ninja d2rbi08sk9twl7.amplifyapp.com flowersofjacksonville.com www.flowersofjacksonville.com onawadak.lk www.onawadak.lk video.linxio.com ybdivorce.com stream2.dannemann.com d3mfpbkaolugp8.amplifyapp.com dev.smart.newnordic.school www.studystreamafrica.com en.herbee.co.kr d1hwdmnm8x8ysu.amplifyapp.com demo.my.kanopicover.com www.my.kanopicover.com bluezebra.my.kanopicover.com my.kanopicover.com puppetjamapps.com womadic.com cdofviera.com alliedscientificpro.com d2hbpmelx83p16.amplifyapp.com freedompathradio.com d3w2p4i37t2j7j.amplifyapp.com d3d6zxvxyrmx1h.amplifyapp.com da2a65wawwsyi.amplifyapp.com d27skkhcp2yo27.amplifyapp.com d2s0xepqptst3d.amplifyapp.com sc-1333-scui.honeybadgers-sbx.dht.live d2uizuwnyxzpw9.amplifyapp.com dxgfnovl0dx7t.amplifyapp.com mailing.jimmyscannabis.com tr.viewing-history.cf.eu-north-1-preprod.vmnd.tv assets.aws.eitvcloud.com katetesting.bynder.com dlssqw6ifgw79.amplifyapp.com client-web.cricket-australia.test.pulselive.com d34uwqjp15kl1y.amplifyapp.com lendi.com.au docs.bigsool.io siteadmin-test.as.dev.asc.sabre.com test19.instacoins.com test18.instacoins.com dev-web.anywarecloud.com test17.instacoins.com udeli-nailpolish.com test16.instacoins.com test13.instacoins.com d28l3ohmgbts9w.amplifyapp.com tokensales.ufund.online qa6.tv-azteca.psdops.com cryptoleague.dev ampostech.com scsetop2022.com www.scsetop2022.com sandbox.kolabora.prieds.com globalnavigation.sretest2-develop.collabo-dev.worksap.com test11.instacoins.com endofdictatorship.org test10.instacoins.com payermax.link df-vfm.jabilapps.com www.acceptargroup.com acceptargroup.com test9.instacoins.com d1p3g924681r6b.amplifyapp.com test8.instacoins.com www.docs.aiml-data.in article.murata.com test7.instacoins.com dimensiondemos.dev test5.instacoins.com test4.instacoins.com www.vaudreuil-vw.ca test3.instacoins.com d37ul5jr84zroy.cloudfront.net prod.ew.mmg.navigacloud.com aguaraarandu.com njori.com d2wrsfopbazzkm.amplifyapp.com pos.red61.com.au dv3kqztzjadf5.amplifyapp.com d13zty6jhidhyz.amplifyapp.com test2.instacoins.com test1.instacoins.com ssc.sony.com.my web-stories.pakjobshub.com dnu4fhpisu976.cloudfront.net grumpy-rabbit-dev.aws.aviv.eu qatar2022.sbs.co.kr wind-api.vertikaliti.com wind.vertikaliti.com api.solarbots.io auth.solarbots.io rtlplus.web.now-plus-prod.aws-cbc.cloud dsp1tyohhxx81.amplifyapp.com samsungresources.visionobjects.com api.freshaddress.biz www.saferfederalworkforce.gov.external-domains-production.cloud.gov eth.limo www.minstervets.co.uk dgo565em4c9pc.amplifyapp.com auth.user.ameba.jp dra1iqr66rrip.cloudfront.net arianepoulin.com ccchristiancounseling.com d1bzw3txdlczn0.cloudfront.net prochainreve.com sbams.io blogs.wsj.com drogariaamerica.com.br drogariaipharma.com.br nctmerch.store americanapocos.com.br thetrainline.eu drogariadonabenta.com.br robzombiemerch.com mgm.com aquifarma.com.br precobaixofarmacias.com.br farmaprecopopular.com.br farmaciamaisdesconto.com.br farmaisuberlandia.com.br sweetiechaos.com amazzondrogarias.com.br drogariabasileiaemcasa.com.br harneyteajamboree.com drogariamilmed.com.br drogafaruberaba.com.br farmaciadna.com.br kuryonline.com.br drogariasmaissaudepi.com.br farmasaosebastiao.com.br familldrogarias.com.br

Malware Detected on Host

Count: 1 5af708f198840c2ca6c0e1da72cb73ba5b5232cf45ca0e3e9abf65bf2479b214

Open Ports Detected

443 80

Whois Information

NetRange: 108.128.0.0 - 108.139.255.255
CIDR: 108.128.0.0/13, 108.136.0.0/14
NetName: AMAZO-4
NetHandle: NET-108-128-0-0-1
Parent: NET108 (NET-108-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Amazon.com, Inc. (AMAZO-4)
RegDate: 2018-09-18
Updated: 2018-09-18
Ref: https://rdap.arin.net/registry/ip/108.128.0.0
OrgName: Amazon.com, Inc.
OrgId: AMAZO-4
Address: Amazon Web Services, Inc.
Address: P.O. Box 81226
City: Seattle
StateProv: WA
PostalCode: 98108-1226
Country: US
RegDate: 2005-09-29
Updated: 2022-09-30
Comment: For details of this service please see
Comment: http://ec2.amazonaws.com
Ref: https://rdap.arin.net/registry/entity/AMAZO-4
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgRoutingHandle: ARMP-ARIN
OrgRoutingName: AWS RPKI Management POC
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: abuse@amazonaws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName: IP Routing
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
NetRange: 108.138.0.0 - 108.139.255.255
CIDR: 108.138.0.0/15
NetName: AMAZON-CF
NetHandle: NET-108-138-0-0-1
Parent: AMAZO-4 (NET-108-128-0-0-1)
NetType: Reallocated
OriginAS:
Organization: Amazon.com, Inc. (AMAZON-4)
RegDate: 2021-05-03
Updated: 2021-05-03
Ref: https://rdap.arin.net/registry/ip/108.138.0.0
OrgName: Amazon.com, Inc.
OrgId: AMAZON-4
Address: 1918 8th Ave
City: SEATTLE
StateProv: WA
PostalCode: 98101-1244
Country: US
RegDate: 1995-01-23
Updated: 2022-09-30
Ref: https://rdap.arin.net/registry/entity/AMAZON-4
OrgRoutingHandle: ARMP-ARIN
OrgRoutingName: AWS RPKI Management POC
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: abuse@amazonaws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName: IP Routing
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN

Share on: