146.148.199.104 Threat Intelligence and Host Information

Mar 17, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 146.148.199.104 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

  • JARM: 29d29d20d29d29d22c42d42d000000937221baefa0b90420c8e8e41903f1d5

  • View other sources: Spamhaus VirusTotal

  • Country: United States
  • Network: AS26658 ht
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: www.siyuanzc.com xzyxy.com www.xzyxy.com siyuanzc.com afysllc.com bizcesi.com

Open Ports Detected

10134 104 10554 12345 1311 13579 1400 14265 14344 1515 16992 1800 1801 19071 1925 1962 2086 21 21379 23424 2404 2480 264 2762 3306 3310 3388 3460 3689 37215 3749 4000 4242 43 443 44818 4848 49153 5000 50070 5009 5269 52869 53 5357 554 55442 5560 5600 5601 60129 6080 631 6379 7415 7547 7777 789 80 8001 8069 8090 8098 81 8112 82 83 8334 84 8554 8728 9530 9633

Map

Whois Information

Links to attack logs

****** ****** ******

Share on: