204.246.164.104 Threat Intelligence and Host Information

Apr 17, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 204.246.164.104 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

View other sources: Spamhaus VirusTotal

Country: United States
Network:
Noticed: times
Protocols Attacked: SSH
Passive DNS Results: ad539eda59fff08fb4defbefd8930d531.profile.sin2.cloudfront.net a5287f986702b1f1a9fa2b9e20b4659c2.profile.sin2.cloudfront.net a8439bb918b1f02ee03e68abedc927c53.profile.sin2.cloudfront.net a4de63ffe90d4dc877a9e74831094ba4a.profile.sin2.cloudfront.net aa0e2489f8d150cda7eff9469664b1890.profile.sin2.cloudfront.net a30c747f60c652cfbc8235c9e00b6aa71.profile.sin2.cloudfront.net a118e9ac9d9443acae880db59067b474f.profile.sin2.cloudfront.net d1ge0kk1l5kms0.cloudfront.net a47fc5f849f9e9057c643e8b1148688e2.profile.sin2.cloudfront.net a1d4e28922c9213feb8fa5dd2c988ff02.profile.sin2.cloudfront.net a0044a9b01d32ca0bf2551325895058c5.profile.sin2.cloudfront.net a3a5a189b7c434de0abfac69203a6c019.profile.sin2.cloudfront.net aaaf2a09c46d1bc2e808129108953d0ae.profile.sin2.cloudfront.net a354ca79f2f0e9d2e059476789732638e.profile.sin2.cloudfront.net a98e11d0e38533b88fe34e58ff84ab801.profile.sin2.cloudfront.net a87b4740ceca89865b32fd93c0ffae47f.profile.sin2.cloudfront.net acbb0e2e4799a30287f11363cc274dec7.profile.sin2.cloudfront.net ae86cbdcc5cd68b263ac6d7459cd90a0c.profile.sin2.cloudfront.net a3a4870f8fcb16d9bc499f2434f96b406.profile.sin2.cloudfront.net adb94cb104dcc266730ca2c76da32510f.profile.sin2.cloudfront.net a7251290c43f791d2f186644b96cd141d.profile.sin2.cloudfront.net a5e8b5ba67c1d3d41f1808c819e9f4788.profile.sin2.cloudfront.net a6bbc8851e3ee5f7861f46d5d05c8b034.profile.sin2.cloudfront.net ab3671c6914c310682d76478ede243c99.profile.sin2.cloudfront.net a2637f8ac8d543a5f65057bd8d8236fa5.profile.sin2.cloudfront.net ae5bbdee5b47a6007e38b640f18ff6164.profile.sin2.cloudfront.net a06461fd613d3e3a5e9f221c95aea9984.profile.sin2.cloudfront.net a7b2487c1911bc631eb74d6bdac5d1e36.profile.sin2.cloudfront.net a2f0227fe3529ba0dc9cb3819d6ff0261.profile.sin2.cloudfront.net a7b14abc43d29bbdd17f0a59881834888.profile.sin2.cloudfront.net a9ed30e7aaa19f7ead526fc46f72bcd3e.profile.sin2.cloudfront.net a72a6af6574322ef8c5946154da20159d.profile.sin2.cloudfront.net a59184e30a770dd7ea0cd7f730e9a7dcc.profile.sin2.cloudfront.net a20482e9625500266a90ccc274641cf00.profile.sin2.cloudfront.net aa00849fea3a766794a897e3d34857a4b.profile.sin2.cloudfront.net a1b0756e0b581867efa73187e9f2122cb.profile.sin2.cloudfront.net a3237bbc52e3749b34001f1a0902edd98.profile.sin2.cloudfront.net ad376af13dbd08de741b19c87e2e8df7d.profile.sin2.cloudfront.net a723d3abf112b25c12d646b76f1bed631.profile.sin2.cloudfront.net ad580cbc7576589aa5690aacb0632c53b.profile.sin2.cloudfront.net a55f0b94a9ba7ad5cbac8dd6756fc6be1.profile.sin2.cloudfront.net a3458dc4e629ee1c4f89a780c0a086d39.profile.sin2.cloudfront.net

Malware Detected on Host

Count: 1 3787002a6e8dcb4c385529bfafd614697781ed7e91be48762eea92d28aa43f9e

Open Ports Detected

443 80

Map

Whois Information

NetRange: 204.246.160.0 - 204.246.191.255
CIDR: 204.246.160.0/19
NetName: AMAZON-04
NetHandle: NET-204-246-160-0-1
Parent: NET204 (NET-204-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS16509, AS39111, AS7224
Organization: Amazon.com, Inc. (AMAZON-4)
RegDate: 2009-07-17
Updated: 2015-09-24
Ref: https://rdap.arin.net/registry/ip/204.246.160.0
OrgName: Amazon.com, Inc.
OrgId: AMAZON-4
Address: 1918 8th Ave
City: SEATTLE
StateProv: WA
PostalCode: 98101-1244
Country: US
RegDate: 1995-01-23
Updated: 2022-09-30
Ref: https://rdap.arin.net/registry/entity/AMAZON-4
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: trustandsafety@support.aws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgRoutingHandle: ARMP-ARIN
OrgRoutingName: AWS RPKI Management POC
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName: IP Routing
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
RAbuseHandle: ROLEA19-ARIN
RAbuseName: Role Account
RAbusePhone: +1-206-266-4064
RAbuseEmail: ipmanagement@amazon.com
RAbuseRef: https://rdap.arin.net/registry/entity/ROLEA19-ARIN
RTechHandle: ROLEA19-ARIN
RTechName: Role Account
RTechPhone: +1-206-266-4064
RTechEmail: ipmanagement@amazon.com
RTechRef: https://rdap.arin.net/registry/entity/ROLEA19-ARIN
RNOCHandle: ROLEA19-ARIN
RNOCName: Role Account
RNOCPhone: +1-206-266-4064
RNOCEmail: ipmanagement@amazon.com
RNOCRef: https://rdap.arin.net/registry/entity/ROLEA19-ARIN

Links to attack logs

****** ****** ******

Share on: