204.246.164.48 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 204.246.164.48 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: d25azfkxvzhlix.amplifyapp.com a383b1876baf4df4f4d0baaf939682989.profile.sin2.cloudfront.net ac2d4a6f181eba58763ceee2860880b1d.profile.sin2.cloudfront.net ae8761e272255a99a81fa8735378561ab.profile.sin2.cloudfront.net a1a3349d94fd7bcce9c71c1ff9c8ec08c.profile.sin2.cloudfront.net a692250d9daface527da7dc9c6b2853d1.profile.sin2.cloudfront.net acc3b272393ba1f5d7c366c8d9ba844c0.profile.sin2.cloudfront.net a666b5255f206c710ab298d41e5c8867e.profile.sin2.cloudfront.net aa1d182e21628928bad29d577d666d839.profile.sin2.cloudfront.net af035b40267705aa59719f0bf7328ee62.profile.sin2.cloudfront.net aa8f517cd0391425bfe6dc099e32fb178.profile.sin2.cloudfront.net ae06b081b86435201bf9dc30ac719c9b1.profile.sin2.cloudfront.net a5f7c6ffa7cfb6cec87d9040a37f1a274.profile.sin2.cloudfront.net adff426e78164264c1d5223cb0bb43434.profile.sin2.cloudfront.net a357f3751f92addffaff43ae7d539de31.profile.sin2.cloudfront.net a2e81a504130c6680010b0cf81df7e6cc.profile.sin2.cloudfront.net a354ca79f2f0e9d2e059476789732638e.profile.sin2.cloudfront.net a83c76c6e98a00fd1ffc18652518f8c6e.profile.sin2.cloudfront.net a6153ce9d27ea9f8c882cc33c77c3b77a.profile.sin2.cloudfront.net a7a37933a538bf6501530ccd779a4a20b.profile.sin2.cloudfront.net a87b4740ceca89865b32fd93c0ffae47f.profile.sin2.cloudfront.net aa9f51bf5cdcbd04ffda2af162eeff0e8.profile.sin2.cloudfront.net a0348de31d737b0eb6a6b96ee8cd62dd1.profile.sin2.cloudfront.net ae24f36d3ceb2201fe55a71909bc55809.profile.sin2.cloudfront.net a438d5b16dd15ec0098943f7306d18a7c.profile.sin2.cloudfront.net a5f26115445619c344a89487434b42c6b.profile.sin2.cloudfront.net aa3b48a3a55f779b3781d9a15408a7855.profile.sin2.cloudfront.net a95dfff17a2ce639bfd60d9854bd60741.profile.sin2.cloudfront.net ae7a720f1b69810b37fda04706fa4f00b.profile.sin2.cloudfront.net abdf5aa7156fe44ffe2a985e73bc468c4.profile.sin2.cloudfront.net a4def89b971359274e27e9c5af54d59c1.profile.sin2.cloudfront.net afcec38db3ae60e2a3d90a98b852e70f9.profile.sin2.cloudfront.net a7a63bc05f3f86a2513a2585956f67be4.profile.sin2.cloudfront.net a9f9671f38fa3a414df71df4fa054a53d.profile.sin2.cloudfront.net ad376af13dbd08de741b19c87e2e8df7d.profile.sin2.cloudfront.net a8eb550dc2973bda87551a725cb593f79.profile.sin2.cloudfront.net server-204-246-164-48.sin2.r.cloudfront.net a7b8b06dfe8b487a24fe97a90ee6a8229.profile.sin2.cloudfront.net a93bb8eefe02e0ad81ee05854c395c082.profile.sin2.cloudfront.net a5b3d755f52a921c501effe37184a05d1.profile.sin2.cloudfront.net

Open Ports Detected

80

Map

Whois Information

• NetRange: 204.246.160.0 - 204.246.191.255
• CIDR: 204.246.160.0/19
• NetName: AMAZON-04
• NetHandle: NET-204-246-160-0-1
• Parent: NET204 (NET-204-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS16509, AS39111, AS7224
• Organization: Amazon.com, Inc. (AMAZON-4)
• RegDate: 2009-07-17
• Updated: 2015-09-24
• Ref: https://rdap.arin.net/registry/ip/204.246.160.0
• OrgName: Amazon.com, Inc.
• OrgId: AMAZON-4
• Address: 1918 8th Ave
• City: SEATTLE
• StateProv: WA
• PostalCode: 98101-1244
• Country: US
• RegDate: 1995-01-23
• Updated: 2022-09-30
• Ref: https://rdap.arin.net/registry/entity/AMAZON-4
• OrgRoutingHandle: IPROU3-ARIN
• OrgRoutingName: IP Routing
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
• OrgAbuseHandle: AEA8-ARIN
• OrgAbuseName: Amazon EC2 Abuse
• OrgAbusePhone: +1-206-555-0000
• OrgAbuseEmail: trustandsafety@support.aws.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
• OrgRoutingHandle: ARMP-ARIN
• OrgRoutingName: AWS RPKI Management POC
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
• OrgTechHandle: ANO24-ARIN
• OrgTechName: Amazon EC2 Network Operations
• OrgTechPhone: +1-206-555-0000
• OrgTechEmail: amzn-noc-contact@amazon.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
• OrgNOCHandle: AANO1-ARIN
• OrgNOCName: Amazon AWS Network Operations
• OrgNOCPhone: +1-206-555-0000
• OrgNOCEmail: amzn-noc-contact@amazon.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
• RNOCHandle: ROLEA19-ARIN
• RNOCName: Role Account
• RNOCPhone: +1-206-266-4064
• RNOCEmail: ipmanagement@amazon.com
• RNOCRef: https://rdap.arin.net/registry/entity/ROLEA19-ARIN
• RTechHandle: ROLEA19-ARIN
• RTechName: Role Account
• RTechPhone: +1-206-266-4064
• RTechEmail: ipmanagement@amazon.com
• RTechRef: https://rdap.arin.net/registry/entity/ROLEA19-ARIN
• RAbuseHandle: ROLEA19-ARIN
• RAbuseName: Role Account
• RAbusePhone: +1-206-266-4064
• RAbuseEmail: ipmanagement@amazon.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ROLEA19-ARIN

Links to attack logs

****** ****** ******