204.246.164.85 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 204.246.164.85 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: tany.ao a2e4f8ea46d24057706a3eadaee323af5.profile.sin2.cloudfront.net ae0b6ce7ba2973559743ec36774989e4d.profile.sin2.cloudfront.net a58110e632c0ebc8287e7f15f74cc5c56.profile.sin2.cloudfront.net ab396ac26e427e8c13eda3218a08f954c.profile.sin2.cloudfront.net ab90c5a4f223e1ac57a556fa2d1edd619.profile.sin2.cloudfront.net a4eabbdcdf5cdee0faa974fbd42adb132.profile.sin2.cloudfront.net a1dd27231b2a0e4606f4bff6c09147284.profile.sin2.cloudfront.net a0fae8ed48b597f234b87df3098f047f8.profile.sin2.cloudfront.net aaa5eb43155ab8d454813c56305b9195d.profile.sin2.cloudfront.net a4cc10768d6129a82749a9ed3fd038e1f.profile.sin2.cloudfront.net a0eec00fab32ad0231eb0e914628faa97.profile.sin2.cloudfront.net a830282e2f419a33127e3ac76b87c8be5.profile.sin2.cloudfront.net afb24b9344549c278c7550e0bd63786b7.profile.sin2.cloudfront.net a974ac7628404e30c9d1e97c63115c1cc.profile.sin2.cloudfront.net abf9d4f2f1b5123ed0ba1c343426b5d34.profile.sin2.cloudfront.net a91323821570105cee452ad087c771d9e.profile.sin2.cloudfront.net a7a4f3aa3a33c4f0206ba0256de595470.profile.sin2.cloudfront.net ab09cc2bd0dcda69a5190e4dc503a098a.profile.sin2.cloudfront.net a9e3cd1f6b1a64b96d6b5f5d120c7b5bb.profile.sin2.cloudfront.net a4225f2a966aeb70eeb4deed7486933be.profile.sin2.cloudfront.net af00421107221bf8f29fb06967d1cdc8f.profile.sin2.cloudfront.net ad19587d13635d63cf7a7194a5a5c81f4.profile.sin2.cloudfront.net a25ce27fb34d53d801938d0c031d532ed.profile.sin2.cloudfront.net a047f8f507dc9ef4043623dea98282066.profile.sin2.cloudfront.net a7749cdc7239a34867e6044011d3672f6.profile.sin2.cloudfront.net a6b4b0aa905d6465ced3030b930ce294c.profile.sin2.cloudfront.net a2d7c899bf82a503502ad76a87db0e4b2.profile.sin2.cloudfront.net add78ece1da1c6994e67f8a209f5aa05d.profile.sin2.cloudfront.net

Open Ports Detected

443 80

Map

Whois Information

• NetRange: 204.246.160.0 - 204.246.191.255
• CIDR: 204.246.160.0/19
• NetName: AMAZON-04
• NetHandle: NET-204-246-160-0-1
• Parent: NET204 (NET-204-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS16509, AS39111, AS7224
• Organization: Amazon.com, Inc. (AMAZON-4)
• RegDate: 2009-07-17
• Updated: 2015-09-24
• Ref: https://rdap.arin.net/registry/ip/204.246.160.0
• OrgName: Amazon.com, Inc.
• OrgId: AMAZON-4
• Address: 1918 8th Ave
• City: SEATTLE
• StateProv: WA
• PostalCode: 98101-1244
• Country: US
• RegDate: 1995-01-23
• Updated: 2022-09-30
• Ref: https://rdap.arin.net/registry/entity/AMAZON-4
• OrgAbuseHandle: AEA8-ARIN
• OrgAbuseName: Amazon EC2 Abuse
• OrgAbusePhone: +1-206-555-0000
• OrgAbuseEmail: trustandsafety@support.aws.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
• OrgTechHandle: ANO24-ARIN
• OrgTechName: Amazon EC2 Network Operations
• OrgTechPhone: +1-206-555-0000
• OrgTechEmail: amzn-noc-contact@amazon.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
• OrgRoutingHandle: ARMP-ARIN
• OrgRoutingName: AWS RPKI Management POC
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
• OrgRoutingHandle: IPROU3-ARIN
• OrgRoutingName: IP Routing
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
• OrgNOCHandle: AANO1-ARIN
• OrgNOCName: Amazon AWS Network Operations
• OrgNOCPhone: +1-206-555-0000
• OrgNOCEmail: amzn-noc-contact@amazon.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
• RAbuseHandle: ROLEA19-ARIN
• RAbuseName: Role Account
• RAbusePhone: +1-206-266-4064
• RAbuseEmail: ipmanagement@amazon.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ROLEA19-ARIN
• RTechHandle: ROLEA19-ARIN
• RTechName: Role Account
• RTechPhone: +1-206-266-4064
• RTechEmail: ipmanagement@amazon.com
• RTechRef: https://rdap.arin.net/registry/entity/ROLEA19-ARIN
• RNOCHandle: ROLEA19-ARIN
• RNOCName: Role Account
• RNOCPhone: +1-206-266-4064
• RNOCEmail: ipmanagement@amazon.com
• RNOCRef: https://rdap.arin.net/registry/entity/ROLEA19-ARIN

Links to attack logs

****** ****** ******