208.113.154.45 Threat Intelligence and Host Information

Share on:
Oct 21, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 208.113.154.45 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: hphosts_emd

  • Country: United States
  • Network: AS26347 new dream network
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy
  • Passive DNS Results: lil2paint.art java-burn.shop www.conquernursing.com www.webdeveloper.tbrahm.com webdeveloper.tbrahm.com parkvideo.cigas.net www.parkvideo.cigas.net conquernursing.com staging.talkingtalons.org www.staging.talkingtalons.org www.hamdogs.club www.lecortine.com.br lecortine.com.br hamdogs.club parrilleroenlinea.xyz www.parrilleroenlinea.xyz www.doisr.tk doisr.tk mavtalk.com wordcampuk.org wallylevis.com mutualcalendar.com flowtide.net orangecoconut.co.uk walterlevis.com 4starpro.com dolcepublishing.com www.wptst.chozabu.net wptst.chozabu.net griffinleahy.com rosalindmlukecrosby.com www.trobaugh.us www.manzanillohome.org manzanillohome.org www.nuestroamistad.org nuestroamistad.org wiki.wpuk.org icsweb.cigas.net www.icsweb.cigas.net www.2012.wpretreat.org.uk 2012.wpretreat.org.uk www.tonyscott.org.uk cascadehomesllc.com www.cascadehomesllc.com www.larumania.es www.2011.portsmouth.wordcampuk.org 2011.portsmouth.wordcampuk.org orangecoconut.com www.orangecoconut.com www.2010.wordcampuk.org 2010.wordcampuk.org zeta.tonyscott.org.uk www.zeta.tonyscott.org.uk www.core.wpuk.org core.wpuk.org www.wpuk.org wpuk.org www.christinaharrison.net christinaharrison.net dfgsolutions.com www.dfgsolutions.com police.colebrookdale.org www.police.colebrookdale.org www.walterblevis.com walterblevis.com uswoods.net www.uswoods.net www.maragrossceramics.com www.islasantorini.es www.christinebond.org christinebond.org www.islasbermudas.es preview.maragrossceramics.com maragrossceramics.com www.preview.maragrossceramics.com opalescentmotion.net trobaugh.us opalescentmotion.com hannahtrobaugh.com dolcemusic.com tesstrobaugh.com codesplosion.com www.lacroacia.es tonyscott.org.uk islasbermudas.es islasantorini.es wiki.wordcampuk.tonyscott.org.uk wiki.wordcampuk.org lacroacia.es larumania.es www.islamadeira.es islamadeira.es enaidenergy.com mcpc.cigas.net

Malware Detected on Host

Count: 5 49619093e006ab56493dbfdf6d68242429b09dccb3dd463fd6587c469996cc55 7e01deb17f4d35ac84448105230dafcdfe613b65dbcc462c15e397f0afa75dae eb0b24bb8c91aa612d1283cdae9199a01113c64daf630e718e595eb3c7ccddca 4a50b3c03728ab284f471ab01e50932bcd3f758555942e44c36ce0e73d1a34cb 730a8109c86a6d6cc3890e8e4a655853e917de6c7086820ab2a872593d303297

Open Ports Detected

21 443 80

Map

Whois Information

  • NetRange: 208.113.128.0 - 208.113.255.255
  • CIDR: 208.113.128.0/17
  • NetName: DREAMHOST-BLK6
  • NetHandle: NET-208-113-128-0-1
  • Parent: NET208 (NET-208-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: New Dream Network, LLC (NDN)
  • RegDate: 2006-04-12
  • Updated: 2012-03-02
  • Ref: https://rdap.arin.net/registry/ip/208.113.128.0
  • OrgName: New Dream Network, LLC
  • OrgId: NDN
  • Address: 417 Associated Rd.
  • City: Brea
  • StateProv: CA
  • PostalCode: 92821
  • Country: US
  • RegDate: 2001-04-17
  • Updated: 2017-01-28
  • Comment: Address location was created regardless of geographic location.
  • Ref: https://rdap.arin.net/registry/entity/NDN
  • OrgTechHandle: NETOP274-ARIN
  • OrgTechName: NetOPs
  • OrgTechPhone: +1-714-706-4182
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/NETOP274-ARIN
  • OrgNOCHandle: NETOP274-ARIN
  • OrgNOCName: NetOPs
  • OrgNOCPhone: +1-714-706-4182
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/NETOP274-ARIN
  • OrgAbuseHandle: DAT5-ARIN
  • OrgAbuseName: DreamHost Abuse Team
  • OrgAbusePhone: +1-714-706-4182
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/DAT5-ARIN

Links to attack logs

anonymous-proxy-ip-list-2023-10-18 anonymous-proxy-ip-list-2023-10-19 anonymous-proxy-ip-list-2023-10-21 anonymous-proxy-ip-list-2023-10-16