208.113.162.136 Threat Intelligence and Host Information

Share on:
Oct 21, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 208.113.162.136 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Mitre ATT&CK IDs: T1498 - Network Denial of Service, T1499.002 - Service Exhaustion Flood, T1499 - Endpoint Denial of Service

  • Tags: cc.py, DDoS, HEAD Floods, Killnet, T1498, T1499

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: socks_proxy_1d, socks_proxy_30d, socks_proxy_7d

  • Country: United States
  • Network: AS26347 new dream network
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy
  • Passive DNS Results: sakshambharattv.com techbyjames.net www.techbyjames.net www.angelahaley.com www.20and4-echelon31.org guidoasanchez.com www.guidoasanchez.com www.madhavinn.in madhavinn.in marsmarine.com www.marsmarine.com angelahaley.com 20and4-echelon31.org realdankndonuts.com www.travelday.co.in travelday.co.in www.f9solutions.in f9solutions.in 313to616.com news7up.in www.news7up.in wheresmychannel.com www.wheresmychannel.com wallpaperproduction.com www.wallpaperproduction.com stargas.uk www.stargas.uk www.cemc-consultores.com siesal.rentaweb.cl www.siesal.rentaweb.cl cemc-consultores.com rrlandscapeinc.com classicrocktagon.com www.votingalliance.net votingalliance.net redseg.cl www.blog.scottkleper.com blog.scottkleper.com garynewtonjr.com www.printerport.com www.richard.youradteam.net richard.youradteam.net lra.youradteam.net www.lra.youradteam.net decryptingpolitics.com yourdamnself.com harleyrobertson.com www.richardmckeown.com richardmckeown.com www.unitconversioncalc.com unitconversioncalc.com www.perfectsquares.numberssoup.com perfectsquares.numberssoup.com littlerockaudiology.com www.littlerockaudiology.com www.ireferbusiness.com www.arkansasjanitorialsupply.com first.youradteam.net ireferbusiness.com arkansasjanitorialsupply.com www.first.youradteam.net txlegiondiv3.org www.txlegiondiv3.org ghetsuhm.com www.ghetsuhm.com www.excha.cl www.svn.mythic.co.nz svn.mythic.co.nz www.geoedge.xenomonkey.com geoedge.xenomonkey.com xenomonkey.com www.xenomonkey.com www.dospuntoseventos.cl katrinbrunier.com www.katrinbrunier.com www.ventas.rentaweb.cl ventas.rentaweb.cl dospuntoseventos.cl excha.cl www.divertimenttotienda.cl divertimenttotienda.cl geoedge-disabled.xenomonkey.com bezcraft.com lazarus.interclue.com printerport.com blog.yoeyar.com scottkleper.com finiteloop.org yoeyar.com fairwayweb.com www.hemstitchvintage.com hemstitchvintage.com finchfries.com www.finchfries.com shwepyiubatin.info myanmarnewsweek.com

Open Ports Detected

22 443 80

Map

Whois Information

  • NetRange: 208.113.128.0 - 208.113.255.255
  • CIDR: 208.113.128.0/17
  • NetName: DREAMHOST-BLK6
  • NetHandle: NET-208-113-128-0-1
  • Parent: NET208 (NET-208-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: New Dream Network, LLC (NDN)
  • RegDate: 2006-04-12
  • Updated: 2012-03-02
  • Ref: https://rdap.arin.net/registry/ip/208.113.128.0
  • OrgName: New Dream Network, LLC
  • OrgId: NDN
  • Address: 417 Associated Rd.
  • City: Brea
  • StateProv: CA
  • PostalCode: 92821
  • Country: US
  • RegDate: 2001-04-17
  • Updated: 2017-01-28
  • Comment: Address location was created regardless of geographic location.
  • Ref: https://rdap.arin.net/registry/entity/NDN
  • OrgTechHandle: NETOP274-ARIN
  • OrgTechName: NetOPs
  • OrgTechPhone: +1-714-706-4182
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/NETOP274-ARIN
  • OrgNOCHandle: NETOP274-ARIN
  • OrgNOCName: NetOPs
  • OrgNOCPhone: +1-714-706-4182
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/NETOP274-ARIN
  • OrgAbuseHandle: DAT5-ARIN
  • OrgAbuseName: DreamHost Abuse Team
  • OrgAbusePhone: +1-714-706-4182
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/DAT5-ARIN

Links to attack logs

anonymous-proxy-ip-list-2023-10-21 anonymous-proxy-ip-list-2023-10-16