209.215.184.9 Threat Intelligence and Host Information

ipinfopage

General

This page contains threat intelligence information for the IPv4 address 209.215.184.9 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

🟡 Low Risk — 35/100

Geographic Location

Host and Network Information

  • View other sources: Spamhaus VirusTotal Shodan AbuseIPDB
  • Country: United States
  • Network: AS6389 at&t corp.
  • Noticed: 12 times
  • Protocols Attacked: telnet
  • Countries Attacked: Poland, United States of America
  • Open Ports: 1194, 2000, 41794, 8080, 8443
  • Tor Node: No

Tags

  • abuseipdb
  • attack
  • blacklist
  • botnet
  • login
  • Malicious IP
  • mirai
  • port 23
  • portscan
  • scan
  • scanner
  • SSH
  • tcp
  • tcp/23
  • telnet
  • Telnet

MITRE ATT&CK TTPs

  • T1046 - Network Service Scanning

Attack Log References

Whois Information

NetRange: 209.214.0.0 - 209.215.255.255 CIDR: 209.214.0.0/15 NetName: BELLSNET-BLK4 NetHandle: NET-209-214-0-0-1 Parent: NET209 (NET-209-0-0-0-0) NetType: Direct Allocation OriginAS: AS6389 Organization: AT&T Corp. (AC-3873) RegDate: 1998-03-19 Updated: 2022-09-21 Comment: IP address subnets within this IPv4 block are non-portable. Comment: These are STATIC IP Addresses, not dynamic. Ref: https://rdap.arin.net/registry/ip/209.214.0.0 OrgName: AT&T Corp. OrgId: AC-3873 Address: 7277 164th Ave NE Address: ATTN: IP Management City: Redmond StateProv: WA PostalCode: 98052 Country: US RegDate: 2018-08-31 Updated: 2024-05-28 Comment: For policy abuse issues contact abuse@att.net Comment: For all subpoena, Internet, court order related matters and emergency requests contact Comment: 11760 US Highway 1 Comment: North Palm Beach, FL 33408 Comment: Main Number: 800-635-6840 Comment: Fax: 888-938-4715 Ref: https://rdap.arin.net/registry/entity/AC-3873 OrgTechHandle: IPOPE3-ARIN OrgTechName: IP Operations OrgTechPhone: +1-888-510-5545 OrgTechEmail: ipadmin-bell@att.com OrgTechRef: https://rdap.arin.net/registry/entity/IPOPE3-ARIN OrgRoutingHandle: ROUTI59-ARIN OrgRoutingName: Routing POC OrgRoutingPhone: +1-999-999-9999 OrgRoutingEmail: routing@cbbtier3.att.net OrgRoutingRef: https://rdap.arin.net/registry/entity/ROUTI59-ARIN OrgAbuseHandle: IPOPE3-ARIN OrgAbuseName: IP Operations OrgAbusePhone: +1-888-510-5545 OrgAbuseEmail: ipadmin-bell@att.com OrgAbuseRef: https://rdap.arin.net/registry/entity/IPOPE3-ARIN RTechHandle: ICC-ARIN RTechName: IP Team RTechPhone: +1-888-876-2382 RTechEmail: rm-ipspecialist@att.com RTechRef: https://rdap.arin.net/registry/entity/ICC-ARIN NetRange: 209.215.184.0 - 209.215.185.255 CIDR: 209.215.184.0/23 NetName: THE-VINT78-184 NetHandle: NET-209-215-184-0-1 Parent: BELLSNET-BLK4 (NET-209-214-0-0-1) NetType: Reassigned OriginAS: Customer: THE VINTAGE CLUB MASTERS ASSOCIA (C08985597) RegDate: 2022-10-29 Updated: 2022-10-29 Ref: https://rdap.arin.net/registry/ip/209.215.184.0 CustName: THE VINTAGE CLUB MASTERS ASSOCIA Address: 75001 VINTAGE DR W City: INDIAN WELLS StateProv: CA PostalCode: 92210 Country: US RegDate: 2022-10-29 Updated: 2022-10-29 Ref: https://rdap.arin.net/registry/entity/C08985597 OrgTechHandle: IPOPE3-ARIN OrgTechName: IP Operations OrgTechPhone: +1-888-510-5545 OrgTechEmail: ipadmin-bell@att.com OrgTechRef: https://rdap.arin.net/registry/entity/IPOPE3-ARIN OrgRoutingHandle: ROUTI59-ARIN OrgRoutingName: Routing POC OrgRoutingPhone: +1-999-999-9999 OrgRoutingEmail: routing@cbbtier3.att.net OrgRoutingRef: https://rdap.arin.net/registry/entity/ROUTI59-ARIN OrgAbuseHandle: IPOPE3-ARIN OrgAbuseName: IP Operations OrgAbusePhone: +1-888-510-5545 OrgAbuseEmail: ipadmin-bell@att.com OrgAbuseRef: https://rdap.arin.net/registry/entity/IPOPE3-ARIN RTechHandle: ICC-ARIN RTechName: IP Team RTechPhone: +1-888-876-2382 RTechEmail: rm-ipspecialist@att.com RTechRef: https://rdap.arin.net/registry/entity/ICC-ARIN