74.208.236.148 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 74.208.236.148 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal
• Contained within other IP sets: hphosts_psh

• Country: United States
• Network: AS8560 1&1 ionos se
• Noticed: 1 times
• Protcols Attacked: SSH

Malware Detected on Host

Count: 44 b55b4f04884108bd3eee7d0839f5a73246a12e87fc5faaff63c8e0e21f9ff6e1 ed6f25f194f984aa989e3171a6be8991cf7f533e4e96f4bba8b21d6c2e7b8cb0 e6551fa9814756f1d99f86fe2713d695e930e5930e397affed4aa07d4ea63ba6 d80cc40dc2af9e4f0c87702489aba0b6bf27f427d7e9de82423689705678f2f5 e39130e6dfaafec206e2df55eade873f531ea2f10f1c873d13aceb6d4a8ecdaa a1fd086121aa070491da93e3c1f22f51a6269ce7b9f01522b28789592c9f07d8 ee3d1cb1ebf30d26468648e9d6d30348c6c0eff07e352ccada4bf414d6bd5019 83d3d9b5e9fa5815b88f59f4616ae732d62bb86278c564d7910a0cb27e7485a9 6532b59e2fb6bc31f3042b0736ccba3f9e14b78d3551cb6f3e47305a2ae391cb dc35be23325f8cd45b77dff848c36175e8ebb9af4fd82f30a954db03ad6af66c

Open Ports Detected

443 80

Map

Whois Information

• NetRange: 74.208.0.0 - 74.208.255.255
• CIDR: 74.208.0.0/16
• NetName: 1AN1-NETWORK
• NetHandle: NET-74-208-0-0-1
• Parent: NET74 (NET-74-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS8560
• Organization: IONOS Inc. (11INT)
• RegDate: 2006-11-22
• Updated: 2017-08-09
• Comment: For abuse issues, please use only abuse@1and1.com
• Comment: For technical or network problems, please use noc@oneandone.net
• Ref: https://rdap.arin.net/registry/ip/74.208.0.0
• OrgName: IONOS Inc.
• OrgId: 11INT
• Address: 2 Logan Square
• Address: 100 North 18th St
• Address: Suite 400
• City: Philadelphia
• StateProv: PA
• PostalCode: 19103
• Country: US
• RegDate: 2006-09-05
• Updated: 2023-06-19
• Comment: http://www.ionos.com
• Comment: For abuse issues, please use only abuse@ionos.com
• Ref: https://rdap.arin.net/registry/entity/11INT
• OrgAbuseHandle: IADAR5-ARIN
• OrgAbuseName: IAD-ARIN
• OrgAbusePhone: +1-877-206-4253
• OrgAbuseEmail: abuse@ionos.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/IADAR5-ARIN
• OrgNOCHandle: 1NOC-ARIN
• OrgNOCName: 1and1 Network Operations Center
• OrgNOCPhone: +1-484-254-5555
• OrgNOCEmail: noc@net.ionos.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/1NOC-ARIN
• OrgTechHandle: 1NO-ARIN
• OrgTechName: 1and1 ARIN Role
• OrgTechPhone: +1-913-433-7549
• OrgTechEmail: arin-role@net.ionos.com
• OrgTechRef: https://rdap.arin.net/registry/entity/1NO-ARIN
• RAbuseHandle: 1AD-ARIN
• RAbuseName: 1and1 Abuse Department
• RAbusePhone: +1-877-206-4253
• RAbuseEmail: abuse@1and1.com
• RAbuseRef: https://rdap.arin.net/registry/entity/1AD-ARIN
• RNOCHandle: 1NOC-ARIN
• RNOCName: 1and1 Network Operations Center
• RNOCPhone: +1-484-254-5555
• RNOCEmail: noc@net.ionos.com
• RNOCRef: https://rdap.arin.net/registry/entity/1NOC-ARIN
• RTechHandle: 1NO-ARIN
• RTechName: 1and1 ARIN Role
• RTechPhone: +1-913-433-7549
• RTechEmail: arin-role@net.ionos.com
• RTechRef: https://rdap.arin.net/registry/entity/1NO-ARIN

Links to attack logs

****** ****** ******