DomainMediumSignal 0/100

`autoban.phpnet.us`

First Seen

Feb 5, 2026

Last Seen

Feb 23, 2026

Feb 5

First Seen

136d ago

Feb 23

Last Seen

118d ago

Reports

source reports

Confidence

medium

Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

Domain Name

Malicious domain used for C2, phishing, or malware distribution.

MISP Category

Network Activity

Confidence

Signal Score

0 / 100

IDS Rule

Threat Context

Feed Intelligence Summary

3 reports0% confidence

Source reports

Confidence score

Category tags

indicatornetworkresearched

Activity Timeline

1 total obs

Feb 23Feb 23

Threat Activity Heatmap

· Peak: 2026-02-23

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Dormant

3mo

Dormant

Intelligence SummaryAI Generated

The domain **autoban.phpnet.us** has emerged as a significant indicator of compromise (IOC) in recent threat intelligence reports, with sightings recorded between February

Threat ScoreLow Risk

SIGNAL

Signal Score

Confidence

Reports

First seenFeb 5, 2026

Last seenFeb 23, 2026

VirusTotal

Not checked

WHOIS

registrar: NAMECHEAP INC
creation date: 2006-05-17T17:08:39
expiration date: 2027-05-16T23:59:59
updated date: 2026-04-21T09:23:43
name servers: ns1.byet.org, ns2.byet.org, ns3.byet.org, ns4.byet.org, ns5.byet.org
status: ok https://icann.org/epp#ok

`autoban.phpnet.us`

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey