154.12.29.125 Threat Intelligence and Host Information

Aug 12, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 154.12.29.125 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 14/100

Host and Network Information

  • Country: United States
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: 6319t.com 6319p.com 7690aa.vip 9001q.vip 9001m.vip 35273y.vip 35273b.vip 769030.com 7690cc.com 22968.com 35271b.com 769033.com 742ww.cc 39152l.com 7690a.com 7690uu.com 39152f.com 7690d.com 7690.cx 7690i.com 9001n.vip 3162qq.com 7690o.com 9132922.cc 3162gg.com 35273s.com 769032.com 7690v.vip 3621w.com 3621u.com 3621d.vip 39152u.vip 39152y.vip 39152k.vip 3621u.vip 3621o.vip 3621m.vip 39152t.vip 39152a.vip 3621i.vip 3621g.vip 3621e.vip 39152h.vip 39152i.vip 39152w.vip 39152j.vip 39152b.vip 3621z.vip 39152p.vip 3621r.vip 39152o.vip 39152s.vip 3621j.vip 3621c.vip 39152r.vip 39152g.vip 3621q.vip 39152n.vip 39152f.vip 39152z.vip 3621y.vip 3621l.vip 39152l.vip 39152v.vip 39152d.vip 39152e.vip 39152q.vip 3621w.vip 3162ff.com 39152m.vip 39152c.vip t7xds0gkdrz158w.cc 362102c.com 362102j.com 362102e.com 362102i.com 769007.com 7981g.com 7981u.com 3621jjj.com 3621qqq.com 769009.com 3162hh.com 3162zz.com 6883559.com 742jj.cc 742ee.cc 742mm.cc 742tt.cc 9001t.vip llkynvwyyavfp8u.cc 8098227.com 9027100.com 7835775.com 5033203.com 6275526.com 3317768.com 8728817.com 0677052.com 2683720.com 3297116.com 0njzlxs8tritz1c.cc 742ios.cc 742uu.cc 5376c.vip 5376e.vip 5376a.vip 5376b.vip 5376d.vip 742hh.cc dgc.jumpcigtur.xyz 8437727.com 5051193.com 6903357.com 5333186.com 3171137.com 9526c.vip 9526d.vip 9526b.vip 7309898.com 9508619.com 8791213.com 5809812.com 0897856.com vztzfwr5obdgdiw.cc 742rr.cc 9936869.com momvip.icu

Malware Detected on Host

Count: 51 8de9110e3840328fa6865ad64e78169d51f89e8ba99037dc64c6fa32fff9d2dc 4161c10fe85cf46803f5f52f4d0f48f9d200ea7cd200856b38f8f0a994ad1fec 2bbea305823bfcf632b15e3d75074310075bce2a4c21864b74e23eac7605ba92 5ff681d32ad56e84651c116341fa73d8caba822462a8f42aab522dff403c5294 03aa9da2547e293a3fa925748a255b173d6b61e35cda35a5e4723f73aee27b68 bcfee58f51d5789014ca5b92a8cd073fa16f09be111a9a99bf12c3bd15362231 2630b5fe4ebbda06e1c6cecf16d38c163e4cf56fc29ad2143f08f2f18553a939 1c6e497c3d25545c5ae9f483032de22e6aab131507c250718950b08f405fb22f fcdc464df58e4ef02c09724ba02e5600ecd181c183ed6547162558caf8bcbd4a b5b2a69156142cc0dcbf5db0cc72f6a8782aab21c81cc28ce19ac285f69964c4

Open Ports Detected

111 443 80

CVEs Detected

CVE-2021-3618 CVE-2023-44487

Map

Whois Information

  • inetnum: 154.12.0.0 - 154.12.255.255
  • netname: NET-154-12-0-0
  • descr: __________________________
  • descr: This block is allocated to an organization in the ARIN
  • descr: information on the registrant.
  • descr: __________________________
  • country: MU
  • org: ORG-AFNC1-AFRINIC
  • admin-c: TEAM-AFRINIC
  • tech-c: TEAM-AFRINIC
  • status: ALLOCATED UNSPECIFIED
  • mnt-by: AFRINIC-HM-MNT
  • parent: 154.0.0.0 - 154.255.255.255
  • organisation: ORG-AFNC1-AFRINIC
  • org-name: African Network Information Center - (AfriNIC) Ltd
  • org-type: RIR
  • country: MU
  • address: 11th Floor, Standard Chartered Tower
  • address: 19, Cybercity
  • address: Ebène
  • phone: tel:+230-466-6758
  • phone: tel:+230-403-5100
  • admin-c: CA15-AFRINIC
  • tech-c: IT7-AFRINIC
  • mnt-ref: AFRINIC-HM-MNT
  • mnt-ref: AFRINIC-IT-MNT
  • mnt-ref: AFRINIC-DB-MNT
  • mnt-by: AFRINIC-HM-MNT
  • role: AfriNIC TEAM
  • address: Raffles Tower - 11th Floor
  • address: Cybercity
  • address: Mauritius
  • phone: tel:+230-403-5100
  • fax-no: tel:+230-466-6758
  • admin-c: CA15-AFRINIC
  • tech-c: CA15-AFRINIC
  • nic-hdl: TEAM-AFRINIC
  • mnt-by: AFRINIC-DB-MNT
Share on: