154.194.35.243 Threat Intelligence and Host Information

Aug 14, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 154.194.35.243 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

  • Country: Hong Kong
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: Anonymous Proxy
  • Passive DNS Results: rcszub1bg.localto.net aro7stjhw.localto.net e025pcs4z.localto.net ucz29opos.localto.net uqvn1ek6t.localto.net ixfhkg1va.localto.net vmikdtcz3.localto.net xtywp3nue.localto.net wsreg5zbf.localto.net 58xy0hvmi.localto.net mhjfwpsrx.localto.net 5gtjjep6a.chgip.online sctr1.localtonet.com h9rpmgujf.localto.net 3wzi5xjkz.localto.net p4yxnvbtl.localto.net slvbx0pkq.localto.net ylhxy76wr.localto.net lkl9omag7.localto.net lsc13izpx.localto.net 1fpxbyhy0.localto.net wmqmtb91e.localto.net 1ri7zwh3k.localto.net xndqs9jut.localto.net 3wk0fr2mz.localto.net ahe8uddyz.localto.net hg9jvzohv.localto.net gk2awxehy.localto.net 2aeamtgi7.localto.net bilhzapfy.localto.net rnhwmtzoc.localto.net proxyaxe.com oalkzjui1.localto.net bupctn4e2.localto.net xf0bvt3gq.localto.net uybdtjvmh.localto.net

Malware Detected on Host

Count: 21 31d0ea81c33bfc141db116916b1b53a0f05da64f2c4a0c9abb8a295fd70fb29f ee4138493a7fc961868e411633bbf2eb2fa1cdfbfd8910dcbbd67d8661c02dfc d6928544fe3ec2ac29eefd178c64e94a9dfc958f9b60655d319eb1ec9bcec3ff 1158b69d407f94b5358df15164896bcb087d2384bcfac8a904beb2d40767387f b64b7f8a06d443dd06e09a334de1a309aed3a7493b514647225ac69a733c3c6c b9f5e6b9e78e7970ce4bf67fa041c11909a7de48878e741a94b297cde85bede6 0f58c34c3209d15dd33e8a70560386e6178dc20a6528d3c3cadb69c0d4c14845 99defee0053fd37eac33b495e2ca9cb5833cfd29a26c8db04febfef96d9ed6ed b0dfab9a4ed074eb8e92d0ab295481ffd47f22875e30ed86261d1868c998a862 966452d334e0ec5b0a301569ce64fbd1f2a766854022f3c2e2b29303389bd787

Open Ports Detected

1111 2003 22 3120 3542 4001 4321 4506 5620 5630 5989 80 8087 8098 8108 8200 8402 8456 9292 9595

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2024-6387 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

  • inetnum: 154.194.35.0 - 154.194.35.255
  • netname: QZ_Teknoloji_Anonim_Sirketi
  • descr: QZ Teknoloji Anonim Sirketi
  • country: TR
  • admin-c: CIS1-AFRINIC
  • tech-c: CIS1-AFRINIC
  • status: ASSIGNED PA
  • mnt-by: CIL1-MNT
  • mnt-by: LARUS-SERVICE-MNT
  • parent: 154.192.0.0 - 154.223.255.255
  • person: Cloud Innovation Support
  • address: Ebene
  • address: MU
  • address: Mahe
  • address: Seychelles
  • phone: tel:+248-4-610-795
  • nic-hdl: CIS1-AFRINIC
  • abuse-mailbox: abuse@cloudinnovation.org
  • mnt-by: CIL1-MNT
  • route: 154.194.35.0/24
  • descr: QZ Teknoloji Anonim Sirketi
  • origin: AS215123
  • mnt-by: LARUS-SERVICE-MNT

Links to attack logs

anonymous-proxy-ip-list-2025-08-13

Share on: