154.211.104.57 Threat Intelligence and Host Information

Nov 28, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 154.211.104.57 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

  • Country: Hong Kong
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: wpgceyy.icu qrgvvne.icu eicgehp.icu drbplyr.icu beqrpvv.icu vvctflr.icu hewpyap.icu klzbfjt.icu xavmvtu.icu xzjzpth.icu xgkbilk.icu xgcbbcg.icu qnmhtab.icu quijfih.icu ggqpeiq.icu khopuia.icu tqicgww.icu xzhbdya.icu mmgkpij.icu kdfphfa.icu 5qvbnbq.icu wxbnyy.icu shggop.icu mjipjf.icu bxsxsf.icu illlnr.icu fdajty.icu sdjxxi.icu dpmyzv.icu lahnfm.icu gptnkt.icu kkisqa.icu iurkaa.icu ldlaqc.icu ibwici.icu gaqryj.icu bbvzya.icu ajqbly.icu rkiayn.icu dqk8xo.icu o51hxl.icu 0aejfj.icu 6m6e9c.icu izh8z7.icu etfrxf.icu qv3d6a.icu nfrntx.icu am6doh.icu w92a4l.icu cx5od4.icu tlugm6.icu hq0pyd.icu oa7utf.icu 7gw6fp.icu 0bc3my.icu fpgakr.icu qhdmpz3006.icu q59ejj3006.icu qc9uoar006.icu qolixhp006.icu qpqnkdw006.icu

Open Ports Detected

22 3306 443 6379 80

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2019-16905 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

  • inetnum: 154.211.104.0 - 154.211.104.255
  • netname: Cloud_Innovation
  • descr: Cloud Innovation Ltd
  • country: HK
  • admin-c: CIS1-AFRINIC
  • tech-c: CIS1-AFRINIC
  • status: ASSIGNED PA
  • mnt-by: CIL1-MNT
  • mnt-by: LARUS-SERVICE-MNT
  • parent: 154.192.0.0 - 154.223.255.255
  • person: Cloud Innovation Support
  • address: Ebene
  • address: MU
  • address: Mahe
  • address: Seychelles
  • phone: tel:+248-4-610-795
  • nic-hdl: CIS1-AFRINIC
  • abuse-mailbox: abuse@cloudinnovation.org
  • mnt-by: CIL1-MNT

Links to attack logs

bruteforce-ip-list-2025-11-28 ******

Share on: