154.213.197.84 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 154.213.197.84 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: Hong Kong
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: www.9s2j.icu 9s2j.icu www.7l0a.icu 7l0a.icu www.2k0k.icu 2k0k.icu www.2z0p.icu 2z0p.icu www.7j0r.icu 7j0r.icu www.7i2t.icu 7i2t.icu www.2b0t.icu 2b0t.icu www.7q2m.icu 7q2m.icu www.7u2b.icu 7u2b.icu www.7s0b.icu 7s0b.icu www.8r1k.icu 8r1k.icu www.9n2x.icu 9n2x.icu www.8a2l.icu 8a2l.icu www.8z1r.icu 8z1r.icu www.8q2u.icu 8q2u.icu www.0o2v.icu www.6y2u.icu 0o2v.icu 6y2u.icu www.5e1r.icu 5e1r.icu www.8s2m.icu 8s2m.icu www.9j2n.icu 9j2n.icu www.8z2m.icu 8z2m.icu www.5w1z.icu 5w1z.icu www.9d2k.icu 9d2k.icu www.9l2c.icu 9l2c.icu www.5g0k.icu 5g0k.icu www.4e0q.icu 4e0q.icu www.4o1p.icu 4o1p.icu www.3i0e.icu 3i0e.icu www.5y0t.icu 5y0t.icu www.0k1v.icu 0k1v.icu www.3o2a.icu 3o2a.icu www.4f0f.icu 4f0f.icu www.0u1z.icu 0u1z.icu www.0g1q.icu 0g1q.icu www.6j2c.icu 6j2c.icu www.6n2q.icu 6n2q.icu

Open Ports Detected

1080 1337 3128

Map

Whois Information

• inetnum: 154.213.197.0 - 154.213.197.255
• netname: ThreexK_Tech_GmbH
• descr: 3xK Tech GmbH
• country: FR
• admin-c: CIS1-AFRINIC
• tech-c: CIS1-AFRINIC
• status: ASSIGNED PA
• mnt-by: CIL1-MNT
• mnt-by: LARUS-SERVICE-MNT
• parent: 154.192.0.0 - 154.223.255.255
• person: Cloud Innovation Support
• address: Ebene
• address: MU
• address: Mahe
• address: Seychelles
• phone: tel:+248-4-610-795
• nic-hdl: CIS1-AFRINIC
• abuse-mailbox: abuse@cloudinnovation.org
• mnt-by: CIL1-MNT
• route: 154.213.197.0/24
• descr: 3xK Tech GmbH
• origin: AS200373
• mnt-by: LARUS-SERVICE-MNT

Links to attack logs

anonymous-proxy-ip-list-2025-01-15