154.92.18.55 Threat Intelligence and Host Information

Share on:
Jul 23, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 154.92.18.55 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 25/100

Host and Network Information

  • Tags: Nextray, cyber security, ioc, malicious, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: Hong Kong
  • Network: AS142403 yisu cloud ltd
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: quindtec.com fleekotec.com lymaotec.com jinmingwlkj.com smodetec.com qztytc.com modulortc.com hzrtch.com hgxftc.com exelfytc.com naukaitc.com dhiante.com tongdatec.com ayaitecld.com deckete.com switcte.com tacatatc.com peakcomte.com rebustec.com primeteaminc.com katetalb.com elikangtech.com qdhrftc.com bulaonf.com sharuanwlkj.com kaifina.com xtynwlkj.com ananttecnc.com bencaoqiankun.com centefi.com navtetec.com schqingran.com yixinfnc.com xingtongwlkj.com aureationtec.com huatengjr.com purduete.com omitewl.com jennycantrade.com neuralsnet.com jujialtd.com xsserl.com aijiameiltd.com percivaltec.com finaltecf.com beichunhai.com yimaotec.com yanniannt.com hdxiangxu.com junengwlkj.com tdzhtc.com orbittc.com xcfujwlkj.com ssifan.com xuanmeiltd.com gzljltd.com dadianketech.com fridatechltd.com sthyma.com tecbrai.com hanna33.com xmxjwll.com qzlieyan.com fhrwlkj.com tcsohk.com ecotractd.com wxqinjiultd.com aristeld.com njzekeltd.com maptechld.com bluetechair.com taliektdc.com sphfinlt.com brinkte.com ywyacwlkj.com hnyzengwlkj.com fortefiltd.com zstianyuetech.com xuyichunxiang.com iridatechp.com ldzlkeji.com dataacti.com mcmebus.com irisfina.com www.77yy.top 77yy.top 44yy.top www.44yy.top www.heigouyingyuan.cn heigouyingyuan.cn kmmyy.top www.kmmyy.top www.7k8k.top 7k8k.top 71dy.top www.heigoudianying.cn heigoudianying.cn av889.com 11kk.top 99dd.top 7-baidu.com 5-baidu.com www.kanayy.com kanayy.com www.ggtv.fun ggtv.fun

Map

Whois Information

  • inetnum: 154.92.18.0 - 154.92.18.255
  • netname: Guangzhou_Yisu_Cloud_Limited
  • descr: Guangzhou Yisu Cloud Limited
  • country: HK
  • admin-c: CIS1-AFRINIC
  • tech-c: CIS1-AFRINIC
  • status: ASSIGNED PA
  • mnt-by: CIL1-MNT
  • mnt-by: LARUS-SERVICE-MNT
  • parent: 154.80.0.0 - 154.95.255.255
  • person: Cloud Innovation Support
  • address: Ebene
  • address: MU
  • address: Mahe
  • address: Seychelles
  • phone: tel:+248-4-610-795
  • nic-hdl: CIS1-AFRINIC
  • abuse-mailbox: [email protected]
  • mnt-by: CIL1-MNT
  • route: 154.92.18.0/24
  • origin: AS136970
  • descr: Guangzhou Yisu Cloud Limited
  • mnt-by: LARUS-SERVICE-MNT
  • route: 154.92.18.0/24
  • origin: AS142403
  • descr: Guangzhou Yisu Cloud Limited
  • mnt-by: LARUS-SERVICE-MNT

Links to attack logs

bruteforce-ip-list-2020-07-09 bruteforce-ip-list-2020-07-08