156.225.72.114 Threat Intelligence and Host Information
General
This page contains threat intelligence information for the IPv4 address 156.225.72.114 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.
Possibly Malicious Host 🟢 5/100
Host and Network Information
- View other sources: Spamhaus VirusTotal
- Country: United States
- Network:
- Noticed: 1 times
- Protocols Attacked: Anonymous Proxy
- Passive DNS Results: www.x13c1wt5.icu 5t6o614d.icu 1g7v938i.icu doi0u9ja.icu 6508o9u8.icu 5o1u1tn4.icu 0gmfs8vd.icu gmkmim7m.icu 1ubidcsu.icu duykn94x.icu 5wxphhle.icu bxyu0gd2.icu c7wkho9f.icu q84oag03.icu lsgzpa25.icu 11a2lv04.icu ftzyrl5t.icu a8527nrr.icu 7n7wsady.icu x13c1wt5.icu p0568nvh.icu qnuzguc2.icu 05y6mckm.icu 6v9k6jt1.icu o193ur72.icu nq8o8k4h.icu gnys5gqo.icu vduevbno.icu ixa5mc30.icu jcysk8sj.icu w3090guw.icu y4xrc2d9.icu ndwhw9vu.icu rodvy8xx.icu jpwyvu0x.icu 0hv88wln.icu uzqep20t.icu 1tnrowgf.icu qcaqrzex.icu www.njdecqcw.icu njdecqcw.icu xg44240.vip bxj62440.vip sx84888.vip
Malware Detected on Host
Count: 1 c5736bfa11e7decaf5f7fe050b64d8cfd04bb80ec6f238512009ffcbb48856ca
Open Ports Detected
2052 2082 2083 2086 2087 443 80 8080 8443 8880
Map
Whois Information
- NetRange: 156.225.0.0 - 156.225.255.255
- CIDR: 156.225.0.0/16
- NetName: AFRINIC-ERX-156-225-0-0
- NetHandle: NET-156-225-0-0-1
- Parent: NET156 (NET-156-0-0-0-0)
- NetType: Transferred to AfriNIC
- OriginAS:
- Organization: African Network Information Center (AFRINIC)
- RegDate: 2010-11-03
- Updated: 2010-11-17
- Comment: This IP address range is under AFRINIC responsibility.
- Comment: Please see http://www.afrinic.net/ for further details,
- Ref: https://rdap.arin.net/registry/ip/156.225.0.0
- OrgName: African Network Information Center
- OrgId: AFRINIC
- Address: Level 11ABC
- Address: Raffles Tower
- Address: Lot 19, Cybercity
- City: Ebene
- StateProv:
- PostalCode:
- Country: MU
- RegDate: 2004-05-17
- Updated: 2015-05-04
- Comment: AfriNIC - http://www.afrinic.net
- Comment: The African & Indian Ocean Internet Registry
- Ref: https://rdap.arin.net/registry/entity/AFRINIC
- OrgTechHandle: GENER11-ARIN
- OrgTechName: Generic POC
- OrgTechPhone: +230 4666616
- OrgTechEmail: abusepoc@afrinic.net
- OrgTechRef: https://rdap.arin.net/registry/entity/GENER11-ARIN
- OrgAbuseHandle: GENER11-ARIN
- OrgAbuseName: Generic POC
- OrgAbusePhone: +230 4666616
- OrgAbuseEmail: abusepoc@afrinic.net
- OrgAbuseRef: https://rdap.arin.net/registry/entity/GENER11-ARIN
- inetnum: 156.225.72.0 - 156.225.72.255
- netname: GS_TECHNOLOGIES_LIMITED
- descr: GS TECHNOLOGIES LIMITED
- country: US
- admin-c: CIS1-AFRINIC
- tech-c: CIS1-AFRINIC
- status: ASSIGNED PA
- mnt-by: CIL1-MNT
- mnt-by: LARUS-SERVICE-MNT
- parent: 156.224.0.0 - 156.255.255.255
- person: Cloud Innovation Support
- address: Ebene
- address: MU
- address: Mahe
- address: Seychelles
- phone: tel:+248-4-610-795
- nic-hdl: CIS1-AFRINIC
- abuse-mailbox: abuse@cloudinnovation.org
- mnt-by: CIL1-MNT
- route: 156.225.72.0/24
- descr: GS TECHNOLOGIES LIMITED
- origin: AS209242
- mnt-by: LARUS-SERVICE-MNT
Links to attack logs
anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22 anonymous-proxy-ip-list-2025-06-24
Share on: