193.189.100.200 Threat Intelligence and Host Information

Share on:
Apr 24, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Likely Malicious Host 🟠 70/100

Host and Network Information

  • Tags: Nextray, Scanner, TOR, VPN, Webattack, cve202229266, cyber security, description, description ip, indicator, indicator type, ioc, malicious, phishing, scanning, smtp, ssh, tcp, tsec
  • Known tor exit node
  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: blocklist_net_ua, botscout_30d, botscout_7d, dm_tor, et_tor, sblam, stopforumspam, stopforumspam_180d, stopforumspam_1d, stopforumspam_30d, stopforumspam_365d, stopforumspam_7d, stopforumspam_90d, tor_exits, tor_exits_1d, tor_exits_30d, tor_exits_7d

  • Known TOR node
  • Country: United Kingdom of Great Britain and Northern Ireland
  • Network: AS41281 keff networks ltd
  • Noticed: 50 times
  • Protcols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Malware Detected on Host

Count: 32 e2111f8fab209e4fec0d4a9cc0b3405cf77dae7b16338b4b30cfc44e1a037af5 2a97239ffb9e60e92fc894e05769f5c079bad38ad8d1525043480f6e96b111d6 cb1257e06ecd7a1e1dd42c78c6d663ce10951f7b98f3926b2cab67781a5aa191 b11e614cdd02aecb8d6ae65bf67bfac8cbefd68830065217e2cb48922743bb12 f65e0418fc2f01f3cae4ac0852a7dcee9d11885757d8fcfa898cce289a2ae022 397200e2d3246b6e673b1dec5f3a42e103651d25f8f0cef061cd4aececcbb1a7 8a92c1ef584729b381aa63d96c0d6ff26b85ff66fa8780983c09c6a938160c65 87898b0d6eef51e25ccf453c4b796bc41bd90ea4924337ac346e21dacc2f1c67 065f7d2c4cfbbc774d08b22926501898707d7f78a3e6d982b22408654289047f 95c868331a1fcb7a15e79a942e4b56c0edbbc946dff3cd6dfa4472470a7521c5

Open Ports Detected

123 161 22 80

Map

Whois Information

  • inetnum: 193.189.100.0 - 193.189.101.255
  • netname: SE-KEFF-CUST
  • descr: KeFF Sweden Customers
  • country: SE
  • org: ORG-KNL18-RIPE
  • admin-c: KEFF1-RIPE
  • tech-c: KEFF1-RIPE
  • status: ASSIGNED PI
  • mnt-by: MNT-KEFF
  • mnt-by: RIPE-NCC-END-MNT
  • created: 2019-12-18T11:40:16Z
  • last-modified: 2021-02-20T11:19:59Z
  • organisation: ORG-KNL18-RIPE
  • org-name: KeFF Networks Ltd
  • country: GB
  • org-type: LIR
  • address: 71-75 Shelton Street
  • address: WC2H 9JQ
  • address: London
  • address: UNITED KINGDOM
  • phone: +442070978956
  • admin-c: KEFF1-RIPE
  • tech-c: KEFF1-RIPE
  • abuse-c: KEFF1-RIPE
  • mnt-ref: MNT-KEFF
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: MNT-KEFF
  • created: 2019-09-16T09:44:28Z
  • last-modified: 2020-12-16T13:03:04Z
  • role: KeFF NOC
  • address: 71-75 Shelton Street
  • address: WC2H 9JQ London
  • address: United Kingdom
  • phone: +442070978956
  • abuse-mailbox: [email protected]
  • nic-hdl: KEFF1-RIPE
  • mnt-by: MNT-KEFF
  • created: 2010-05-14T06:10:42Z
  • last-modified: 2019-10-28T14:13:05Z
  • route: 193.189.100.0/24
  • origin: AS41281
  • mnt-by: MNT-KEFF
  • created: 2020-06-29T16:52:08Z
  • last-modified: 2020-06-29T16:52:08Z

Links to attack logs

nmap-scanning-list-2022-02-28