193.189.100.205 Threat Intelligence and Host Information

Mar 11, 2026 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 193.189.100.205 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Likely Malicious Host 🟠 70/100

Host and Network Information

  • Tags: 2026-02, Adbhoney, anonymization_network, attacker-ip, automated, Automated, blocklist, cisco, conpot, cowrie, dionaea, dugganusa, elasticpot, email, fatt, heralding, honeytrap, LAMP, mailoney, malicious, OpenCTI, p0f, scanner, sensor-tagged, sentrypeer, sftp, sip, ssh, suricata, tanner, tor-exit-nodes, tor-guard-nodes, tpot, voidtrap

  • Known tor exit node

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: blocklist_net_ua, dm_tor, et_tor, sblam, stopforumspam_180d, stopforumspam_1d, stopforumspam_30d, stopforumspam_365d, stopforumspam_7d, stopforumspam_90d, stopforumspam, tor_exits

  • Known TOR node
  • Country: Sweden
  • Network:
  • Noticed: 50 times
  • Protocols Attacked: web

Malware Detected on Host

Count: 44 fe31eb3a357887b1c45e65ba85681d53a43fb165c11803211b6c68d4c2b17ebb b727f8080a2b9b842bd3f7569974f3ed44b2c0c9be5f1f078e718e156415dfe8 736f61430dc7b3fd797fd13d33b66ad89fc1b1fe12f8a95ee8ec7d37469ccb05 03b28655735e9470496318f399f88c2eb5372350abb05e74bfc8f25cc1f6f9c2 b11e614cdd02aecb8d6ae65bf67bfac8cbefd68830065217e2cb48922743bb12 7899fb72d9a0f54ccad66599e198e2056e284e52545dfae28e4ef14f9fe1ea7f 3ce6e5593f9af782dd9788e2641663ff16d3f9fa47c7270cc2c60cfab5262a76 a1fecdf48c49e34618c1af8f8b21866aa5810d9ffd1bc943ad7b384f05698da4 6c862c0c005e4b847c6ca4b8cdb464af557b2a6e38886cfd182b279857b79946 2fd353ffcace535b5c0cdd3b70784bcbf1d4e35879a3109ed8825c2f970d22d3

Open Ports Detected

123 161 443 444 5000 80 81 82

Map

Whois Information

  • inetnum: 193.189.100.0 - 193.189.101.255
  • netname: SE-KEFF-CUST
  • descr: KeFF Customers
  • country: SE
  • org: ORG-KNL18-RIPE
  • admin-c: KEFF1-RIPE
  • tech-c: KEFF1-RIPE
  • status: ASSIGNED PI
  • mnt-by: MNT-KEFF
  • mnt-by: RIPE-NCC-END-MNT
  • created: 2019-12-18T11:40:16Z
  • last-modified: 2024-04-23T07:57:47Z
  • organisation: ORG-KNL18-RIPE
  • org-name: KeFF Networks Ltd
  • country: GB
  • org-type: LIR
  • address: 71-75 Shelton Street
  • address: WC2H 9JQ
  • address: London
  • address: UNITED KINGDOM
  • phone: +442070978956
  • admin-c: KEFF1-RIPE
  • tech-c: KEFF1-RIPE
  • abuse-c: KEFF1-RIPE
  • mnt-ref: MNT-KEFF
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: MNT-KEFF
  • created: 2019-09-16T09:44:28Z
  • last-modified: 2020-12-16T13:03:04Z
  • role: KeFF NOC
  • address: 71-75 Shelton Street
  • address: WC2H 9JQ London
  • address: United Kingdom
  • phone: +442070978956
  • abuse-mailbox: abuse@as41281.net
  • nic-hdl: KEFF1-RIPE
  • mnt-by: MNT-KEFF
  • created: 2010-05-14T06:10:42Z
  • last-modified: 2019-10-28T14:13:05Z
  • route: 193.189.100.0/24
  • origin: AS41281
  • mnt-by: MNT-KEFF
  • created: 2020-06-29T16:52:08Z
  • last-modified: 2020-06-29T16:52:08Z

Links to attack logs

cfglobal-web-intelligence-2026-03-10 cfglobal-web-bruteforce-ip-list-2026-03-10

Share on: