204.42.254.5 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 204.42.254.5 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 19/100

Host and Network Information

• Tags: home wifi

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 24 times
• Protocols Attacked: SSH
• Passive DNS Results: ns2.snaw.net ns2.nic.ss ns8.xiaoyu.net majdi.nether.net ns5.pdqisp.net ns4.schoendube.org gypsyrack.com dns2.plustech.pl 07cd6611.openresolvertest.net 07cd01d0.openresolvertest.net 07cd6790.openresolvertest.net 6734608e.openresolvertest.net 07cd0c34.openresolvertest.net 07cd061f.openresolvertest.net 07cd043a.openresolvertest.net 67346af2.openresolvertest.net 67351bcd.openresolvertest.net 07cd2ad2.openresolvertest.net 1d3b58f1.openresolvertest.net 07cd08ac.openresolvertest.net 6734050a.openresolvertest.net 67346d79.openresolvertest.net 6735390a.openresolvertest.net 6734635d.openresolvertest.net 6735044c.openresolvertest.net 07cd5753.openresolvertest.net 07cd0b09.openresolvertest.net 07cd4c79.openresolvertest.net 07cd797a.openresolvertest.net 07cd0a0b.openresolvertest.net 07cd197d.openresolvertest.net 07cd2a5e.openresolvertest.net 07cd4d79.openresolvertest.net 67340e7c.openresolvertest.net 8fee952f.openresolvertest.net 8fee8a06.openresolvertest.net 8fee8f6c.openresolvertest.net 8fee9913.openresolvertest.net 8fee835d.openresolvertest.net 8fee9d17.openresolvertest.net 8fee9a39.openresolvertest.net 8fee8444.openresolvertest.net 8fee9833.openresolvertest.net 8fee9b39.openresolvertest.net 8fee9820.openresolvertest.net 8fee8102.openresolvertest.net 8fee8759.openresolvertest.net c995be4c.openresolvertest.net 1da4025b.openresolvertest.net 1da4025c.openresolvertest.net 1da40258.openresolvertest.net 1da40257.openresolvertest.net 1da40250.openresolvertest.net 1da4024f.openresolvertest.net 1da4024c.openresolvertest.net 1da4024b.openresolvertest.net www.as2914.net 07611a7b.openresolvertest.net specfabinc.com deaddrop.net bridgetmorris.com www.mountainypond.org ocmcloud.com ns12.deltacode.com ns2.lileth.net ns2.kenyabroadbandsolutions.co.ke ns2.tetro.net ns2.ecobiz.co.ke ns2.melua.fr siliconstruction.com dns2.liangbrown.com ns2.primadesign.com ns12.michaelpeer.com wordpress.mountainypond.org ns2.3bsd.eu puck.nether.net.spaceserver.net ns2.icesoft.ro usns1.sisibroadband.com ns2.forum.mratwork.com ns2.zse.bydgoszcz.pl ns4.kurnl.net ns6.sslunlimited.com us-ns.serveme.eu d.ns.tobias.gr ns3.ssh.bg ns3.drigon.com ns3.hartwig.szczecin.pl ns3.fair-light.net ns4.000.xxx ns6.enother.net ns2.oabv.eu scrambled.ns.terry.sg ns2.moparscape.net ns2.moparisthebest.com ns2.moparisthebest.net ns2.shirleyliang.com ns5.link.ba ns6.myplantman.com ns6.jollygram.com ns6.atmyfriendsplace.com ns2.potissima.com ns6.richardclinch.com ns6.harrisongeisler.com ns6.nrsiservices.com ns6.bytetamer.com ns6.enother.com ns4.fudo.org ns2.parkyeri.com ns2.circadyn.ca ns2.gogi.eu ns2.somacher-invest.ch ns2.artoflogic.com ns2.tas2580.net ns1.eez.it ns2.tuuliset.com ns3.telemetry.bg ns6.computerlagoon.com ns3.zfs.bg ns3.jdeuce.net ns3.icloud.bg c.ns.otahuna.net c.ns.lucidsolutions.co.nz ns03.astrumlabs.net ns2.woodynet.net ns20.wnry.ch ns2.pultar.org ns4.digitaledgekenya.com ns02.server24-7.eu ns2.the-hatta.com ns2.maticomp.net ns2.armazemdosabao.com ns2.dyn1.de ns2.alojamentototal.com ns2.timia2109.com ns2.mratwork.com nse.prod.gob.ar ns2.landi.co.ke ns2.onemorecupoftea.com ns2.zaledia.com nsrv2.primadesign.ca ns3.dotdesign.ro ns2.burtrum.family ns2.burtrum.me ns2.burtrum.org ns2.burtrum.name ns2.qlogics.com ns2.rpms.mratwork.com ns2.hostux.fr ns1.eldamar.org.uk ns2.hostspectra.com ns02.web-utils.eu dns2.maertens-it.de ns2.dgsi.com ns02.spdns.eu ns02.linux4.de ns2.bigraf.com 1.ns.wilkynet.uk mountainypond.org ns3.stamov.net ns2.hgsm.nl ns2.premotec.ch ns18.server.pantercon.de ns2.gbnet.net as2914.net ns02.web-utils.ml usns1.domainswithoutborders.com ns2.makimo.pl ns3.noisegen.net ns4.launchco.net ns2.thecoffeehouse.info.thecoffeehouse.info dns3.premotec.ch ns1.coinpayments.net 1b7d0668.openresolvertest.net ns2.prefo.pl openresolvertest.net ns3.ntweb.ru 065dd3fb.openresolvertest.net 06560e02.openresolvertest.net 0659ea2a.openresolvertest.net 1e4cc619.openresolvertest.net zimcity.us.eu.org NS2.TELEDATA.NET.UK 1e40d8ea.openresolvertest.net ns2.fionet.com NS2.PCH.NET ns2.mirsal.fr MONET.JOESMITH.NET nimbus.softsys.co.at ns5.ofloo.net ns2.io.lv nss-b.standart.lv ns2.aec.at 291f2f58.openresolvertest.net NS2.X-DEV.CC 16b55818.openresolvertest.net NS2.ECHONYC.COM ns2.lo.hn ns2.glsoft.sk plustech.pl fairytoes.com nether.net ns2.plustech.pl openntpproject.org 16a1c20f.openresolverproject.org ns2.ohbees.com.au openresolverproject.org puck.nether.net

Open Ports Detected

179 21 22 443 465 53 587 80 993

CVEs Detected

CVE-2025-26465 CVE-2025-26466

Map

Whois Information

• NetRange: 204.42.0.0 - 204.42.255.255
• CIDR: 204.42.0.0/16
• NetName: NTTA-204-42
• NetHandle: NET-204-42-0-0-1
• Parent: NET204 (NET-204-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: NTT America, Inc. (NTTAM-1)
• RegDate: 1994-05-14
• Updated: 2012-03-02
• Comment:
• Comment: Reassignment information for this block is
• Ref: https://rdap.arin.net/registry/ip/204.42.0.0
• OrgName: NTT America, Inc.
• OrgId: NTTAM-1
• Address: 15809 Bear Creek Pkwy
• Address: Suite 320
• City: Redmond
• StateProv: WA
• PostalCode: 98052
• Country: US
• RegDate: 2005-12-08
• Updated: 2024-03-04
• Ref: https://rdap.arin.net/registry/entity/NTTAM-1
• OrgAbuseHandle: NAAC-ARIN
• OrgAbuseName: NTT America Abuse Contact
• OrgAbusePhone: +1-877-688-6625
• OrgAbuseEmail: abuse@ntt.net
• OrgAbuseRef: https://rdap.arin.net/registry/entity/NAAC-ARIN
• OrgRoutingHandle: PEERI-ARIN
• OrgRoutingName: Peering
• OrgRoutingPhone: +1-877-688-6625
• OrgRoutingEmail: peering@ntt.net
• OrgRoutingRef: https://rdap.arin.net/registry/entity/PEERI-ARIN
• OrgTechHandle: VIPAR-ARIN
• OrgTechName: VIPAR
• OrgTechPhone: +1-877-688-6625
• OrgTechEmail: ipr@gin.ntt.net
• OrgTechRef: https://rdap.arin.net/registry/entity/VIPAR-ARIN
• OrgNOCHandle: NASC-ARIN
• OrgNOCName: NTT America Support Contact
• OrgNOCPhone: +1-877-688-6625
• OrgNOCEmail: support@gin.ntt.net
• OrgNOCRef: https://rdap.arin.net/registry/entity/NASC-ARIN
• OrgTechHandle: CANDE70-ARIN
• OrgTechName: Candela, Massimo
• OrgTechPhone: +1-214-915-1366
• OrgTechEmail: massimo@ntt.net
• OrgTechRef: https://rdap.arin.net/registry/entity/CANDE70-ARIN

Links to attack logs

****** ****** ******