103.194.l70.154 Jun 2026

: Identify which port the traffic is hitting. Port 80/443 typically indicates standard web traffic, while ports like 22 (SSH) or 3389 (RDP) point to remote server management attempts.

Email the abuse address. If no response is received after 48–72 hours, consider reporting to the upstream provider (AS60064 or APNIC itself via its abuse reporting mechanisms).

: Enterprise networks leverage data center subnets to spin up high-speed transit proxies or remote network gateways.

If you suspect that 103.194.170.154 is involved in malicious activity, such as sending spam, performing port scans, or hosting malware, here is a step-by-step approach to investigate and respond effectively. 103.194.l70.154

...then it is a compromised or malicious tenant within Azure. Microsoft does not automatically block its own IP ranges for abuse, as legitimate and malicious traffic share the same address pool.

Microsoft actively scans the public internet for security research and to identify vulnerable Azure customers. If you run a public-facing server, 103.194.170.154 may be a benign health check.

: High-bandwidth servers provisioned for data redundancy, video processing, and intensive backend computations. : Identify which port the traffic is hitting

The IPv4 address is assigned to Serverhosh Internet Service (ASN 134512) and is part of a network block managed through the APNIC registry . Technical Profile Network Operator: Serverhosh Internet Service.

: It belongs to the broader subnet 103.194.170.0/24 , a netblock that contains a total of 256 unique IP addresses.

If you are investigating this IP address due to a specific issue, please share if you saw it in a , a website error , or a security alert so we can look into the exact context. Share public link If no response is received after 48–72 hours,

This information is valid as of June 5, 2026, based on available routing and WHOIS data. If you'd like to dive deeper, I can help you check for:

Network administrators should practice routine monitoring of public-facing IPs within their infrastructure. For addresses like 103.194.170.154, tracking can be handled through specific network tasks:

: Providing secure access for network technicians to log into remote servers, routers, or industrial control hardware from afar. Cybersecurity and Traffic Logs

Ensure your IPS/IDS has the latest threat feeds active to automatically detect anomalous behavior originating from the APNIC netblock.

is a United Kingdom private limited company (company number 12220758) incorporated on 21 September 2019 and still active. Its registered office is in London, City of London. The company is designated as a micro entity under UK law, with fewer than 10 employees and turnover below £1 million annually. Its most recent filed financial data (30 September 2024 period) shows total assets of roughly £54.91K and net assets of approximately £29.46K.