IP Address

173.54.65.53

IPv4 Public
US US
AS701
UUNET
476 Reports
This IP is under Observation Suspicious activity detected - monitor closely
10/10 Threat
59% Confidence
476 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Above Average Risk
US
US Location
UUNET ASN 701
476 Reports
Honeypot Data Source

Critical Threat

IP 173.54.65.53 is a critical-risk address operating from United States infrastructure (ASN AS701, UUNET) that has been flagged as a compromised attack platform, generating 476 abuse reports across automated honeypot sensors between November 2025 and February 2026. The dominant threat classification is "Exploited Host," indicating this machine has been weaponized by threat actors without its owner's knowledge and is actively participating in malicious campaigns.

The IP earned a maximum threat score of 10 out of 10 despite a low ongoing activity frequency rating of 0/10, suggesting recent detections may have subsided while the cumulative abuse history remains substantial and unresolved. All 20 most recent threat categorizations specifically cited exploited-host behavior, with malware and exploit-related activity patterns documented across the reporting window. The reports originated exclusively from automated honeypot infrastructure, confirming sustained malicious traffic patterns over a four-month period.

An "Exploited Host" designation means this IP address belongs to a system that has been compromised and is being remotely controlled by external threat actors, likely through malware infection, vulnerability exploitation, or unauthorized credential use. For any organization with internet-exposed services, traffic originating from this IP poses genuine risk as it may represent command-and-control communications, secondary attack launching, or attempts to propagate malicious payloads to other vulnerable systems.

Site operators should block this IP at the network perimeter or firewall level, particularly for services with exposed attack surfaces such as SSH, RDP, HTTP, or mail servers. Implementing fail2ban or similar dynamic blocking frameworks can automate responses to suspicious patterns associated with this address. Organizations encountering connections from this IP should consider filing an abuse report with the upstream provider to facilitate remediation of the compromised host. Monitoring incoming traffic from this address and adjacent network ranges helps identify any associated malicious infrastructure seeking to expand its foothold.

More threatening than 89% of monitored IPs

Threat Categories

Exploited Host 30

Technical Details

This IP belongs to a compromised system being used as an attack platform without the owner's knowledge.

Recommended Mitigations

Block the IP and consider notifying the hosting provider or system owner about the compromise.

Reputable Network

This IP is hosted on a network (ASN 701) with generally good reputation. The ISP UUNET maintains standard security practices.

The malicious activity may represent an isolated compromised system rather than systematic abuse.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 0/10 Inactive
Confidence Score 59% High Confidence

Confidence History

4. Nov 2025 - 5. Feb 2026
59% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Exploited Host Honeypot x4 75%
Exploited Host Honeypot x4 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
10 of 476 shown

Technical Details

Basic Information

IP Address
173.54.65.53
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class B

Geolocation

Country
US US
ASN
AS701
ISP
UUNET

DNS Information

Reverse DNS
static-173-54-65-53.nwrknj.fios.verizon.net
PTR Record
Yes
Connection Type
Dynamic

Statistics

Total Reports
476
First Reported
4 Nov 2025
Last Reported
5 Feb 2026, 08:08

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS701
Verizon Business
US US

Network Threat Assessment

1/10
This network appears to be relatively clean with very low threat indicators.

Network Statistics

63
Total IPs Monitored
2,811
Total Reports
44.6
Reports per IP

Network Context

This IP address belongs to Verizon Business (AS701), which manages 63 IP addresses in our monitoring system. Out of these, 2,811 have been reported for suspicious activities, resulting in a network-wide threat level of 1/10.

Network status: This network appears to be well-maintained with low threat indicators.

Comparative Analysis

How this IP compares to others in our threat intelligence database

89 %

Global Threat Ranking

This IP is more threatening than 89% of all IPs in our database.

High Threat Percentile

Global Comparison

Compared against 199,938 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 476 avg: 23 ++

Network Comparison

Compared against 93 IPs in ASN 701

Threat Level 10/10 network avg: 4.0 ++
Total Reports 476 network avg: 30 ++
Network UUNET has overall threat level 1/10

Geographic Comparison

Compared against 38,485 IPs in US

Threat Level 10/10 country avg: 5.9 ++
Total Reports 476 country avg: 41 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,611 threat incidents tracked globally • Last 24h: 18,879 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US THIS IP
    38,485 20.5%
  2. 02
    IN
    India IN
    29,222 15.6%
  3. 03
    CN
    China CN
    26,039 13.9%
  4. 04
    BR
    Brazil BR
    10,262 5.5%
  5. 05
    DE
    Germany DE
    7,147 3.8%
  6. 06
    SG
    Singapore SG
    6,479 3.5%
  7. 07
    ID
    Indonesia ID
    5,559 3%
  8. 08
    RU
    Russia RU
    4,710 2.5%
  9. 09
    PK
    Pakistan PK
    4,702 2.5%
  10. 10
    NL
    Netherlands NL
    4,362 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same Autonomous System (AS) network provider.

20 Related IPs
6.3/10 Avg Threat
48% Avg Confidence
14 High Threat
High-risk network: Majority of related IPs are flagged
72.79.42.117 10/10
Confidence 75%
Reports 2,126
Location US US
11 May 2026
63.116.23.24 10/10
Confidence 75%
Reports 34
Location US US
24 Mar 2026
96.225.64.251 10/10
Confidence 56%
Reports 5
Location US US
13 May 2026
71.171.102.75 10/10
Confidence 56%
Reports 4
Location US US
24 May 2026
100.2.64.58 10/10
Confidence 56%
Reports 4
Location US US
17 May 2026
141.155.15.109 10/10
Confidence 56%
Reports 4
Location US US
21 Jan 2026
71.183.139.238 10/10
Confidence 47%
Reports 5
Location US US
3 Apr 2026
100.34.245.41 0/10
Confidence 47%
Reports 4
Location US US
18 Mar 2026
96.246.234.106 0/10
Confidence 46%
Reports 4
Location US US
23 Apr 2026
68.238.254.222 10/10
Confidence 45%
Reports 6
Location US US
20 Apr 2026
100.36.98.55 8/10
Confidence 45%
Reports 5
Location US US
5 Apr 2026
100.1.33.234 10/10
Confidence 43%
Reports 4
Location US US
22 May 2026
173.77.244.131 0/10
Confidence 41%
Reports 3
Location US US
7 Apr 2026
108.41.203.61 0/10
Confidence 40%
Reports 3
Location US US
19 Feb 2026
100.16.254.55 0/10
Confidence 40%
Reports 2
Location US US
20 Apr 2026
72.85.159.195 0/10
Confidence 40%
Reports 2
Location US US
15 May 2026
71.178.110.3 7/10
Confidence 38%
Reports 2
Location US US
6 Jun 2026
71.251.192.9 7/10
Confidence 38%
Reports 1
Location US US
12 Apr 2026
74.104.182.96 7/10
Confidence 38%
Reports 1
Location US US
12 Apr 2026
71.105.167.170 7/10
Confidence 38%
Reports 1
Location US US
12 Apr 2026

IPs from the same country with similar threat profiles.

15 Related IPs
8.2/10 Avg Threat
100% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
50.6.7.129 8/10
Confidence 100%
Reports 447
ISP ORACLE-BMC-31898
22 May 2026
72.167.150.128 8/10
Confidence 100%
Reports 429
ISP GO-DADDY-COM-LLC
27 May 2026
50.6.229.148 8/10
Confidence 100%
Reports 346
ISP ORACLE-BMC-31898
9 May 2026
87.121.84.30 8/10
Confidence 100%
Reports 295
ISP Vpsvault.host Ltd
20 Apr 2026
50.6.226.221 10/10
Confidence 100%
Reports 223
ISP ORACLE-BMC-31898
2 Mar 2026
31.57.184.107 8/10
Confidence 100%
Reports 202
ISP Netiface LLC
3 Jun 2026
64.31.25.250 8/10
Confidence 100%
Reports 176
ISP Limestone Netwo...
8 Jun 2026
74.206.180.196 8/10
Confidence 100%
Reports 143
ISP MOJOHOST
4 Jun 2026
35.226.7.126 8/10
Confidence 100%
Reports 131
ISP Google LLC
18 May 2026
147.135.37.185 8/10
Confidence 100%
Reports 131
ISP OVH SAS
14 May 2026
162.241.152.21 8/10
Confidence 100%
Reports 126
ISP Network Solutio...
8 Jun 2026
38.95.35.74 8/10
Confidence 100%
Reports 112
ISP Limestone Netwo...
2 Jun 2026
50.6.169.131 8/10
Confidence 100%
Reports 106
ISP Network Solutio...
6 Jun 2026
162.214.206.32 10/10
Confidence 100%
Reports 98
ISP Unified Layer
30 May 2026
152.32.148.250 7/10
Confidence 100%
Reports 88
ISP UCLOUD INFORMAT...
8 Jun 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.5/10 Avg Threat
59% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
77.90.185.141 10/10
Confidence 59%
Reports 46,654
Location DE DE
11 Nov 2025
198.23.190.58 10/10
Confidence 59%
Reports 40,333
Location US US
17 Nov 2025
45.234.176.18 8/10
Confidence 59%
Reports 31,506
Location BR BR
5 Oct 2025
103.146.203.60 10/10
Confidence 59%
Reports 31,330
Location ID ID
1 Sep 2025
176.65.134.8 10/10
Confidence 59%
Reports 29,990
Location DE DE
29 Sep 2025
176.65.134.7 7/10
Confidence 59%
Reports 26,776
Location DE DE
21 Sep 2025
2.57.121.148 10/10
Confidence 59%
Reports 25,577
Location RO RO
1 Oct 2025
103.91.140.28 10/10
Confidence 59%
Reports 23,540
Location PH PH
16 Sep 2025
206.81.13.37 8/10
Confidence 59%
Reports 20,549
Location US US
5 Sep 2025
104.164.110.7 10/10
Confidence 59%
Reports 17,849
Location US US
27 Dec 2025
185.243.96.105 10/10
Confidence 59%
Reports 17,727
Location UA UA
5 Feb 2026
45.187.40.40 10/10
Confidence 59%
Reports 16,203
Location BR BR
9 Sep 2025
198.12.68.114 10/10
Confidence 59%
Reports 14,600
Location US US
17 Nov 2025
173.231.185.164 10/10
Confidence 59%
Reports 14,563
Location US US
15 Sep 2025
103.162.15.126 10/10
Confidence 59%
Reports 13,612
Location VN VN
8 Nov 2025

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "173.54.65.53",
    "threat_level": 10,
    "confidence_score": 59,
    "total_reports": 476,
    "country_code": "US",
    "isp_name": "UUNET",
    "asn": "701",
    "first_reported": "2025-11-04 05:20:27",
    "last_reported": "2026-02-05 08:08:00",
    "exported_at": "2026-06-09T12:51:12+02:00",
    "source": "https://reportedip.de/ip/173.54.65.53/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses