192.71.166.25 Threat Intelligence and Host Information

Share on:
Apr 20, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 50/100

Host and Network Information

  • Tags: C&C, Nextray, cyber security, ioc, malicious, phishing
  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: sblam, stopforumspam_180d, stopforumspam_365d

  • Country: Greece
  • Network: AS8280 synapsecom s.a. provider of telecommunications and internet services
  • Noticed: 14 times
  • Protcols Attacked: spam
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: ozoon2.linkpc.net haberci1.giize.com njrathack.ddns.net nbycm3siji1za.hopto.org simaiiii1.ddns.net buybuy.ddns.net maksongg.ddns.net

Malware Detected on Host

Count: 45 01662f4d1bc1be534e33da1436d89e32f283c6f24a896152082062ca79b57067 0f5925debabd0401a4496fc41f5817fddcc69b72ff30d4da8f7d053e16f9b922 51d1cdba3cbb6f2560d9ebbc08cf2634ec69151dd5a736f062e2cee24f394d61 3b3fc918aa733c1877d72c016702f0fa0b481e9d0a97b336e701aadea61c79ff b37d8113a0d2f3e23c5ee21956557018aafb63d12c396701288f84a03842743b b7f4550c4b1a60a4571c8b8b29a9573a340ecf0df26f16c13b4cf116ac37553d 833f8e724c6947e74e0079d847284bb7dc3e432482cb05bfdee09bc2a5642765 81c1af0a7debf9f33869fcf6a446ce7015b75525c6b06831e66294be8911d287 23ca8ed84ca5a728e6b433a215aca2a6ce34b6fee755b608da8e69f5f84489e2 6c3022ba478e3d4ea817ab0b7e85ecd6e52b1ffe5f42f0e1c0bd4885b2493fb9

Map

Whois Information

  • inetnum: 192.71.166.0 - 192.71.166.255
  • netname: EDIS-GR-NET
  • descr: EDIS Infrastructure in Greece
  • status: LEGACY
  • org: ORG-ABUS1224-RIPE
  • country: GR
  • geoloc: 37.9838 23.7275
  • geofeed: https://www.edis.at/geofeed.txt
  • language: EL
  • admin-c: EDIS-RIPE
  • admin-c: GK2
  • admin-c: ISAT
  • tech-c: EDIS-RIPE
  • tech-c: ISAT
  • mnt-by: RESILANS-MNT
  • mnt-routes: EDIS-MNT
  • created: 2018-12-17T14:02:40Z
  • last-modified: 2023-01-11T16:30:50Z
  • organisation: ORG-ABUS1224-RIPE
  • org-name: EDIS GmbH
  • org-type: OTHER
  • address: Hauptplatz 3/3
  • address: 8010 GRAZ
  • address: Austria
  • abuse-c: ABUS2725-RIPE
  • mnt-ref: RESILANS-MNT
  • mnt-by: RESILANS-MNT
  • created: 2013-03-14T13:51:04Z
  • last-modified: 2016-08-12T11:02:57Z
  • person: Technical Contact
  • address: EDIS GmbH, Hauptplatz 3/3, 8010, GRAZ, Austria
  • address: http://www.edis.at
  • phone: +43 316 827500300
  • nic-hdl: EDIS-RIPE
  • mnt-by: EDIS-MNT
  • created: 2011-05-09T14:30:43Z
  • last-modified: 2017-10-30T22:13:42Z
  • person: Gerhard Kleewein
  • address: EDIS GmbH, Hauptplatz 3/3, 8010, GRAZ, Austria
  • address: http://www.edis.at
  • phone: +43 316 827500300
  • nic-hdl: GK2
  • mnt-by: EDIS-MNT
  • created: 2013-07-22T09:30:17Z
  • last-modified: 2016-04-08T06:44:45Z
  • person: Dipl.-Ing. Ismir Saljic
  • address: EDIS GmbH, Hauptplatz 3/3, 8010, GRAZ, Austria
  • address: http://www.edis.at
  • phone: +43 316 827500300
  • nic-hdl: ISAT
  • mnt-by: EDIS-MNT
  • created: 2013-12-18T13:29:24Z
  • last-modified: 2016-04-08T06:45:49Z
  • route: 192.71.166.0/24
  • origin: AS8280
  • mnt-by: EDIS-MNT
  • created: 2019-09-30T06:52:09Z
  • last-modified: 2019-09-30T06:52:09Z

Links to attack logs

forum-spam-ip-list-2020-05-22