195.211.96.85 Threat Intelligence and Host Information

ipinfopage

General

This page contains threat intelligence information for the IPv4 address 195.211.96.85 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

🟡 Low Risk — 35/100

Geographic Location

Host and Network Information

  • View other sources: Spamhaus VirusTotal Shodan AbuseIPDB
  • Country: United States
  • Noticed: 44 times
  • Protocols Attacked: portscan
  • Countries Attacked: Australia, Malaysia
  • Open Ports: 111, 22
  • Tor Node: No

Tags

  • automated
  • brute-force
  • bruteforce
  • cowrie
  • digital ocean
  • dionaea
  • export-to-otx
  • fatt
  • heralding
  • honeypot 24h activity
  • honeytrap
  • mailoney
  • malicious
  • MISP
  • opencanary
  • p0f
  • portscan
  • raspberry-pi
  • RimbaSiber
  • scanner
  • scanners
  • sensor-tagged
  • sentrypeer
  • sftp
  • ssh
  • SSH Bruteforce
  • suricata
  • tanner
  • telnet
  • ThreatIntel
  • tpot
  • vultr

Whois Information

inetnum: 195.211.96.0 - 195.211.99.255 netname: US-GF descr: *********************************************************** descr: * As ISP we provide hosting, virtual and dedicated servers. descr: * descr: * Those services are self managed by our customers descr: * therefore, we are not using this IP space ourselves descr: * and it could be assigned to various end customers. descr: * descr: * In case of issues related with SPAM, Fraud, Phishing descr: * DDoS, port scans or others, feel free to contact us descr: * with relevant info. Abuse email: abuse@greenfloid.com descr: *********************************************************** country: US geoloc: 47.6145281912594 -122.33886204428077 geofeed: https://itldc.com/ipgeo.csv org: ORG-GFL2-RIPE admin-c: GFES1-RIPE tech-c: GFES1-RIPE status: ASSIGNED PI mnt-by: GRFL-MNT mnt-by: RIPE-NCC-END-MNT created: 2021-12-21T07:36:17Z last-modified: 2022-02-09T16:04:33Z organisation: ORG-GFL2-RIPE org-name: GREEN FLOID LLC country: US org-type: LIR address: 2875 NE 191 ST 500-234 address: 33180 address: Aventura address: UNITED STATES phone: +15612500001 reg-nr: L15000049528 (Florida) admin-c: GA12455-RIPE tech-c: GA12455-RIPE abuse-c: AR65589-RIPE mnt-ref: GRFL-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: GRFL-MNT created: 2021-10-12T12:26:33Z last-modified: 2026-04-29T05:29:07Z person: GREEN FLOID EU Support Team address: 2875 NE 191 ST 500-234 address: Aventura, FL, 33180, USA phone: +1 561 2500001 phone: +359 2 4925555 nic-hdl: GFES1-RIPE mnt-by: GRFL-MNT created: 2018-08-16T11:07:23Z last-modified: 2025-01-21T17:13:32Z route: 195.211.96.0/23 descr: GF-US-SEA origin: AS204957 mnt-by: GRFL-MNT created: 2022-02-09T16:00:55Z last-modified: 2022-02-09T16:00:55Z