206.81.16.240 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 206.81.16.240 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

• View other sources: Spamhaus VirusTotal
• Contained within other IP sets: blocklist_de, blocklist_de_ssh

• Country: Germany
• Network:
• Noticed: times
• Protocols Attacked: SSH

Open Ports Detected

10001 10017 10021 10027 10031 10032 10041 10134 102 10225 1023 1024 10243 1027 10909 10911 110 11000 1111 11210 113 11300 11434 1200 1207 122 1234 131 1311 135 1400 1414 143 1443 1515 1521 1723 1741 1800 1801 1820 1911 1926 2000 2001 2002 2003 2008 2010 2016 21 211 2121 221 222 2222 2225 23 2323 2345 2404 2423 25 2628 3001 3006 3010 3014 30303 311 3113 3128 3138 3143 3310 3333 3401 3402 3409 3531 3910 4000 4010 4022 4117 4120 4244 427 4321 4401 443 4432 4433 4438 444 4440 4443 445 4506 4700 4840 5000 5002 5004 5005 5009 5010 5025 503 5100 5105 513 5140 515 5201 5222 5223 5237 5243 5400 541 5440 5542 5609 5630 5800 5822 5900 5903 5906 5907 5908 5909 5910 5915 5917 5938 6000 6002 6005 6020 631 632 6400 6440 6443 6544 66 6601 6602 6603 6622 6700 7016 7022 7025 7102 7218 7434 7443 7445 7500 7547 7700 7801 8000 8001 8002 8008 8010 8020 8041 8080 8104 811 8112 8116 8120 8123 8136 8137 8140 8143 8200 8222 8243 8322 8333 8343 8407 8410 8412 8424 8513 8530 8544 8545 8600 8621 8630 8637 8709 8732 8743 88 8804 8815 8816 8825 8827 8829 8834 8835 8836 8839 8911 8913 9000 9002 9004 9009 9012 902 9023 9028 9034 9042 9100 9103 9115 9121 9131 9134 9144 9200 9202 9206 9213 9306 9333 9418 9443 9501 9529 9600 9633 9800 9928 9943 9944 9999

CVEs Detected

CVE-2007-3205 CVE-2013-2220 CVE-2017-9118 CVE-2021-21703 CVE-2021-21707 CVE-2021-21708 CVE-2021-3618 CVE-2022-31625 CVE-2022-31626 CVE-2022-31628 CVE-2022-31629 CVE-2022-31630 CVE-2022-37454 CVE-2022-4900 CVE-2023-44487 CVE-2024-25117 CVE-2024-5458

Map

Whois Information

• NetRange: 206.81.0.0 - 206.81.31.255
• CIDR: 206.81.0.0/19
• NetName: DIGITALOCEAN-206-81-0-0
• NetHandle: NET-206-81-0-0-1
• Parent: NET206 (NET-206-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS14061
• Organization: DigitalOcean, LLC (DO-13)
• RegDate: 1995-08-11
• Updated: 2020-04-03
• Comment: Routing and Peering Policy can be found at https://www.as14061.net
• Comment:
• Ref: https://rdap.arin.net/registry/ip/206.81.0.0
• OrgName: DigitalOcean, LLC
• OrgId: DO-13
• Address: 105 Edgeview Drive, Suite 425
• City: Broomfield
• StateProv: CO
• PostalCode: 80021
• Country: US
• RegDate: 2012-05-14
• Updated: 2025-04-11
• Ref: https://rdap.arin.net/registry/entity/DO-13
• OrgNOCHandle: NOC32014-ARIN
• OrgNOCName: Network Operations Center
• OrgNOCPhone: +1-646-827-4366
• OrgNOCEmail: noc@digitalocean.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgTechHandle: NOC32014-ARIN
• OrgTechName: Network Operations Center
• OrgTechPhone: +1-646-827-4366
• OrgTechEmail: noc@digitalocean.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgAbuseHandle: DIGIT19-ARIN
• OrgAbuseName: DigitalOcean Abuse
• OrgAbusePhone: +1-646-827-4366
• OrgAbuseEmail: abuse@digitalocean.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN

Links to attack logs

bruteforce-ip-list-2019-12-06 bruteforce-ip-list-2020-02-23 ****** bruteforce-ip-list-2019-12-10 bruteforce-ip-list-2020-01-07 bruteforce-ip-list-2019-12-07 bruteforce-ip-list-2020-02-11 ****** ******