80.82.215.213 Threat Intelligence and Host Information

Share on:
Nov 17, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 80.82.215.213 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 25/100

Host and Network Information

  • Tags: Scanner, scanning, smtp, ssh, tcp, Webattack

  • View other sources: Spamhaus VirusTotal

  • Country: Germany
  • Network: AS24961 myloc managed it ag
  • Noticed: 1 times
  • Protcols Attacked: dorkers
  • Countries Attacked: Germany
  • Passive DNS Results: amendes.fr.gouv.ink gouv.ink www.louvincent.80-82-215-213.plesk.page louvincent.80-82-215-213.plesk.page amande.fr.gouv.ink www.affectionate-zhukovsky.80-82-215-213.plesk.page affectionate-zhukovsky.80-82-215-213.plesk.page moncompte-sante.fr.80-82-215-213.plesk.page www.moncompte-sante.fr.80-82-215-213.plesk.page www.mondossier-sante.80-82-215-213.plesk.page mondossier-sante.80-82-215-213.plesk.page services-disneyplus.com ameli-mondossier.fr www.vibrant-brown.80-82-215-213.plesk.page vibrant-brown.80-82-215-213.plesk.page reactive.subscription.80-82-215-213.plesk.page www.reactive.subscription.80-82-215-213.plesk.page disneyplus.account.80-82-215-213.plesk.page www.disneyplus.account.80-82-215-213.plesk.page www.brave-ellis.80-82-215-213.plesk.page brave-ellis.80-82-215-213.plesk.page www.coinbase-account-security.80-82-215-213.plesk.page coinbase-account-security.80-82-215-213.plesk.page assurance.maladie.mon-dossier.80-82-215-213.plesk.page www.assurance.maladie.mon-dossier.80-82-215-213.plesk.page www.flamboyant-mendel.80-82-215-213.plesk.page flamboyant-mendel.80-82-215-213.plesk.page machiavel-bounce.80-82-215-213.plesk.page www.machiavel-bounce.80-82-215-213.plesk.page www.quizzical-moore.80-82-215-213.plesk.page quizzical-moore.80-82-215-213.plesk.page mystifying-engelbart.80-82-215-213.plesk.page www.mystifying-engelbart.80-82-215-213.plesk.page www.jovial-heyrovsky.80-82-215-213.plesk.page jovial-heyrovsky.80-82-215-213.plesk.page www.heuristic-lamport.80-82-215-213.plesk.page heuristic-lamport.80-82-215-213.plesk.page www.quirky-bouman.80-82-215-213.plesk.page quirky-bouman.80-82-215-213.plesk.page hungry-meninsky.80-82-215-213.plesk.page www.hungry-meninsky.80-82-215-213.plesk.page www.assures.ameli.fr.80-82-215-213.plesk.page assures.ameli.fr.80-82-215-213.plesk.page kind-bell.80-82-215-213.plesk.page www.kind-bell.80-82-215-213.plesk.page louvincentprevot.80-82-215-213.plesk.page www.louvincentprevot.80-82-215-213.plesk.page www.prevotjacques.com.80-82-215-213.plesk.page prevotjacques.com.80-82-215-213.plesk.page agitated-ganguly.80-82-215-213.plesk.page www.agitated-ganguly.80-82-215-213.plesk.page certificat-air.gouv.fr.80-82-215-213.plesk.page www.certificat-air.gouv.fr.80-82-215-213.plesk.page www.certificat-air.80-82-215-213.plesk.page certificat-air.80-82-215-213.plesk.page www.romantic-noether.80-82-215-213.plesk.page romantic-noether.80-82-215-213.plesk.page vps2049296.fastwebserver.de nadova.consulting ns1.intersop.net ns2.intersop.net files.cms.intersop.net www.files.cms.intersop.net gofrettin.com selcukrestaurant.com lenovoservisbursa.com trilyelimanrestaurant.com toshibaservisbursa.com risksizis.com krospaslanmaz.com dellservisbursa.com mailing.risksizis.com risksizis.com.tr cms.intersop.net bilgisayarbursa.com proadmin.eskrimbursa.com demo.intersop.net karacabeysut.com happypurch.com www.vps1818421.vs.server-hosting.expert vps1818421.vs.server-hosting.expert sunucu.intersop.net salihciftci.com.tr milyon.risksizis.com secure.intersop.com.tr turkdukkan.com demo.happypurch.com dunyadantarifler.com blops.ist test.intersop.biz bursadawebsite.com mucevheratolye.com ledtabelabursa.com hpbursa.com alanlibeton.com dosya.nazarinsaat.com.tr gurmedentarif.com spina.com.tr ersop.net casperservisbursa.com intersop.com.tr krosmetal.com bysheen.com serbametal.com thelordofthechefs.com trilyeliman.com.tr websitebursa.net spina.websitebursa.net anilsan2.websitebursa.net dezgah.websitebursa.net demo.websitebursa.net anilsan.websitebursa.net trilyeliman.com purchaseconsulting.com msibursa.com ersop.com.tr paslanmaz-bursa.com msibursaservisi.com eyvahmisafir.com damarlar.com niluferisg.com.tr niluferlab.com organikarazi.com lenovobursa.com mandiramsut.com laptopbursa.com mandiramsarkuteri.com seoilekazan.com karacabeysarkuteri.com bursatrilyeliman.com buysomething.net risksizis.biz hemenwebsiteyap.com gurmesgidacim.com karacabeygurme.com senizgara.com godofuniverse.com v2.gofrettin.com nevresan.com eskrimbursa.com pronitron.com nazarinsaat.com.tr ofisyemek.com bulletjob.com asusservisbursa.com proasbest.com bursatrilyelimanrestaurant.com acikdomain.com acerservisbursa.com canliyayin.net acerbursa.com cabukwebsite.com emreersop.com karacabey.market compaqservisbursa.com intersop.biz hpservisbursa.com hizliwebsite.net demo.intersop.com.tr inisa.net tanteknikkontrol.com intersop.net

Malware Detected on Host

Count: 1 4855b548c1eb3b0f2fb7b11bfc4ece7c9fad8eb67436c655fb287645f35ec32d

Map

Whois Information

  • inetnum: 80.82.215.0 - 80.82.215.255
  • netname: MYLOC-DE-DUS1-VSERVER-7
  • descr: webtropia vServers by http://www.webtropia.com
  • descr: myLoc managed IT AG
  • country: DE
  • admin-c: MOPS-RIPE
  • tech-c: MOPS-RIPE
  • status: ASSIGNED PA
  • mnt-by: MYLOC-MNT
  • created: 2012-12-02T14:11:48Z
  • last-modified: 2017-02-02T12:25:51Z
  • role: myLoc NOC
  • address: myLoc managed IT AG
  • address: Network Operations & Services
  • address: Am Gatherhof 44
  • address: 40472 Duesseldorf DE
  • admin-c: PHAN
  • tech-c: PHAN
  • tech-c: DDO
  • tech-c: JOH
  • tech-c: NIL
  • tech-c: STH
  • tech-c: KT3550-RIPE
  • nic-hdl: MOPS-RIPE
  • abuse-mailbox: [email protected]
  • mnt-by: MYLOC-MNT
  • created: 2013-02-11T16:38:10Z
  • last-modified: 2022-07-08T14:48:44Z
  • route: 80.82.208.0/20
  • descr: myLoc managed IT AG
  • origin: AS24961
  • mnt-by: MYLOC-MNT
  • created: 2008-01-18T11:45:59Z
  • last-modified: 2017-02-07T16:39:12Z

Links to attack logs

google-dorkers-ip-list-2020-12-14