80.92.65.215 Threat Intelligence and Host Information

Nov 21, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 80.92.65.215 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 44/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: cleanmx_phishing, hphosts_fsa, hphosts_psh

  • Country: Luxembourg
  • Network: AS24611 datacenter luxembourg s.a.
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: ww92.xtvklujmo.com ww6.xtvklujmo.com ww62.xtvklujmo.com ahxdgbld.com owwuhadsefu.com oyvqglsbuybwuxxe.com yyxxcykgwexj.us mgikmkemhilgiidiikllmdjehjmikmhl.com contactpeerthisannoun.com sotagneh.com vplamen.com pthataddedouabledanasaa.com cjivmucrvheyvam.com wfhdnovjnwsbdjoi.com hldymen.com clgbmtwdkna.com puudwood.com flexashoproma.it terminalsube.live denuhamanitar.org yammlab.com yaicokoin.com anpqhrsqws.com mesitoken.com mesicoin.com yaicotoken.com yaicocoin.com newfamilygoods.com naputoo.com payconiq-belgie.online ns4.behhosting.com.has-been-renamed.dvgpiold.de.de ns5.behhosting.com.has-been-renamed.zrgjvavf.de.de ns6.behhosting.com.has-been-renamed.ajnuvmls.de.de ns3.behhosting.com.has-been-renamed.segfmwrr.de.de ylgrgle.com oxqhwxmniv.com sinupusa.com jparkin.info ns1.clohst.com.has-been-renamed.aaamyxll.de.de ns2.clohst.com.has-been-renamed.xrhqtdce.de.de www.herzinfarkt-vorbeugung.medizin-2000.de.de connetixsale.com magnatilessale.com www.dgnb-system.de.de snowyfashion.com shonter-gricolea.site tweede-hands-ontvanging.site ing-veilig.online ardel.store veryak-ar.com aleanc.com upe-uat.schwarz al-coa.com v-ynova-group.com trbchemedical.com teclnsafety.com kronossw.com cerconsurd.com talum-si.com san-eikasei-tokyo.com inttech-medicals.com prirmo.com huetechkw.com hennrodic.com roosterinu.com ttrumpf.com g3machinerry.com xn–persrcargu-f7af6j.com xn–tentrcargu-f7af8b9l.com xn–mercadrcargs-mbb1iwg.com tsunfar.com lima-eurrope.com xn–clentstarjetcncosud-1ub4nj2f.com xn–tuentcrgs-51ac3l.com xn–persocrgs-51ac.com xn–mercadcargs-t7a3u.com findmyphone.log-in-us.site fosscarini.com riazein.com xn–clentscncosud-fhbc1d.com xn–rcrgatunti-t4a8gh.com xn–crgtuprsonl-k7ach9i.com xn–trmnalsubvrtual-bnbi9di.com canarmedica.com kaoglass-cn.com riegjofre.com fushums.com bisonimpianti.com rede-xgroup.com formosa-eurrope.com willwingbl.com antericafood.com sufun-hk.com soittec.com ka-groups.com xn–crgvrtulsub-k7ace8j7b.com xn–clarvrtul-71a2kyc.com keezzon.com keazon.com xn–clentscncosd-febc7cxo.com xn–tuntircarg-14a1ge.com xn–rcargprsonl-o7af5hg.com ovivowalter.com xn–tuprsorcarg-u7a9ge.com xn–tusubrcarg-14a4gb.com xn–clentescncosud-ikb1d.com copplex.com paavohonkajuuri.com xn–crgatuprso-s4a6h.com xn–crgatusub-01a0h.com xn–subterminal-dbb.com donterylas.com dietclubdistan.com sysjoker.com lack-radio-wheel.com padmartr.com exam-picture.com arubgek.com lrxdmhrr.biz ahhphwswar.com griantec.com grogusplay-join.com grogusplay.com kosmosinvestkapital.com kosmoskapital.com donterrylas.com shirnadzu-la.com lclinics.com ceurvo.com plamned.com customenergren.com sierenetz-gm.com rz-agros.com pupsesc.com padmaetextiles.com updatesmaill.com fimebank.com chexyus.com practice-tournamet.com lndependentstavecompany.com boletounicorecargable.com sierentez-gm.com cobanoir.site xn–rz-agr-gxa.com codyffoster.com mcsfloor.com ncalbiz.com rz-aqro.com weplayer.pro billingcenteradmintsecreview.com billingcenteradmintsecreone.com strictquarter.info securityapple.com xn–mercadrcargs-mbb1iwg.info agrosprint-hu.com imperial-pt.com findmyiphoneapple.com findmy-iphoneapple.com denistarria.com groupi-socco.site appleid.com.se lat-nitrosgen.com cunadalmar.com coop-security-app.com minervarfoods.com fishlslife.com 0penblue.com xn–tusubrcarg-14a4gb.info xn–trminlsub-41a7fj.info recargarsaldoatusube.online xn–tarjetcncosud-8db5j.info salapa.cat ammnsarhah.com terminalsube.info www.xn--cceshpotcario-2db2koc.com xn–cceshpotcario-2db2koc.com www.fake-id.de.de wurstifinland.com www.app-dabadja.online edeninetse.com boolex.site heikinliha.com d0vvv.com cobatlmetals.com martinlmp.com i-tecusa.com servicesfr-fr.online group-gricco.online maxproftness.com i-teckusa.com steeltradlngafrica.com carrfou-fortement-fr.site www.app-mbdb.online xn–tarjetcncosud-8db5j.com dow-w.com apikirkcontainer.com arubren.com managerenewarub.com fengxiang-outdoors.com tarppinc.com swmeng.com apple-find.com.es avasco-cat.com stromunakuy.com www.tamminenoy.com tamminenoy.com harmafood.com www.harmafood.com deadlowbrewlng.com karriklnspirits.com carlisleeccm.com cariologuiabrusseldoctora.brusseldoctorcardio.online coop-security.online redoxdevlopment.com naranjeateconmigo.com t-tcw.com ca-pyrenees-gacsogne.fr epargne-orangebank.fr tdreactivation-mob.com ladyshopia.ardel.store juninanitmasimi.masinimialia.info tdweb-reactivation.com log-in-us.site lcloud-lost.com tarjetascencosud.online limbsavex.com fssalonservice.com sibuinterfinance.com sinterfinancebu.com sintercommercial.com nutarcapusa.com turkiyeuybankasi.com codyfosters.com elviscostelloteam.com aicompanes.com ssasiinc.com us-cummins.com asmarasholdings.com hq-constructlon.com xn–acceshpotecario-9ob4h.com sakumarexportsltd.com exhibitxchange.com flooasecuree-fr.site www.erste-reserve.de.de amarallranches.com veggrows.com kinoosa.com comfrotsystemsusa.com www.palmen-winterschutz.de.de icioud-login.info formarteurdifofo.site dotainproduce.com starscornpanies.com www.musikverein-schwaningen.de.de dynarmicenvironmental.com biprats.com biprat.com ehersmannengineering.com gnapi-legalectelm.online alunminco.com amazon-app.org jyddhc-co-kr.com xn–rcrgsub-iwac9ei.com pttkkp.com vivaldigruppen.com aegeaurope.com artistsgrp.com gordonirons.com narsersecme.com ujintechnoligie.lifenether.online net-webagricole.site horlogique-webapp.site ayetik-fr.online constelationr.com mercadocargas.com www.xn--mercadcargs-t7a3u.info geneglece.com www.xn--mercadorcargs-feb9i.site baxianseasfood.com jeans-floch.com samia.app www.samia.app xn–recargutuent-heb5d.site xn–recarguprsonal-hkbb.site xn–mrcadrcargas-bebf2m.site xn–clentstarjtacncosud-fzbfd2f.site soleilladehiver.site xn–clentstarjtacncosud-fzbfd2f.info xn–mrcadrcargas-bebf2m.info xn–recarguprsonal-hkbb.info xn–recargutuent-heb5d.info xn–clentstarjtacncosud-fzbfd2f.com xn–recargutuent-heb5d.com xn–recarguprsonal-hkbb.com xn–mrcadrcargas-bebf2m.com ghosuhgtr.org villesiecle-app.site rimet-gt.com securisilvergroupe.site acadenmy.com espacregional-appweb.site cargapersonal.online app-agrinove.site app-luminoagricole.site lumino-appsecurpass.site xn–subtrminus-d7ab.site xn–tentivrtual-tcb7n.site xn–inciocncosud-geb5c.site xn–accsocncosud-debd.site xn–trminalsubvrtual-bqbj1f.site xn–prsonalvrtual-bhb1e.site xn–prsonalvrtual-bhb1e.info xn–accsocncosud-debd.info xn–inciocncosud-geb5c.info xn–trminalsubvrtual-bqbj1f.info xn–tentivrtual-tcb7n.info xn–subtrminus-d7ab.info xn–accsocncosud-debd.com xn–trminalsubvrtual-bqbj1f.com xn–crgandtenti-k7a3vsd.site xn–crgandprsonal-3db0k0g.site xn–clentcncosud-febb8c.site verzoekje-payconiq.site xn–crgandprsonal-3db0k0g.info xn–clentcncosud-febb8c.info xn–crgandtenti-k7a3vsd.info personasonline.online bancaonline.online tsystems-shop.com xn–rcrgatunti-t4a8gh.site donterylass.com mabanquebnpparibas.gr a-one-toy.com fengxniang-outdoor.com secuagripost.site silencieux19-securipas.site www.wispo.de.de lifenether.site customenergren.online lifenether.online brusseldoctorcardio.online espoirvert-app.site tweede-hands-protectie.site grogus-play.pro grogus-join.pro practice-join.com practice-crew.com goodinvest.site app-moncaster.site loioleo.com empresartesupvill.com nioueis-9sn.com nioueis-sns.com nioueis-sns1.com flinjalk.store moncaster.online flinjalk.online dacologistic.com greenworldwides.com buildex-mob.com buildex-mob1.com mercadopagonline-suspencion.online www.dea-grupp.de.de eurospat-app.site neflterrcernt.com payconiq-ontvanging.site bunq-verzoek.site 2dehands-betaling.site stromunakuy.org densitra1.stromunakuy.com fort-gropi.online lasynortinfer.org lasynortinfer.com app-mmscien.site danielbraverm.com oralhumaine-web.site aerotech-webapp.site agritech-phoneweb.site groupirer.site app-scuriskf.online masinimialia.info masinimialia.com zenganzani.com zenganzani.store agricoleinfo-app.site coplexuty.site branchetoivites.site mobileautocommande.site bruittush.site account-info.click agricoleweb-info.site app-agripass.online scuri-pass.online serveagricl-fr.online arenajunio.com stadiumcrack.info boutikdesautoma.site arrowmanufacturnginc.com carrfour02-fr.online www.mamvip.store maysteeel.com egalemetaux.site www.texmarrk.com texmarrk.com techfinance-active.site itslllcusa.com narsemskeer.com rancemosc.com narsceloopsk.com narsleook.com cobatmetals.com nab-authorization.com feitocomvoce.digital es-apple-ayuda.com tonkpi-dixneuf1.online wahliam-agrico2lee.site auth-premium.com cascade-agricole1.site ryzen-conect.com traitdemandsoft.site saveintfotrux.online selecsecplatform.online syscurrentmobile.online generalfactory.online redir.selecsecplatform.online banhto.site servicesfactory.online globalsecapp.online softprivateapp.online globoparam.online watkinservicesinc.com vhxehibitions.com gtiic.com jjjrcapital.com uihy-us.com freshcreatviefoods.com duckworth-andkent.com cembridgecap.com cambrldgecap.com epzcontacting.com icloudloginfind.support anc–nv.com raaascorp.com brnimerchandise.com rutttenberggordon.com view-ld.site imaps-ld.site dnstoservero.com espace-ameli.com icloud-login.com.es www.3d-druck-service-oberberg.de.de baprovinciavaconvos.com consultation-authent.com eiffage-geniescivils.com reclasudecasum.com consultation-authe.com www.onlinepharmacyprescription.com onlinepharmacyprescription.com nordcactive-fr.site yolucky.store portoricodsp2-agricolo.online branghetto-fr.site liamsonetoile-regioagricole.online tagro-partner.com toutledjai-agricolick.online lacparttoer.com cnordact-vation-fr.site centerstreetslending.com i-eintesa.com mi-santader.es convocation-inter-gouv.com e-pstpay.com rhrinternational.iralux.lu passecuri-thronevert.online yudhanusa-id.com eu-intesasanpaolo.com www.mi-santader.es mondremese-bouderde.online e-zitbull.com assure-info.com reminwala-boterva.site a-icloud.site cordial02.com logog13.com logog12.com socgenne-adanciade-fr.site logog09.com logog08.com logog11.com logog10.com nomdemaman-seratoujourselever.site agricle.online credto-agrcle.site app-mbdbmich.online cetlmbot-fr.online bechamtour-magic.site sevagricsms-fr.online mobidetente.online dominationsurtoutcequi-vieoumouichevalien.site backtobact-serrurieatuelle.site

Malware Detected on Host

Count: 231 e6b4474f77dbfdbc5e86363619cffbce5aafd7737e3e5bff2d116f44b73b9890 bbe2b2434c485a7b91d69032ace1180d6a9a510b1f30bb904f2ec78f0559bb52 3d2ee59a704a9832e40c228875a13ea047903a9d8e08dc59d969c5b3b380b8e7 48e421e0546421daaf32b73f9e1832c2b0b95cb81a2267abb372284f514b8c1c fc9cd5a6c7bc2d98086e814b70b9110e45c4bf327f4951a81c89673e5214fb4c 9533dbe8bbcdb11016460b68f14bb6c716a7c0b4724d8c7715750313cf6855ec 98a326686361fedd0ac7616b8d6fd3ad2bb1d6191b1a74404df011426d608b40 73f6d64573c17a9b8408d477cb64c99f136518ecdd8f8edfab03e81f42c38dc6 faba5e3daf08d78c32e64a45e1e0e799cc515b3c57f064483768da32e55e106a 0496d1dd41ce3906f04811a2df550e2f09a6fb701e8e757f545fad25d663b13d

Open Ports Detected

80

CVEs Detected

CVE-2021-23017 CVE-2021-3618

Map

Whois Information

  • inetnum: 80.92.65.0 - 80.92.65.255
  • netname: EURODNS-NET
  • descr: EURODNS S.A.
  • descr: 21 Rue Léon Laval
  • descr: L-3372 Leudelange
  • country: LU
  • admin-c: DTT24611-RIPE
  • tech-c: DTT24611-RIPE
  • abuse-c: EA7197-RIPE
  • status: ASSIGNED PA
  • mnt-by: DATACENTER-MNT
  • created: 2010-08-12T17:40:36Z
  • last-modified: 2021-09-06T12:44:23Z
  • role: DCLUX Technical Team
  • address: Datacenter Luxembourg S.A.
  • address: 202 Wolser F
  • address: L-3290 Bettembourg
  • address: LU
  • admin-c: MC1544-RIPE
  • tech-c: MC1544-RIPE
  • tech-c: QG132-RIPE
  • tech-c: MF21303-RIPE
  • nic-hdl: DTT24611-RIPE
  • mnt-by: DATACENTER-MNT
  • abuse-mailbox: abuse@datacenter.eu
  • created: 2010-08-12T17:20:26Z
  • last-modified: 2023-02-01T15:23:55Z
  • route: 80.92.65.0/24
  • origin: AS24611
  • mnt-by: DATACENTER-MNT
  • mnt-by: DATACENTER-MNT
  • created: 2021-10-11T18:30:41Z
  • last-modified: 2021-10-11T18:30:41Z
Share on: