82.117.252.143 Threat Intelligence and Host Information

Aug 29, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 82.117.252.143 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 44/100

Host and Network Information

  • Mitre ATT&CK IDs: T1021.001 - Remote Desktop Protocol, T1021.002 - SMB/Windows Admin Shares, T1047 - Windows Management Instrumentation, T1055 - Process Injection, T1057 - Process Discovery, T1059.001 - PowerShell, T1059.005 - Visual Basic, T1059.007 - JavaScript, T1083 - File and Directory Discovery, T1087.001 - Local Account, T1087.002 - Domain Account, T1105 - Ingress Tool Transfer, T1124 - System Time Discovery, T1218.005 - Mshta, T1218.010 - Regsvr32, T1218.011 - Rundll32, T1482 - Domain Trust Discovery, T1486 - Data Encrypted for Impact, T1566.001 - Spearphishing Attachment, T1567.002 - Exfiltration to Cloud Storage, T1590.005 - IP Addresses

  • Tags: adfind, bazarloader, cobalt strike, conti

  • View other sources: Spamhaus VirusTotal

  • Country: United States
  • Network:
  • Noticed: 2 times
  • Protocols Attacked: Anonymous Proxy

Malware Detected on Host

Count: 1 d2ec6b7a4c7d661c0aba50ffdf9d2bb1b50392d1a5ce30dde75dee9c36341a91

Open Ports Detected

10000 10001 10008 10009 10012 10013 10014 10017 10024 10026 10036 10039 10045 10049 10066 10080 10081 10090 10134 10205 10225 10243 10250 10255 10256 10324 10380 10390 10393 10399 10443 10444 10480 10554 10810 10909 10911 10935 10943 11000 11065 11112 11182 11210 11288 11300 11371 11434 11481 11681 11701 12000 12016 12103 12114 12116 12117 12120 12124 12125 12136 12139 12140 12148 12156 12159 12163 12195 12210 12211 12214 12216 12360 12365 12422 12424 12425 12426 12430 12432 12434 12437 12438 12439 12466 12468 12472 12506 12530 12539 12540 12544 12547 12567 12568 12569 12574 12587 12601 13333 13443 13579 14147 15001 15006 15084 15555 15672 16017 16030 16059 16092 16097 16100 16103 16400 16403 16404 16800 17000

Map

Whois Information

  • inetnum: 82.117.252.0 - 82.117.253.255
  • netname: GF-MIA-NET
  • descr: ***********************************************************
  • descr: * As ISP we provide hosting, virtual and dedicated servers.
  • descr: *
  • descr: * Those services are self managed by our customers
  • descr: * therefore, we are not using this IP space ourselves
  • descr: * and it could be assigned to various end customers.
  • descr: *
  • descr: * In case of issues related with SPAM, Fraud, Phishing
  • descr: * DDoS, port scans or others, feel free to contact us
  • descr: * with relevant info. Abuse email: abuse@greenfloid.com
  • descr: ***********************************************************
  • country: US
  • geoloc: 25.7761261 -80.1931018
  • org: ORG-GFL1-RIPE
  • admin-c: GFES1-RIPE
  • tech-c: GFES1-RIPE
  • status: ASSIGNED PA
  • mnt-by: GRFL-MNT
  • created: 2020-12-22T13:00:50Z
  • last-modified: 2021-03-20T19:02:29Z
  • organisation: ORG-GFL1-RIPE
  • org-name: Green Floid LLC
  • org-type: OTHER
  • address: East Jefferson Street, 2707
  • address: Orlando, FL, 32803, USA
  • phone: +1 561 2500001
  • abuse-c: AGFL-RIPE
  • mnt-ref: GRFL-MNT
  • mnt-by: GRFL-MNT
  • created: 2018-09-10T08:03:03Z
  • last-modified: 2019-06-20T09:32:06Z
  • person: GREEN FLOID EU Support Team
  • address: 2875 NE 191 ST 500-234
  • address: Aventura, FL, 33180, USA
  • phone: +1 561 2500001
  • phone: +359 2 4925555
  • nic-hdl: GFES1-RIPE
  • mnt-by: GRFL-MNT
  • created: 2018-08-16T11:07:23Z
  • last-modified: 2025-01-21T17:13:32Z
  • route: 82.117.252.0/23
  • origin: AS204957
  • mnt-by: GRFL-MNT
  • created: 2020-12-22T13:02:17Z
  • last-modified: 2020-12-22T13:02:17Z

Links to attack logs

anonymous-proxy-ip-list-2024-04-20 anonymous-proxy-ip-list-2024-06-15 anonymous-proxy-ip-list-2024-03-06 anonymous-proxy-ip-list-2024-10-01 anonymous-proxy-ip-list-2024-12-30 anonymous-proxy-ip-list-2025-01-27 anonymous-proxy-ip-list-2024-07-25 anonymous-proxy-ip-list-2024-08-22 anonymous-proxy-ip-list-2024-11-21 anonymous-proxy-ip-list-2024-04-27 anonymous-proxy-ip-list-2024-07-29 anonymous-proxy-ip-list-2023-08-09 anonymous-proxy-ip-list-2024-12-14 anonymous-proxy-ip-list-2024-05-29 anonymous-proxy-ip-list-2024-07-07 anonymous-proxy-ip-list-2024-07-28 anonymous-proxy-ip-list-2024-08-02 anonymous-proxy-ip-list-2024-03-14 anonymous-proxy-ip-list-2023-07-28 anonymous-proxy-ip-list-2024-02-22 anonymous-proxy-ip-list-2024-03-20 anonymous-proxy-ip-list-2024-05-14 anonymous-proxy-ip-list-2024-05-28 anonymous-proxy-ip-list-2024-08-03 anonymous-proxy-ip-list-2023-07-18 anonymous-proxy-ip-list-2023-07-19 anonymous-proxy-ip-list-2023-08-03 anonymous-proxy-ip-list-2024-03-12 anonymous-proxy-ip-list-2025-01-03 anonymous-proxy-ip-list-2025-01-06 anonymous-proxy-ip-list-2024-05-20 anonymous-proxy-ip-list-2024-06-17 anonymous-proxy-ip-list-2024-02-23 anonymous-proxy-ip-list-2024-04-04 ****** anonymous-proxy-ip-list-2024-03-11 anonymous-proxy-ip-list-2024-03-13 anonymous-proxy-ip-list-2024-03-21 anonymous-proxy-ip-list-2025-02-25 anonymous-proxy-ip-list-2024-07-21 anonymous-proxy-ip-list-2024-08-31 anonymous-proxy-ip-list-2024-05-02 anonymous-proxy-ip-list-2024-05-06 anonymous-proxy-ip-list-2024-04-08 anonymous-proxy-ip-list-2023-09-24 anonymous-proxy-ip-list-2024-03-23 anonymous-proxy-ip-list-2024-07-20 anonymous-proxy-ip-list-2024-07-22 anonymous-proxy-ip-list-2024-06-19 anonymous-proxy-ip-list-2024-06-26 anonymous-proxy-ip-list-2024-03-27 anonymous-proxy-ip-list-2023-06-26 anonymous-proxy-ip-list-2023-07-27 anonymous-proxy-ip-list-2023-08-12 anonymous-proxy-ip-list-2024-12-16 anonymous-proxy-ip-list-2024-12-18 anonymous-proxy-ip-list-2024-08-01 anonymous-proxy-ip-list-2024-09-23 anonymous-proxy-ip-list-2023-08-11 anonymous-proxy-ip-list-2024-03-16 anonymous-proxy-ip-list-2023-08-08 anonymous-proxy-ip-list-2024-04-18 anonymous-proxy-ip-list-2024-06-04 anonymous-proxy-ip-list-2024-08-13 anonymous-proxy-ip-list-2024-08-28 anonymous-proxy-ip-list-2024-11-09 anonymous-proxy-ip-list-2024-12-04 anonymous-proxy-ip-list-2024-05-30 anonymous-proxy-ip-list-2024-07-18 anonymous-proxy-ip-list-2024-08-21 anonymous-proxy-ip-list-2024-04-21 anonymous-proxy-ip-list-2024-09-20 anonymous-proxy-ip-list-2024-06-05 anonymous-proxy-ip-list-2024-07-12 anonymous-proxy-ip-list-2024-09-07 anonymous-proxy-ip-list-2024-08-05 anonymous-proxy-ip-list-2023-08-02 anonymous-proxy-ip-list-2024-02-18 anonymous-proxy-ip-list-2024-02-19 anonymous-proxy-ip-list-2024-03-26 anonymous-proxy-ip-list-2024-11-02 anonymous-proxy-ip-list-2025-01-05 anonymous-proxy-ip-list-2025-02-06 anonymous-proxy-ip-list-2025-02-07 anonymous-proxy-ip-list-2024-08-25 anonymous-proxy-ip-list-2025-03-08 anonymous-proxy-ip-list-2024-05-09 anonymous-proxy-ip-list-2023-07-16 anonymous-proxy-ip-list-2023-08-04 anonymous-proxy-ip-list-2024-03-18 anonymous-proxy-ip-list-2024-04-12 anonymous-proxy-ip-list-2024-05-25 anonymous-proxy-ip-list-2024-06-06 anonymous-proxy-ip-list-2024-08-08 anonymous-proxy-ip-list-2024-08-12 anonymous-proxy-ip-list-2024-07-03 anonymous-proxy-ip-list-2024-09-14 anonymous-proxy-ip-list-2023-07-31 anonymous-proxy-ip-list-2024-03-15 anonymous-proxy-ip-list-2024-04-03 anonymous-proxy-ip-list-2024-04-13 anonymous-proxy-ip-list-2025-01-24 anonymous-proxy-ip-list-2024-08-29 anonymous-proxy-ip-list-2024-06-29 anonymous-proxy-ip-list-2024-06-13 anonymous-proxy-ip-list-2023-07-08 anonymous-proxy-ip-list-2023-07-09 anonymous-proxy-ip-list-2024-10-06 anonymous-proxy-ip-list-2024-12-29 anonymous-proxy-ip-list-2025-02-08 anonymous-proxy-ip-list-2024-08-04 anonymous-proxy-ip-list-2024-11-30 anonymous-proxy-ip-list-2024-04-26 anonymous-proxy-ip-list-2024-05-04 anonymous-proxy-ip-list-2024-06-24 anonymous-proxy-ip-list-2024-09-12 anonymous-proxy-ip-list-2024-06-20 anonymous-proxy-ip-list-2024-03-02 anonymous-proxy-ip-list-2024-03-31 anonymous-proxy-ip-list-2025-01-12 anonymous-proxy-ip-list-2024-04-23 anonymous-proxy-ip-list-2024-09-13 ****** anonymous-proxy-ip-list-2024-06-14 anonymous-proxy-ip-list-2023-07-30 anonymous-proxy-ip-list-2024-11-01 anonymous-proxy-ip-list-2024-12-05 anonymous-proxy-ip-list-2024-03-22 anonymous-proxy-ip-list-2024-10-07 anonymous-proxy-ip-list-2025-02-09 anonymous-proxy-ip-list-2025-02-11 anonymous-proxy-ip-list-2024-08-11 anonymous-proxy-ip-list-2024-11-28 anonymous-proxy-ip-list-2024-06-23 anonymous-proxy-ip-list-2024-01-11 anonymous-proxy-ip-list-2024-03-17 anonymous-proxy-ip-list-2024-03-19 anonymous-proxy-ip-list-2024-03-25 anonymous-proxy-ip-list-2024-03-30 anonymous-proxy-ip-list-2024-12-03 anonymous-proxy-ip-list-2024-07-01 anonymous-proxy-ip-list-2024-07-19 anonymous-proxy-ip-list-2024-07-26 anonymous-proxy-ip-list-2024-08-23 anonymous-proxy-ip-list-2024-06-21 anonymous-proxy-ip-list-2024-06-28 anonymous-proxy-ip-list-2024-07-31 ****** anonymous-proxy-ip-list-2024-03-07 anonymous-proxy-ip-list-2024-04-11 anonymous-proxy-ip-list-2024-10-05 anonymous-proxy-ip-list-2025-02-05 anonymous-proxy-ip-list-2025-03-05 anonymous-proxy-ip-list-2024-09-08

Share on: