Active Threat • LOW

194.180.48.253

Country of Origin🇩🇪 Germany

First Detection2/28/2026

Last Activity4/13/2026

ISPMEVSPACE sp. z o.o.

🎯

Total Attacks

🔌

Ports

📡

Attack Types

🦠

Malware

Geolocation

Country: 🇩🇪 Germany
City: Berngau
ASN: AS201814
ISP: MEVSPACE sp. z o.o.

Attack Types

tcp_trap

Attacked Ports

443

Associated Malware

No associated malware

ThreatFox Intelabuse.ch

⚠️KNOWN C2 SERVER

Malware Families

win.remcos

Threat Types

botnet_cc

Confidence: 100%

Shodan InternetDB ExposureShodan

InternetDB data, not real-time

Ports

808000

Vulnerabilities

CVE-2025-23048CVE-2025-49630CVE-2011-1176CVE-2013-4365CVE-2013-0941CVE-2024-24795CVE-2024-38474CVE-2025-59775CVE-2025-49812CVE-2025-53020CVE-2024-39573CVE-2012-3526CVE-2024-47252CVE-2013-2765CVE-2024-38477CVE-2024-38475CVE-2024-36387CVE-2025-66200CVE-2025-58098CVE-2007-4723

CPEs

cpe:/o:canonical:ubuntu_linuxcpe:/a:apache:http_server:2.4.58

Risk Assessment

/100

LowMediumHighCritical