UNSAFE 104.248.225.227



Threat Information

Field Value
SenseScore
79
IP Address 104.248.225.227
Hostname 104.248.225.227
Country United States
ISP Digital Ocean
Organization Digital Ocean
Hosted By Digital Ocean
Threat Type threats
Blocked Since 2022-05-17 00:25:26
Last Threat 2022-08-15 20:25:25

Threat Intelligence

Field Value
Intel: HTTP Server Apache/2.4.37 (Unix) OpenSSL/1.0.2q PHP/7.3.0 mod_perl/2.0.8-dev Perl/v5.16.3
Intel: Powered By PHP/7.3.0
Intel: SSH Server SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u2

Blocked In

Field Value
SENSE list (high risk) Yes
SENSE list Yes
RBL Yes
One day public list Yes
Seven day public list Yes

Threat History [last 14 days]

Data Category Action
2022-07-15 00:17:04 Internal Threat score opinion changed to 79.
2022-07-01 00:17:18 Internal Threat score opinion changed to 100.
2022-06-22 00:17:04 Internal Threat score opinion changed to 79.
2022-05-31 00:17:31 Internal Threat score opinion changed to 100.
2022-05-25 00:18:11 Internal Threat score opinion changed to 79.
2022-05-25 00:17:49 Internal Threat score opinion changed to 79.
2022-05-21 00:18:37 Internal Threat score opinion changed to 70.
2022-05-20 00:19:15 Internal Threat score opinion changed to 66.
2022-05-20 00:18:22 Internal Threat score opinion changed to 100.
2022-05-18 00:19:03 Internal Threat score opinion changed to 96.
2022-05-17 00:25:48 Internal Threat score opinion changed to 62.
2022-05-17 00:25:48 Probe Discovered listed SSH daemon: SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u2
2022-05-17 00:25:48 Probe Discovered listed HTTP scripting language: PHP/7.3.0
2022-05-17 00:25:48 Probe Discovered listed HTTP server: Apache/2.4.37 (Unix) OpenSSL/1.0.2q PHP/7.3.0 mod_perl/2.0.8-dev Perl/v5.16.3
2022-05-17 00:25:26 Threats Threats confirmation received.
2022-05-13 10:15:20 Probe Discovered listed HTTP server: Apache/2.4.37 (Unix) OpenSSL/1.0.2q PHP/7.3.0 mod_perl/2.0.8-dev Perl/v5.16.3
2022-05-13 10:15:20 Internal Threat score opinion changed to 70.
2022-05-13 10:15:20 Probe Discovered listed SSH daemon: SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u2
2022-05-13 10:15:20 Probe Discovered listed HTTP scripting language: PHP/7.3.0
2022-05-13 10:15:16 Botnets Botnets confirmation received.

IP Lookup

You may enter an IP address to check if it is blocked on NovaSense. If you have an IP address which is incorrectly blocked you may then request an exception.

Snapt users: you may whitelist IP addresses on your ADC to immediately ignore matches in NovaSense.



Random blocked addresses: 212.192.246.214     212.193.30.144     213.61.215.54     213.186.33.18/31     216.151.180.121     216.151.180.150     216.151.180.152/31     216.151.180.183     194.38.20.161     194.67.216.37