UNSAFE 185.220.100.243
Matched! This IP address is listed on NovaSense! Depending on the categories it may be informational, or may be being actively blocked.
Malware
Systems that are infected with or involved in spreading malware and ransomware.
Systems that are infected with or involved in spreading malware and ransomware.
Botnet
Known botnet and C&C servers, these have responded with a valid botnet C2 response.
Known botnet and C&C servers, these have responded with a valid botnet C2 response.
TOR
This is an active or recently TOR exit node, which is not inherently a threat, but may have been involved in attacks.
This is an active or recently TOR exit node, which is not inherently a threat, but may have been involved in attacks.
Abuse
Confirmed spammers, comment spam, link spam, abusive crawlers and other miscellaneous abuses.
Confirmed spammers, comment spam, link spam, abusive crawlers and other miscellaneous abuses.
Threat
Threats are hosts that have attempted to exploit, brute force, or execute a denial of service attack. These are often compromised hosts.
Threats are hosts that have attempted to exploit, brute force, or execute a denial of service attack. These are often compromised hosts.
Threat Information
Field | Value |
---|---|
SenseScore |
100
|
IP Address | 185.220.100.243 |
Hostname | tor-exit-16.zbau.f3netze.de |
Country | Germany |
ISP | F3 Netze e.V. |
Organization | F3 Netze e.V. |
Hosted By | F3 Netze e.V. |
Threat Type | malware botnets abusers threats |
Blocked Since | 2022-06-17 00:42:28 |
Last Threat | 2022-08-14 12:42:41 |
Threat Intelligence
Field | Value |
---|---|
Intel: HTTP Server | None |
Intel: Powered By | None |
Intel: SSH Server | SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u2 |
Blocked In
Field | Value |
---|---|
SENSE list (high risk) | Yes |
SENSE list | Yes |
RBL | Yes |
One day public list | Yes |
Seven day public list | Yes |
Threat History [last 14 days]
Data | Category | Action |
---|---|---|
2022-08-13 09:58:53 | Threats | Threats confirmation received. |
2022-08-13 07:15:27 | Threats | NovaSense attack detection triggered. |
2022-08-13 07:00:34 | Threats | Threats confirmation received. |
2022-08-13 05:11:24 | Threats | NovaSense attack detection triggered. |
2022-08-13 00:15:39 | Internal | Threat score opinion changed to 100. |
2022-08-12 21:59:00 | Threats | Threats confirmation received. |
2022-08-12 21:15:30 | Threats | NovaSense attack detection triggered. |
2022-08-12 18:58:52 | Threats | Threats confirmation received. |
2022-08-12 00:15:35 | Internal | Threat score opinion changed to 92. |
2022-08-11 02:15:41 | Threats | NovaSense attack detection triggered. |
2022-08-09 16:01:05 | Threats | Threats confirmation received. |
2022-08-09 13:15:26 | Threats | NovaSense attack detection triggered. |
2022-08-09 12:59:41 | Threats | Threats confirmation received. |
2022-08-04 00:16:24 | Internal | Threat score opinion changed to 100. |
2022-08-02 00:16:27 | Internal | Threat score opinion changed to 92. |
2022-08-01 00:15:52 | Internal | Threat score opinion changed to 100. |
2022-07-31 00:15:47 | Internal | Threat score opinion changed to 92. |
2022-07-29 23:10:20 | Threats | NovaSense attack detection triggered. |
2022-07-29 00:15:42 | Internal | Threat score opinion changed to 100. |
2022-07-28 18:58:20 | Threats | Threats confirmation received. |
IP Lookup
You may enter an IP address to check if it is blocked on NovaSense. If you have an IP address which is incorrectly blocked you may then request an exception.
Snapt users: you may whitelist IP addresses on your ADC to immediately ignore matches in NovaSense.
Random blocked addresses:
212.227.197.169
212.227.216.31
213.186.33.18/31
216.108.231.54
216.151.180.184
197.240.246.132
198.46.171.12
198.96.155.3
198.98.56.149
198.98.57.155