UNSAFE 79.136.1.46
Matched! This IP address is listed on NovaSense! Depending on the categories it may be informational, or may be being actively blocked.
TOR
This is an active or recently TOR exit node, which is not inherently a threat, but may have been involved in attacks.
This is an active or recently TOR exit node, which is not inherently a threat, but may have been involved in attacks.
Threat
Threats are hosts that have attempted to exploit, brute force, or execute a denial of service attack. These are often compromised hosts.
Threats are hosts that have attempted to exploit, brute force, or execute a denial of service attack. These are often compromised hosts.
Malware
Systems that are infected with or involved in spreading malware and ransomware.
Systems that are infected with or involved in spreading malware and ransomware.
Botnet
Known botnet and C&C servers, these have responded with a valid botnet C2 response.
Known botnet and C&C servers, these have responded with a valid botnet C2 response.
Abuse
Confirmed spammers, comment spam, link spam, abusive crawlers and other miscellaneous abuses.
Confirmed spammers, comment spam, link spam, abusive crawlers and other miscellaneous abuses.
Threat Information
Field | Value |
---|---|
SenseScore |
100
|
IP Address | 79.136.1.46 |
Hostname | h-79-136-1-46.NA.cust.bahnhof.se |
Country | Sweden |
ISP | Bahnhof AB |
Organization | Bahnhof AB |
Hosted By | Bahnhof AB |
Threat Type | threats malware botnets abusers |
Blocked Since | 2022-02-25 07:31:50 |
Last Threat | 2022-06-29 03:02:22 |
Threat Intelligence
Field | Value |
---|---|
Intel: HTTP Server | |
Intel: Powered By | |
Intel: SSH Server | SSH-2.0-OpenSSH_9.0p1 Debian-1 |
Blocked In
Field | Value |
---|---|
SENSE list (high risk) | Yes |
SENSE list | Yes |
RBL | Yes |
One day public list | Yes |
Seven day public list | Yes |
Threat History [last 14 days]
Data | Category | Action |
---|---|---|
2022-06-29 01:04:37 | Internal | Threat score opinion changed to 83. |
2022-06-29 01:04:08 | Probe | Discovered listed SSH daemon: SSH-2.0-OpenSSH_9.0p1 Debian-1+b1 |
2022-06-29 00:59:11 | Threats | Threats confirmation received. |
2022-06-22 00:15:22 | Internal | Threat score opinion changed to 100. |
2022-06-21 00:18:19 | Internal | Threat score opinion changed to 100. |
2022-06-21 00:15:19 | Internal | Threat score opinion changed to 79. |
2022-06-16 00:18:35 | Internal | Threat score opinion changed to 96. |
2022-06-15 00:19:33 | Internal | Threat score opinion changed to 100. |
2022-06-15 00:19:32 | Internal | Threat score opinion changed to 92. |
2022-06-13 00:19:25 | Internal | Threat score opinion changed to 83. |
2022-06-13 00:15:50 | Internal | Threat score opinion changed to 100. |
2022-06-13 00:15:34 | Internal | Threat score opinion changed to 100. |
2022-06-12 09:29:26 | Internal | Threat score opinion changed to 96. |
2022-06-12 09:29:25 | Probe | Discovered listed SSH daemon: SSH-2.0-OpenSSH_9.0p1 Debian-1 |
2022-06-12 09:29:21 | Botnets | Botnets confirmation received. |
2022-06-12 08:42:49 | Internal | Threat score opinion changed to 70. |
2022-06-12 08:42:44 | Probe | Discovered listed SSH daemon: SSH-2.0-OpenSSH_9.0p1 Debian-1 |
2022-06-12 08:42:30 | Malware | Malware confirmation received. |
2022-06-01 00:15:22 | Internal | Threat score opinion changed to 79. |
2022-05-30 00:15:33 | Internal | Threat score opinion changed to 53. |
IP Lookup
You may enter an IP address to check if it is blocked on NovaSense. If you have an IP address which is incorrectly blocked you may then request an exception.
Snapt users: you may whitelist IP addresses on your ADC to immediately ignore matches in NovaSense.