85.248.227.163 is a Tor IP used by Hackers

IP informations Cybercrime IP Feeds Raw whois

85.248.227.163

is a

Tor IP

used by

Hackers

100 %

Slovakia

Report Abuse

145attacks reported

22Web App Attack

22PhishingWeb Spam

15Brute-Force

13uncategorized

12Brute-ForceSSH

8HackingBrute-Force

8Hacking

6Port Scan

6SSH

5HackingWeb App Attack

...

64abuse reported

12Web Spam

11Bad Web BotWeb App Attack

9Web SpamBrute-ForceWeb App Attack

8Bad Web BotWeb SpamBlog Spam

7Web SpamForum Spam

5Email SpamHacking

4Bad Web Bot

2Email Spam

2uncategorized

1Bad Web BotWeb App AttackWeb SpamBrute-Force

...

18anonymizers reported

9Open ProxyWeb SpamBad Web BotWeb App Attack

4Tor IP

2Open Proxy

1Open ProxyWeb SpamBrute-ForceBad Web BotWeb App Attack

1Open ProxyWeb Spam

1Open ProxyWeb SpamPort ScanHackingSQL InjectionBrute-ForceBad Web BotWeb App AttackSSH

2reputation reported

2uncategorized

1malware reported

1Malware

1organizations reported

1uncategorized

from 71 distinct reporters

and 15 distinct sources : BadIPs.com, blocklist.net.ua, torstatus.blutmagie.de, BotScout.com, CleanTalk, dan.me.uk, Emerging Threats, FireHOL, iBlocklist.com, MaxMind.com, sblam.com, StopForumSpam.com, VoIPBL.org, GreenSnow.co, AbuseIPDB

85.248.227.163 was first signaled at 2017-12-02 13:50 and last record was at 2019-08-06 12:04.

85.248.227.163

Organization

Platon Technologies, s.r.o.

all IP owned by Platon Technologies, s.r.o.

Localisation

Slovakia

Presov, Snina

NetRange : First & Last IP

85.248.227.0 - 85.248.227.159

Network CIDR

85.248.227.0/24

ASN

5578

list IP by ASN 5578

Cybercrime IP Feeds

Date UTC	Category	Sub Categories	Source List	Source	Logs
2019-07-04 04:43	attacks	Brute-Force		AbuseIPDB	FTP bruteforce attacks - reported to the police, please do so as well.
2019-07-03 16:44	attacks	Brute-Force		AbuseIPDB	3389BruteforceFW23
2019-07-02 23:14	attacks	Web App Attack		AbuseIPDB	access from blocked IP
2019-07-02 03:08	attacks	Web App Attack		AbuseIPDB	Automatic report - Web App Attack
2019-07-01 19:29	attacks	PhishingWeb Spam		AbuseIPDB	(From [email protected]) Hot photo galleries blogs and pictures http://asiangirlsinbed.seximasage.xblognetwork.com/?kassandra free amateur stre
2019-06-30 03:00	attacks	Web App Attack		AbuseIPDB	Automatic report - Web App Attack
2019-06-29 11:48	attacks	PhishingWeb Spam		AbuseIPDB	Malicious Traffic/Form Submission
2019-06-27 05:21	attacks	PhishingWeb Spam		AbuseIPDB	Malicious Traffic/Form Submission
2019-06-26 02:13	attacks	Web App Attack		AbuseIPDB	Automatic report - Web App Attack
2019-06-24 15:02	attacks	Web App Attack		AbuseIPDB	/posting.php?mode=post&f=3
2019-06-21 19:52	attacks	Web App Attack		AbuseIPDB	GET /pluggable.php GET /wp_rmder.php GET /tmp.sys.php GET /wp-json.php
2019-06-19 23:11	attacks	Web App Attack		AbuseIPDB	Automatic report - Web App Attack
2019-06-17 14:46	attacks	Web App Attack		AbuseIPDB	Automatic report - Web App Attack
2019-06-17 03:57	attacks	PhishingWeb SpamEmail SpamBlog Spam		AbuseIPDB
2019-06-16 23:35	anonymizers	Open ProxyWeb SpamBrute-ForceBad Web Bot		AbuseIPDB	[WP scan/spam/exploit] [BADREQ] [ref-spam:4 diff spam-referers] [multiweb: req 4 domains(hosts/ip)] [bad UserAgent] [random UserAgent: 2]: StopForumSp
2019-06-15 06:49	attacks	Web App Attack		AbuseIPDB	Automatic report - Web App Attack
2019-06-15 01:15	attacks	Web App Attack		AbuseIPDB	85.248.227.163 - - - [15/Jun/2019:10:15:53 +0000] "HEAD / HTTP/1.1" 404 0 "http://hundejo.com/" "Mozilla/5.0 (Windows NT 6.1;
2019-06-15 00:39	attacks	Port ScanHackingExploited Host		AbuseIPDB	Trying ports that it shouldn't be.
2019-06-14 06:31	attacks	Brute-Force		AbuseIPDB	3389BruteforceFW21
2019-06-13 09:45	attacks	Web App Attack		AbuseIPDB	Automatic report - Web App Attack
2019-06-11 20:13	attacks	Web App Attack		AbuseIPDB	Automatic report - Web App Attack
2019-06-11 20:13	attacks	Web App Attack		AbuseIPDB	Automatic report - Web App Attack
2019-06-11 09:11	abuse	Bad Web BotWeb App Attack		AbuseIPDB	Unauthorized access detected from banned ip
2019-06-09 21:14	attacks	PhishingWeb Spam		AbuseIPDB	(From [email protected]) Free Porn Pictures and Best HD Sex Photos http://howtosexwithgay.hotblognetwork.com/?kennedy porn watching for couples
2019-06-09 13:53	abuse	Web SpamBrute-ForceWeb App Attack		AbuseIPDB	Brute force attack stopped by firewall
2019-06-09 11:31	attacks	HackingBrute-Force		AbuseIPDB	VNC brute force attack detected by fail2ban
2019-06-07 17:56	attacks	HackingBrute-Force		AbuseIPDB	VNC brute force attack detected by fail2ban
2019-06-07 04:50	abuse	Email SpamHacking		AbuseIPDB	IP: 85.248.227.163 ASN: AS5578 BENESTRA s.r.o. Port: Message Submission 587 Found in one or more Blacklists Date: 7/06/2019 1:50:07 PM UTC
2019-06-07 01:12	attacks	Web App AttackBrute-Force		AbuseIPDB	Automatic report - Web App Attack
2019-06-07 01:12	attacks	Web App AttackBrute-Force		AbuseIPDB	Automatic report - Web App Attack
2019-06-06 12:55	attacks	HackingBrute-Force		AbuseIPDB	VNC brute force attack detected by fail2ban
2019-06-05 19:45	abuse	Email SpamHacking		AbuseIPDB	IP: 85.248.227.163 ASN: AS5578 BENESTRA s.r.o. Port: Message Submission 587 Found in one or more Blacklists Date: 6/06/2019 4:45:06 AM UTC
2019-06-05 09:56	attacks	Brute-Force		AbuseIPDB	Event: Failed Login Website: http://www.touroldsanjuan.com IP Address: 85.248.227.163 Reverse IP: ori.enn.lu Date/Time: June 5, 2019 8:57 am Message
2019-06-05 06:38	attacks	HackingBrute-Force		AbuseIPDB	VNC brute force attack detected by fail2ban
2019-06-04 06:26	attacks	HackingBrute-Force		AbuseIPDB	VNC brute force attack detected by fail2ban
2019-06-02 17:39	attacks	HackingBrute-Force		AbuseIPDB	VNC brute force attack detected by fail2ban
2019-06-01 17:01	attacks	HackingBrute-Force		AbuseIPDB	VNC brute force attack detected by fail2ban
2019-05-30 20:17	attacks	HackingBrute-Force		AbuseIPDB	VNC brute force attack detected by fail2ban
2019-05-26 22:30	attacks	Brute-Force		AbuseIPDB	3389BruteforceFW21
2019-05-26 08:15	attacks	Port Scan		AbuseIPDB
2019-05-16 23:46	abuse	Bad Web BotWeb App Attack		AbuseIPDB	Unauthorized access detected from banned ip
2019-05-15 02:54	attacks	Web App Attack		AbuseIPDB	/viewforum.php?f=12
2019-05-13 21:02	attacks	Brute-Force		AbuseIPDB	Blocked WP login
2019-05-13 00:49	attacks	PhishingWeb Spam		AbuseIPDB	(From [email protected]) Browse over 500 000 of the best porn galleries, daily updated collections http://asianpornvideos.instakink.com/?angeliqu
2019-05-09 16:14	attacks	DDoS AttackBrute-Force		AbuseIPDB	Too Many Connections Or General Abuse
2019-05-07 03:44	anonymizers	Open ProxyWeb SpamBad Web BotWeb App Attack		AbuseIPDB	[ref-spam:3 diff spam-referers] [multiweb: req 4 domains(hosts/ip)] [bad UserAgent] StopForumSpam:"listed [5146 times]" TorNodeList:"li
2019-05-05 17:27	attacks	Brute-Force		AbuseIPDB	WordPress login Brute force / Web App Attack on client site.
2019-05-04 02:11	anonymizers	Open ProxyWeb SpamBad Web BotWeb App Attack		AbuseIPDB	[ref-spam] [bad UserAgent] StopForumSpam:"listed [5170 times]" TorNodeList:"listed"
2019-04-30 13:52	abuse	Bad Web BotWeb App AttackWeb SpamBrute-Force		AbuseIPDB	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive
2019-04-29 16:10	attacks	PhishingWeb Spam		AbuseIPDB	Malicious Traffic/Form Submission
2017-12-02 13:50	attacks	Web App Attack		AbuseIPDB	GET /root/.ssh/identity
2017-12-02 14:16	abuse	Web Spam		AbuseIPDB
2017-12-02 14:53	attacks	Brute-ForceSSH		AbuseIPDB	[Aegis] @ 2017-11-08 12:38:30 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attac
2018-11-19 23:05	attacks	Brute-Force		AbuseIPDB	WordPress Login Attempt
2018-11-23 01:16	attacks	PhishingWeb Spam		AbuseIPDB	Malicious Traffic/Form Submission
2018-11-24 15:58	attacks	Hacking		AbuseIPDB	Blocked user enumeration attempt
2018-11-25 10:05	attacks	Brute-ForceSSH		AbuseIPDB	Nov 25 20:56:46 ns382633 sshd\[9176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.248.227.163 user=
2018-11-26 00:43	attacks	Brute-Force		AbuseIPDB
2018-11-26 01:14	attacks	HackingBrute-ForceWeb App Attack		AbuseIPDB	85.248.227.163:64309 - - [25/Nov/2018:16:05:35 +0100] "GET /user/register HTTP/1.1" 404 300 85.248.227.163:32817 - - [25/Nov/2018:16:05:35 +
2018-11-27 16:18	attacks	Brute-ForceSSH		AbuseIPDB	Nov 28 03:18:06 ns3367391 sshd\[11188\]: Failed password for root from 85.248.227.163 port 62572 ssh2 Nov 28 03:18:06 ns3367391 sshd\[11188\]: Failed
2019-03-29 18:19	attacks		bi_any_1_7d	BadIPs.com
2019-03-29 18:19	attacks		bi_any_2_30d	BadIPs.com
2019-03-29 18:19	attacks		bi_any_2_7d	BadIPs.com
2019-03-29 18:20	attacks	Brute-ForceMailserver Attack	bi_mail_2_30d	BadIPs.com
2019-03-29 18:20	attacks	SSH	bi_sshd_2_30d	BadIPs.com
2019-03-29 18:20	attacks	SSH	bi_ssh_1_7d	BadIPs.com
2019-03-29 18:20	attacks	SSH	bi_ssh_2_30d	BadIPs.com
2019-03-29 18:21	abuse	Email Spam	blocklist_net_ua	blocklist.net.ua
2019-03-29 18:21	anonymizers	Tor IP	bm_tor	torstatus.blutmagie.de
2019-03-29 18:21	abuse	Bad Web Bot	botscout_1d	BotScout.com
2019-03-29 18:21	abuse	Bad Web Bot	botscout_30d	BotScout.com
2019-03-29 18:22	abuse	Bad Web Bot	botscout_7d	BotScout.com
2019-03-29 18:22	abuse	Bad Web BotWeb SpamBlog Spam	cleantalk	CleanTalk
2019-03-29 18:22	abuse	Bad Web BotWeb SpamBlog Spam	cleantalk_1d	CleanTalk
2019-03-29 18:22	abuse	Bad Web BotWeb SpamBlog Spam	cleantalk_30d	CleanTalk
2019-03-29 18:22	abuse	Bad Web BotWeb SpamBlog Spam	cleantalk_7d	CleanTalk
2019-03-29 18:23	abuse	Bad Web BotWeb SpamBlog Spam	cleantalk_updated	CleanTalk
2019-03-29 18:23	abuse	Bad Web BotWeb SpamBlog Spam	cleantalk_updated_1d	CleanTalk
2019-03-29 18:23	abuse	Bad Web BotWeb SpamBlog Spam	cleantalk_updated_30d	CleanTalk
2019-03-29 18:23	abuse	Bad Web BotWeb SpamBlog Spam	cleantalk_updated_7d	CleanTalk
2019-03-29 18:23	anonymizers	Tor IP	dm_tor	dan.me.uk
2019-03-29 18:24	anonymizers	Tor IP	et_tor	Emerging Threats
2019-03-29 18:24	abuse		firehol_abusers_1d	FireHOL
2019-03-29 18:25	abuse		firehol_abusers_30d	FireHOL
2019-03-29 18:27	attacks		firehol_level3	FireHOL
2019-03-29 18:27	attacks		firehol_level4	FireHOL
2019-03-29 18:30	anonymizers	Open Proxy	firehol_proxies	FireHOL
2019-03-29 18:34	malware	Malware	firehol_webclient	FireHOL
2019-03-29 18:34	attacks		firehol_webserver	FireHOL
2019-03-29 18:36	anonymizers	Tor IP	iblocklist_onion_router	iBlocklist.com
2019-03-29 18:41	anonymizers	Open Proxy	maxmind_proxy_fraud	MaxMind.com
2019-03-29 18:42	abuse	Web SpamBad Web BotBlog SpamForum Spam	sblam	sblam.com
2019-03-29 18:44	abuse	Web SpamForum Spam	stopforumspam	StopForumSpam.com
2019-03-29 18:46	abuse	Web SpamForum Spam	stopforumspam_180d	StopForumSpam.com
2019-03-29 18:47	abuse	Web SpamForum Spam	stopforumspam_1d	StopForumSpam.com
2019-03-29 18:48	abuse	Web SpamForum Spam	stopforumspam_30d	StopForumSpam.com
2019-03-29 18:49	abuse	Web SpamForum Spam	stopforumspam_365d	StopForumSpam.com
2019-03-29 18:51	abuse	Web SpamForum Spam	stopforumspam_7d	StopForumSpam.com
2019-03-29 18:51	abuse	Web SpamForum Spam	stopforumspam_90d	StopForumSpam.com
2019-03-29 18:53	attacks	Fraud VoIP	voipbl	VoIPBL.org
2019-05-28 23:18	reputation		bds_atif
2019-05-28 23:26	organizations		coinbl_hosts
2019-05-28 23:30	attacks		firehol_level2	FireHOL
2019-05-28 23:34	attacks		greensnow	GreenSnow.co
2019-05-30 09:30	attacks	Brute-ForceMailserver Attack	bi_mail_1_7d	BadIPs.com
2019-05-30 09:30	attacks	Email Spam	bi_spam_1_7d	BadIPs.com
2019-06-05 20:34	attacks		bi_any_0_1d	BadIPs.com
2019-06-05 20:34	attacks		bi_any_2_1d	BadIPs.com
2019-06-05 20:34	attacks	Web App AttackCMS Attack	bi_cms_0_1d	BadIPs.com
2019-06-05 20:34	attacks	Web App AttackCMS Attack	bi_cms_1_7d	BadIPs.com
2019-06-05 20:34	attacks	Web App AttackCMS Attack	bi_cms_2_30d	BadIPs.com
2019-06-05 20:34	attacks		bi_http_0_1d	BadIPs.com
2019-06-05 20:34	attacks		bi_http_1_7d	BadIPs.com
2019-06-05 20:34	attacks		bi_http_2_30d	BadIPs.com
2019-06-09 17:20	attacks	Brute-ForceMailserver Attack	bi_mail_0_1d	BadIPs.com
2019-06-09 17:20	attacks	Email Spam	bi_spam_0_1d	BadIPs.com
2019-06-11 15:36	reputation		turris_greylist
2019-07-11 08:54	abuse	Bad Web Bot	botscout	BotScout.com
2019-07-17 02:00	attacks	SSH	bi_sshd_0_1d	BadIPs.com
2019-07-17 02:00	attacks	SSH	bi_sshd_1_7d	BadIPs.com
2019-07-17 02:00	attacks	SSH	bi_ssh_0_1d	BadIPs.com
2019-08-06 12:04	attacks	Web App AttackApache Attack	bi_apache-noscript_0_1d	BadIPs.com
2019-08-06 12:04	attacks	Web App AttackApache Attack	bi_apache_0_1d	BadIPs.com

only last 50 and first 10 AbuseIPDB logs are shown

Threats Categories :

abuse

IPs used to spam forum, boards, blogs or smtp servers, automated web scripts or scrappers (bad bots)

anonymizer

Onion Router IP addresses. TOR network IPs, TOR exit points, socks or ssl proxy.

attacks

bruteforce ssh/ftp/system account, IPs that have been detected by fail2ban, ports scan, vulnerabilities scan, DDoS.

malware

Addresses that have been identified distributing malware, form-grabber and stealer, Viruses, Worms, Trojans, Ransomware, Adware, Spyware

Whois

inetnum: 85.248.227.0 - 85.248.227.159
netname: SK-PLATON-BA
org: ORG-PTS25-RIPE
descr: Platon Technologies s.r.o
descr: Hlavna 3, Sala, 927 01
country: SK
admin-c: OJ397-RIPE
tech-c: GSNH1-RIPE
status: ASSIGNED PA
mnt-by: GTSSK-MNT
created: 2016-01-26T15:20:00Z
last-modified: 2018-04-17T13:57:13Z
source: RIPE

organisation: ORG-PTS25-RIPE
org-name: Platon Technologies, s.r.o.
org-type: OTHER
address: Trencianska 704/53
address: Bratislava
address: 82109
address: Slovak Republic
phone: +421222111321
remarks: abuse@platon.sk
admin-c: GSNH1-RIPE
abuse-c: PAH55-RIPE
mnt-ref: GTSSK-MNT
mnt-by: GTSSK-MNT
created: 2018-04-17T13:39:09Z
last-modified: 2018-08-15T10:00:03Z
source: RIPE # Filtered

role: BENESTRA RIPE ADMINISTRATOR
address: BENESTRA, s.r.o.
address: Aupark Tower
address: Einsteinova 24
address: Bratislava
address: 851 01
address: Slovak Republic
phone: +421 2 322 322 32 # Hotline
phone: +421 2 32487 111
fax-no: +421 2 32487 222
abuse-mailbox: abuse@benestra.sk
admin-c: GS18607-RIPE
tech-c: MP22686-RIPE
tech-c: MS41142-RIPE
nic-hdl: GSNH1-RIPE
mnt-by: GTSSK-MNT
created: 2002-03-14T12:37:21Z
last-modified: 2019-01-08T07:44:30Z
source: RIPE # Filtered

person: Ondrej Jombik
address: Platon Technologies, s.r.o.
address: Trencianska 704/53, 82109, Bratislava, Slovakia
phone: +421222111321
nic-hdl: OJ397-RIPE
mnt-by: GTSSK-MNT
created: 2008-05-28T12:32:01Z
last-modified: 2018-05-10T05:25:02Z
source: RIPE # Filtered

route: 85.248.0.0/16
descr: GTS Slovakia NET
origin: AS5578
mnt-by: GTSSK-MNT
created: 2005-01-21T12:39:03Z
last-modified: 2005-01-21T12:39:03Z
source: RIPE

most specific ip range is highlighted

Updated : 2019-01-31