is probably used by an
Open Proxy
used by
90 %
Report Abuse
5malware reported
5reputation reported
3abuse reported
2Email SpamBrute-Force
1Email Spam
3attacks reported
1Fraud OrdersPhishingEmail Spam
1Fraud OrdersPhishingEmail SpamSpoofing
1PhishingWeb SpamEmail SpamHackingSpoofing
2anonymizers reported
2Open Proxy
2organizations reported
from 4 distinct reporters
and 3 distinct sources : Bambenek Consulting, hpHosts, AbuseIPDB was first signaled at 2018-09-10 00:36 and last record was at 2019-07-21 21:17.

NetRange : First & Last IP -
Network CIDR

Cybercrime IP Feeds

Date UTC Category Sub Categories Source List Source Logs
2019-07-18 05:23 abuse Email SpamBrute-Force AbuseIPDB proto=tcp . spt=45587 . dpt=443 . src=xx.xx.4.90 . dst= . (listed on Bambenek Consulting Jul 17) (499)
2019-06-12 05:07 attacks Fraud OrdersPhishingEmail Spam AbuseIPDB (protection.outlook.com: domain of goodhealthyorganization.com does not designate ISP 1&1 Internet Inc. as permitted sender) recei
2019-03-06 12:16 abuse Email Spam AbuseIPDB EMAIL SPAM
2019-03-02 06:36 anonymizers Open Proxy AbuseIPDB Fuck my sucking dick u cheat
2019-03-02 04:45 anonymizers Open Proxy AbuseIPDB Copy cat
2018-11-09 08:22 abuse Email SpamBrute-Force AbuseIPDB PROTO=TCP SPT=51393 DPT=443 SRC=xx.xx.4.90 DST= (294)
2018-10-26 22:36 attacks Fraud OrdersPhishingEmail SpamSpoofing AbuseIPDB BETRÜGER FRAUD PHISHING FAKE ! send apple phishing mails Return-path: <[email protected]> Delivery-date: Sat, 27 Oct 2018 09:04:26 +0200 id
2018-09-10 00:36 attacks PhishingWeb SpamEmail SpamHacking AbuseIPDB  
2019-03-29 18:18 malware Malware bambenek_banjori Bambenek Consulting  
2019-03-29 18:18 malware Malware bambenek_c2 Bambenek Consulting  
2019-03-29 18:23 organizations coinbl_hosts  
2019-03-29 18:35 organizations hphosts_ats  
2019-03-29 18:35 malware Malware hphosts_emd hpHosts  
2019-03-29 18:35 reputation hphosts_fsa  
2019-03-29 18:35 reputation hphosts_mmt  
2019-03-29 18:35 reputation hphosts_psh  
2019-03-29 18:36 reputation hphosts_wrz  
2019-03-29 18:42 malware Malware ransomware_feed  
2019-05-28 23:34 reputation hphosts_pha  
2019-07-21 21:17 malware Malware bambenek_suppobox Bambenek Consulting  
only last 50 and first 10 AbuseIPDB logs are shown

Threats Categories :

IPs used to spam forum, boards, blogs or smtp servers, automated web scripts or scrappers (bad bots)
Onion Router IP addresses. TOR network IPs, TOR exit points, socks or ssl proxy.
bruteforce ssh/ftp/system account, IPs that have been detected by fail2ban, ports scan, vulnerabilities scan, DDoS.
Addresses that have been identified distributing malware, form-grabber and stealer, Viruses, Worms, Trojans, Ransomware, Adware, Spyware


inetnum: -
netname: SEDO-NET
descr: Sedo Domain Parking
descr: Im Mediapark 6b
descr: 50670 Koeln
country: DE
org: ORG-SA551-RIPE
sponsoring-org: ORG-IG16-RIPE
admin-c: JD10473-RIPE
tech-c: IXCW-RIPE
mnt-by: IX1-MNT
created: 2007-10-25T09:36:24Z
last-modified: 2019-01-23T13:43:10Z
source: RIPE

organisation: ORG-SA551-RIPE
org-name: SEDO GmbH
remarks: SEDO-ORG
org-type: OTHER
address: Sedo GmbH
address: Im Mediapark 6
address: 50670 Koeln
abuse-c: IX26-RIPE
mnt-ref: IX1-MNT
mnt-by: IX1-MNT
created: 2007-10-08T16:10:11Z
last-modified: 2019-06-17T05:46:43Z
source: RIPE # Filtered

role: InterNetX Network Crew
address: InterNetX GmbH
address: Johanna-Dachs-Str. 55
address: D-93055 Regensburg
nic-hdl: IXCW-RIPE
phone: +49 941 59559 0
fax-no: +49 941 59579 051
abuse-mailbox: abuse@internetx.com
admin-c: MS4404-RIPE
admin-c: CS5299-RIPE
tech-c: MS4404-RIPE
tech-c: CS5299-RIPE
mnt-by: IX1-MNT
created: 2006-12-06T15:39:30Z
last-modified: 2018-02-14T09:53:42Z
source: RIPE # Filtered

person: Jaenecke Daniel
address: SEDO GmbH
address: Im Mediapark 6
address: 50670 Koeln
address: Deutschland
phone: +49 221 340 30-0
fax-no: +49 221 340 30 5280
nic-hdl: JD10473-RIPE
mnt-by: IX1-MNT
created: 2019-01-23T13:05:37Z
last-modified: 2019-01-23T13:05:37Z
source: RIPE # Filtered

descr: SEDO GmbH
origin: AS47846
mnt-by: IX1-MNT
created: 2019-01-29T12:43:05Z
last-modified: 2019-01-29T12:43:05Z
source: RIPE
most specific ip range is highlighted
Updated : 2020-01-06