IP address

Search at other sites:

.83883.142.209.148

Shodan(more info)

Passive DNS

IP blacklists

DataPlane TELNET login

83.142.209.148 is listed on the DataPlane TELNET login blacklist.

Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IPs trying<br>an unsolicited login via TELNET password authentication.
Type of feed: primary (feed detail page)

Last checked at: 2025-11-26 03:10:02.028000
Was present on blacklist at: 2025-11-15 03:10, 2025-11-15 07:10, 2025-11-15 11:10, 2025-11-15 15:10, 2025-11-15 19:10, 2025-11-15 23:10, 2025-11-16 03:10, 2025-11-16 07:10, 2025-11-16 11:10, 2025-11-16 15:10, 2025-11-16 19:10, 2025-11-16 23:10, 2025-11-17 03:10, 2025-11-17 07:10, 2025-11-17 11:10, 2025-11-17 15:10, 2025-11-17 19:10, 2025-11-17 23:10, 2025-11-18 03:10, 2025-11-18 07:10, 2025-11-18 11:10, 2025-11-18 15:10, 2025-11-18 19:10, 2025-11-18 23:10, 2025-11-19 03:10, 2025-11-19 07:10, 2025-11-19 11:10, 2025-11-19 15:10, 2025-11-19 19:10, 2025-11-19 23:10, 2025-11-20 03:10, 2025-11-20 07:10, 2025-11-20 11:10, 2025-11-20 15:10, 2025-11-20 19:10, 2025-11-20 23:10, 2025-11-21 03:10, 2025-11-21 07:10, 2025-11-21 11:10, 2025-11-21 15:10, 2025-11-21 19:10, 2025-11-21 23:10, 2025-11-22 03:10, 2025-11-22 07:10, 2025-11-22 11:10, 2025-11-22 15:10, 2025-11-22 19:10, 2025-11-22 23:10, 2025-11-23 03:10, 2025-11-23 07:10, 2025-11-23 11:10, 2025-11-23 15:10, 2025-11-23 19:10, 2025-11-23 23:10, 2025-11-24 03:10, 2025-11-24 07:10, 2025-11-24 11:10, 2025-11-24 15:10, 2025-11-24 19:10, 2025-11-24 23:10, 2025-11-25 03:10, 2025-11-25 07:10, 2025-11-25 11:10, 2025-11-25 15:10, 2025-11-25 19:10, 2025-11-25 23:10, 2025-11-26 03:10

AbuseIPDB

83.142.209.148 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-11-24 05:00:00.705000
Was present on blacklist at: 2025-11-15 05:00, 2025-11-16 05:00, 2025-11-17 05:00, 2025-11-18 05:00, 2025-11-19 05:00, 2025-11-20 05:00, 2025-11-21 05:00, 2025-11-22 05:00, 2025-11-23 05:00, 2025-11-24 05:00

DShield Block

83.142.209.148 was recently listed on the DShield Block blacklist, but currently it is not.

Description: Recommended Block List by DShield.org. It summarizes the top 20 attacking<br>class C (/24) subnets over the last three days.
Type of feed: secondary (feed detail page)

Last checked at: 2025-11-25 04:50:00
Was present on blacklist at: 2025-11-16 04:50

Turris greylist

83.142.209.148 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-11-25 22:15:00.164000
Was present on blacklist at: 2025-11-16 22:15, 2025-11-17 22:15, 2025-11-18 22:15, 2025-11-19 22:15, 2025-11-20 22:15, 2025-11-21 22:15, 2025-11-22 22:15, 2025-11-23 22:15, 2025-11-24 22:15, 2025-11-25 22:15

UCEPROTECT L1

83.142.209.148 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-11-26 00:45:00.650000
Was present on blacklist at: 2025-11-18 00:45, 2025-11-18 08:45, 2025-11-18 16:45, 2025-11-19 00:45, 2025-11-19 08:45, 2025-11-19 16:45, 2025-11-20 00:45, 2025-11-20 08:45, 2025-11-20 16:45, 2025-11-21 00:45, 2025-11-21 08:45, 2025-11-21 16:45, 2025-11-22 00:45, 2025-11-22 08:45, 2025-11-22 16:45, 2025-11-23 00:45, 2025-11-23 08:45, 2025-11-23 16:45, 2025-11-24 00:45, 2025-11-24 08:45, 2025-11-24 16:45, 2025-11-25 00:45, 2025-11-25 08:45, 2025-11-25 16:45, 2025-11-26 00:45

Spamhaus SBL

83.142.209.148 is listed on the Spamhaus SBL blacklist.

Description: The Spamhaus Block List ("SBL") Advisory is a database of IP addresses from which Spamhaus does not recommend the acceptance of electronic mail.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-11-21 19:49:50.400000
Was present on blacklist at: 2025-11-21 19:49

Spamhaus DROP

83.142.209.148 is listed on the Spamhaus DROP blacklist.

Description: Spamhaus DROP (Don't Route Or Peer) list. Netblocks controlled by spammers or cyber criminals. The DROP lists are a tiny subset of the SBL, designed for use by firewalls and routing equipment to filter out the malicious traffic from these netblocks.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-11-21 19:49:50.400000
Was present on blacklist at: 2025-11-21 19:49

Warden events (10077)

2025-11-25

ReconScanning (node.9c1411): 16

2025-11-24

IntrusionUserCompromise (node.cfb4f7): 448

ReconScanning (node.4dc198): 146

ReconScanning (node.368407): 147

ReconScanning (node.9c1411): 55

2025-11-23

ReconScanning (node.4dc198): 286

ReconScanning (node.9c1411): 85

ReconScanning (node.368407): 283

IntrusionUserCompromise (node.cfb4f7): 909

AnomalyTraffic (node.ffe95c): 9

2025-11-22

IntrusionUserCompromise (node.cfb4f7): 850

ReconScanning (node.4dc198): 278

ReconScanning (node.368407): 274

ReconScanning (node.9c1411): 79

AnomalyTraffic (node.ffe95c): 5

2025-11-21

IntrusionUserCompromise (node.cfb4f7): 1021

ReconScanning (node.4dc198): 285

ReconScanning (node.368407): 286

ReconScanning (node.9c1411): 84

AnomalyTraffic (node.ffe95c): 8

2025-11-20

IntrusionUserCompromise (node.cfb4f7): 906

ReconScanning (node.4dc198): 285

ReconScanning (node.368407): 288

ReconScanning (node.9c1411): 82

2025-11-19

ReconScanning (node.9c1411): 77

ReconScanning (node.4dc198): 240

ReconScanning (node.368407): 80

IntrusionUserCompromise (node.cfb4f7): 330

2025-11-18

ReconScanning (node.4dc198): 278

IntrusionUserCompromise (node.cfb4f7): 134

ReconScanning (node.9c1411): 45

ReconScanning (node.368407): 48

2025-11-17

ReconScanning (node.4dc198): 287

IntrusionUserCompromise (node.cfb4f7): 92

2025-11-16

ReconScanning (node.4dc198): 285

IntrusionUserCompromise (node.cfb4f7): 92

2025-11-15

ReconScanning (node.4dc198): 220

ReconScanning (node.368407): 199

IntrusionUserCompromise (node.cfb4f7): 497

2025-11-14

ReconScanning (node.4dc198): 48

ReconScanning (node.368407): 9

IntrusionUserCompromise (node.cfb4f7): 1

DShield reports (IP summary, reports)

2025-11-14

Number of reports: 104

Distinct targets: 45

2025-11-15

Number of reports: 2126

Distinct targets: 299

2025-11-16

Number of reports: 2126

Distinct targets: 299

2025-11-17

Number of reports: 472

Distinct targets: 155

2025-11-18

Number of reports: 472

Distinct targets: 155

2025-11-19

Number of reports: 1238

Distinct targets: 256

2025-11-20

Number of reports: 1238

Distinct targets: 256

2025-11-21

Number of reports: 4170

Distinct targets: 290

2025-11-22

Number of reports: 4396

Distinct targets: 286

2025-11-23

Number of reports: 4058

Distinct targets: 284

2025-11-24

Number of reports: 1931

Distinct targets: 273

2025-11-25

Number of reports: 1931

Distinct targets: 273

OTX pulses

[602bc528f447d628d41494f2] 2021-02-16 13:14:16.945000 | Ka's Honeypot visitors

Author name:	Kapppppa
Pulse modified:	2025-11-26 03:56:55.152000
Indicator created:	2025-11-24 11:52:21
Indicator role:	bruteforce
Indicator title:	Telnet Login attempt
Indicator expiration:	2025-12-24 11:00:00

Origin AS

AS214967 - OPTIBOUNCE

BGP Prefix

83.142.209.0/24

geo

Netherlands

🕑 Europe/Amsterdam

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

83.142.208.0 - 83.142.215.255

last_activity

2025-11-26 04:00:57.099000

last_warden_event

2025-11-25 04:24:47

rep

0.838391839890253

reserved_range

0

ts_added

2025-11-14 19:49:40.095000

ts_last_update

2025-11-26 05:00:06.003000

Warden event timeline

DShield event timeline

Presence on blacklists

OTX pulses