IP address: 194.147.140.94

Host rating:

2.0

out of 42 votes

Last update: 2021-02-21

Host details

Unknown
Switzerland
Unknown
Unknown
See comments

Reported breaches

  • Port scan
Report breach

Whois record

The publicly-available Whois record found at whois.ripe.net server.

% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '194.147.140.0 - 194.147.140.255'

% Abuse contact for '194.147.140.0 - 194.147.140.255' is '[email protected]'

inetnum:        194.147.140.0 - 194.147.140.255
abuse-c:        ACRO38251-RIPE
netname:        IR-PSM-20191122
country:        NL
org:            ORG-LMIP1-RIPE
admin-c:        AS44897-RIPE
tech-c:         AS44897-RIPE
status:         ALLOCATED PA
mnt-by:         mnt-ir-psm-1
mnt-by:         RIPE-NCC-HM-MNT
created:        2019-11-22T14:29:08Z
last-modified:  2021-01-12T19:25:53Z
source:         RIPE

% Information related to '194.147.140.0/24AS202425'

route:          194.147.140.0/24
origin:         AS202425
mnt-by:         DeDServer
created:        2021-01-10T09:42:46Z
last-modified:  2021-01-10T09:42:46Z
source:         RIPE

% This query was served by the RIPE Database Query Service version 1.99 (BLAARKOP)


User comments

42 security incident(s) reported by users

BHD Honeypot
Port scan
2021-02-21

In the last 24h, the attacker (194.147.140.94) attempted to scan 134 ports.
The following ports have been scanned: 8943/tcp, 8930/tcp, 8896/tcp, 8917/tcp, 8906/tcp, 8935/tcp, 8960/tcp, 8910/tcp (manyone-http), 8932/tcp, 8915/tcp, 8912/tcp (Windows Client Backup), 8902/tcp, 8907/tcp, 8931/tcp, 8944/tcp, 8900/tcp (JMB-CDS 1), 8891/tcp (Desktop Data TCP 3: NESS application), 8884/tcp, 8922/tcp, 8883/tcp (Secure MQTT), 8905/tcp, 8919/tcp, 8957/tcp, 8940/tcp, 8894/tcp (Desktop Data TCP 6: COAL application), 8934/tcp, 8911/tcp (manyone-xml), 8913/tcp (Dragonfly System Service), 8904/tcp, 8925/tcp, 8898/tcp, 8887/tcp, 8901/tcp (JMB-CDS 2), 8899/tcp (ospf-lite), 8958/tcp, 8954/tcp (Cumulus Admin Port), 8916/tcp, 8892/tcp (Desktop Data TCP 4: FARM product), 8889/tcp (Desktop Data TCP 1), 8926/tcp, 8928/tcp, 8893/tcp (Desktop Data TCP 5: NewsEDGE/Web application), 8920/tcp, 8914/tcp, 8909/tcp, 8888/tcp (NewsEDGE server TCP (TCP 1)), 8890/tcp (Desktop Data TCP 2), 8923/tcp, 8924/tcp, 8927/tcp, 8895/tcp, 8947/tcp, 8918/tcp, 8908/tcp, 8903/tcp, 8882/tcp.
      
BHD Honeypot
Port scan
2021-02-21

Port scan from IP: 194.147.140.94 detected by psad.
BHD Honeypot
Port scan
2021-02-20

In the last 24h, the attacker (194.147.140.94) attempted to scan 133 ports.
The following ports have been scanned: 8896/tcp, 8854/tcp, 8855/tcp, 8873/tcp (dxspider linking protocol), 8853/tcp, 8862/tcp, 8871/tcp, 8851/tcp, 8885/tcp, 8842/tcp, 8852/tcp, 8846/tcp, 8897/tcp, 8860/tcp, 8878/tcp, 8866/tcp, 8844/tcp, 8849/tcp, 8869/tcp, 8891/tcp (Desktop Data TCP 3: NESS application), 8884/tcp, 8856/tcp, 8876/tcp, 8883/tcp (Secure MQTT), 8886/tcp, 8861/tcp, 8858/tcp, 8894/tcp (Desktop Data TCP 6: COAL application), 8872/tcp, 8867/tcp, 8848/tcp, 8874/tcp, 8898/tcp, 8887/tcp, 8899/tcp (ospf-lite), 8847/tcp, 8881/tcp, 8892/tcp (Desktop Data TCP 4: FARM product), 8889/tcp (Desktop Data TCP 1), 8893/tcp (Desktop Data TCP 5: NewsEDGE/Web application), 8865/tcp, 8843/tcp, 8875/tcp, 8870/tcp, 8877/tcp, 8888/tcp (NewsEDGE server TCP (TCP 1)), 8864/tcp, 8890/tcp (Desktop Data TCP 2), 8850/tcp, 8868/tcp, 8841/tcp, 8863/tcp, 8879/tcp, 8895/tcp, 8880/tcp (CDDBP), 8882/tcp.
      
BHD Honeypot
Port scan
2021-02-19

In the last 24h, the attacker (194.147.140.94) attempted to scan 151 ports.
The following ports have been scanned: 8835/tcp, 8857/tcp, 8854/tcp, 8855/tcp, 8853/tcp, 8825/tcp, 8815/tcp, 8801/tcp, 8813/tcp, 8802/tcp, 8842/tcp, 8852/tcp, 8845/tcp, 8818/tcp, 8808/tcp, 8820/tcp, 8860/tcp, 8831/tcp, 8810/tcp, 8844/tcp, 8839/tcp, 8821/tcp, 8856/tcp, 8805/tcp, 8830/tcp, 8834/tcp, 8826/tcp, 8800/tcp (Sun Web Server Admin Service), 8837/tcp, 8829/tcp, 8817/tcp, 8838/tcp, 8858/tcp, 8824/tcp, 8823/tcp, 8848/tcp, 8840/tcp, 8819/tcp, 8847/tcp, 8828/tcp, 8812/tcp, 8859/tcp, 8803/tcp, 8816/tcp, 8822/tcp, 8807/tcp, 8811/tcp, 8827/tcp, 8806/tcp, 8841/tcp, 8814/tcp, 8836/tcp, 8832/tcp, 8833/tcp.
      
BHD Honeypot
Port scan
2021-02-18

In the last 24h, the attacker (194.147.140.94) attempted to scan 78 ports.
The following ports have been scanned: 8785/tcp, 8813/tcp, 8809/tcp, 8794/tcp, 8808/tcp, 8782/tcp, 8810/tcp, 8781/tcp, 8796/tcp, 8795/tcp, 8797/tcp, 8805/tcp, 8804/tcp (truecm), 8800/tcp (Sun Web Server Admin Service), 8817/tcp, 8787/tcp (Message Server), 8791/tcp, 8793/tcp, 8789/tcp, 8799/tcp, 8790/tcp, 8798/tcp, 8792/tcp, 8812/tcp, 8803/tcp, 8816/tcp, 8811/tcp, 8784/tcp, 8788/tcp, 8806/tcp, 8814/tcp, 8786/tcp (Message Client), 8783/tcp.
      
BHD Honeypot
Port scan
2021-02-17

In the last 24h, the attacker (194.147.140.94) attempted to scan 138 ports.
The following ports have been scanned: 8740/tcp, 8750/tcp, 8780/tcp, 8752/tcp, 8718/tcp, 8739/tcp, 8747/tcp, 8760/tcp, 8738/tcp, 8707/tcp, 8703/tcp, 8701/tcp, 8706/tcp, 8744/tcp, 8733/tcp (iBus), 8742/tcp, 8757/tcp, 8732/tcp, 8737/tcp, 8735/tcp, 8731/tcp, 8754/tcp, 8726/tcp, 8765/tcp (Ultraseek HTTP), 8730/tcp, 8745/tcp, 8758/tcp, 8724/tcp, 8762/tcp, 8717/tcp, 8769/tcp, 8741/tcp, 8708/tcp, 8728/tcp, 8721/tcp, 8755/tcp, 8714/tcp, 8772/tcp, 8734/tcp, 8719/tcp, 8756/tcp, 8776/tcp, 8773/tcp, 8778/tcp, 8746/tcp, 8722/tcp, 8749/tcp, 8723/tcp, 8748/tcp, 8727/tcp, 8751/tcp, 8736/tcp, 8729/tcp, 8725/tcp, 8753/tcp, 8743/tcp, 8704/tcp, 8759/tcp, 8766/tcp.
      
BHD Honeypot
Port scan
2021-02-16

In the last 24h, the attacker (194.147.140.94) attempted to scan 176 ports.
The following ports have been scanned: 8681/tcp, 8705/tcp, 8718/tcp, 8664/tcp, 8707/tcp, 8703/tcp, 8693/tcp, 8701/tcp, 8668/tcp, 8690/tcp, 8699/tcp (VNYX Primary Port), 8673/tcp, 8706/tcp, 8680/tcp, 8687/tcp, 8669/tcp, 8685/tcp, 8688/tcp, 8694/tcp, 8716/tcp, 8717/tcp, 8712/tcp, 8708/tcp, 8714/tcp, 8679/tcp, 8665/tcp, 8719/tcp, 8692/tcp, 8715/tcp, 8675/tcp, 8691/tcp, 8686/tcp (Sun App Server - JMX/RMI), 8682/tcp, 8671/tcp, 8720/tcp, 8698/tcp, 8696/tcp, 8702/tcp, 8700/tcp, 8710/tcp, 8674/tcp, 8713/tcp, 8695/tcp, 8683/tcp, 8676/tcp, 8711/tcp, 8689/tcp, 8704/tcp, 8684/tcp, 8697/tcp, 8672/tcp, 8670/tcp, 8677/tcp, 8709/tcp.
      
BHD Honeypot
Port scan
2021-02-16

Port scan from IP: 194.147.140.94 detected by psad.
BHD Honeypot
Port scan
2021-02-15

In the last 24h, the attacker (194.147.140.94) attempted to scan 131 ports.
The following ports have been scanned: 8646/tcp, 8634/tcp, 8660/tcp, 8623/tcp, 8664/tcp, 8668/tcp, 8636/tcp, 8673/tcp, 8662/tcp, 8653/tcp, 8680/tcp, 8643/tcp, 8657/tcp, 8644/tcp, 8663/tcp, 8669/tcp, 8640/tcp, 8650/tcp, 8625/tcp, 8628/tcp, 8645/tcp, 8627/tcp, 8665/tcp, 8635/tcp, 8658/tcp, 8647/tcp, 8639/tcp, 8675/tcp, 8667/tcp, 8621/tcp, 8678/tcp, 8652/tcp, 8624/tcp, 8656/tcp, 8648/tcp, 8626/tcp, 8638/tcp, 8651/tcp, 8666/tcp, 8655/tcp, 8672/tcp, 8642/tcp, 8670/tcp, 8649/tcp, 8633/tcp, 8622/tcp, 8661/tcp, 8654/tcp, 8641/tcp.
      
BHD Honeypot
Port scan
2021-02-14

In the last 24h, the attacker (194.147.140.94) attempted to scan 73 ports.
The following ports have been scanned: 8634/tcp, 8636/tcp, 8617/tcp, 8616/tcp, 8604/tcp, 8608/tcp, 8606/tcp, 8607/tcp, 8619/tcp, 8625/tcp, 8637/tcp, 8600/tcp (Surveillance Data), 8628/tcp, 8627/tcp, 8635/tcp, 8611/tcp (Canon BJNP Port 1), 8615/tcp, 8614/tcp (Canon BJNP Port 4), 8631/tcp, 8603/tcp, 8626/tcp, 8630/tcp, 8632/tcp, 8605/tcp, 8602/tcp, 8620/tcp, 8633/tcp, 8610/tcp (Canon MFNP Service), 8613/tcp (Canon BJNP Port 3), 8618/tcp, 8601/tcp, 8609/tcp, 8622/tcp, 8612/tcp (Canon BJNP Port 2).
      
BHD Honeypot
Port scan
2021-02-13

In the last 24h, the attacker (194.147.140.94) attempted to scan 130 ports.
The following ports have been scanned: 8526/tcp, 8552/tcp, 8566/tcp, 8538/tcp, 8560/tcp, 8595/tcp, 8558/tcp, 8528/tcp, 8576/tcp, 8563/tcp, 8522/tcp, 8575/tcp, 8564/tcp, 8546/tcp, 8549/tcp, 8559/tcp, 8562/tcp, 8567/tcp (Object Access Protocol Administration), 8597/tcp, 8555/tcp (SYMAX D-FENCE), 8553/tcp, 8586/tcp, 8557/tcp, 8598/tcp, 8556/tcp, 8532/tcp, 8596/tcp, 8529/tcp, 8572/tcp, 8587/tcp, 8568/tcp, 8537/tcp, 8550/tcp, 8542/tcp, 8581/tcp, 8585/tcp, 8565/tcp, 8561/tcp, 8579/tcp, 8583/tcp, 8578/tcp, 8544/tcp, 8533/tcp, 8571/tcp, 8591/tcp, 8573/tcp, 8541/tcp, 8554/tcp (RTSP Alternate (see port 554)), 8548/tcp, 8547/tcp, 8570/tcp, 8569/tcp, 8574/tcp, 8589/tcp, 8551/tcp, 8535/tcp, 8531/tcp, 8577/tcp, 8543/tcp, 8545/tcp.
      
BHD Honeypot
Port scan
2021-02-12

In the last 24h, the attacker (194.147.140.94) attempted to scan 128 ports.
The following ports have been scanned: 8526/tcp, 8538/tcp, 8502/tcp, 8503/tcp, 8534/tcp, 8528/tcp, 8530/tcp, 8515/tcp, 8522/tcp, 8519/tcp, 8539/tcp, 8487/tcp, 8517/tcp, 8536/tcp, 8499/tcp, 8525/tcp, 8513/tcp, 8509/tcp, 8482/tcp, 8521/tcp, 8483/tcp, 8495/tcp, 8512/tcp, 8492/tcp, 8510/tcp, 8532/tcp, 8516/tcp, 8529/tcp, 8481/tcp, 8537/tcp, 8496/tcp, 8494/tcp, 8514/tcp, 8511/tcp, 8533/tcp, 8523/tcp, 8520/tcp, 8508/tcp, 8504/tcp, 8493/tcp, 8506/tcp, 8489/tcp, 8486/tcp, 8484/tcp, 8540/tcp, 8505/tcp, 8527/tcp, 8535/tcp, 8524/tcp, 8518/tcp, 8531/tcp, 8498/tcp, 8491/tcp, 8507/tcp, 8501/tcp, 8490/tcp.
      
BHD Honeypot
Port scan
2021-02-11

In the last 24h, the attacker (194.147.140.94) attempted to scan 115 ports.
The following ports have been scanned: 8473/tcp (Virtual Point to Point), 8461/tcp, 8500/tcp (Flight Message Transfer Protocol), 8487/tcp, 8462/tcp, 8470/tcp (Cisco Address Validation Protocol), 8499/tcp, 8482/tcp, 8474/tcp (AquaMinds NoteShare), 8483/tcp, 8465/tcp, 8478/tcp, 8495/tcp, 8464/tcp, 8492/tcp, 8479/tcp, 8480/tcp, 8481/tcp, 8496/tcp, 8476/tcp, 8472/tcp (Overlay Transport Virtualization (OTV)), 8494/tcp, 8466/tcp, 8468/tcp, 8493/tcp, 8477/tcp, 8489/tcp, 8486/tcp, 8484/tcp, 8488/tcp, 8497/tcp, 8469/tcp, 8498/tcp, 8485/tcp, 8491/tcp, 8471/tcp (PIM over Reliable Transport), 8467/tcp, 8490/tcp, 8475/tcp.
      
BHD Honeypot
Port scan
2021-02-11

Port scan from IP: 194.147.140.94 detected by psad.
BHD Honeypot
Port scan
2021-02-10

In the last 24h, the attacker (194.147.140.94) attempted to scan 134 ports.
The following ports have been scanned: 8408/tcp, 8402/tcp (abarsd), 8447/tcp, 8427/tcp, 8433/tcp, 8412/tcp, 8414/tcp, 8410/tcp, 8400/tcp (cvd), 8458/tcp, 8419/tcp, 8431/tcp, 8457/tcp, 8448/tcp, 8439/tcp, 8451/tcp, 8411/tcp, 8404/tcp (SuperVault Cloud), 8428/tcp, 8452/tcp, 8443/tcp (PCsync HTTPS), 8423/tcp, 8432/tcp, 8429/tcp, 8409/tcp, 8435/tcp, 8442/tcp (CyBro A-bus Protocol), 8403/tcp (admind), 8424/tcp, 8437/tcp, 8438/tcp, 8436/tcp, 8418/tcp, 8456/tcp, 8440/tcp, 8415/tcp, 8460/tcp, 8445/tcp, 8453/tcp, 8417/tcp (eSpeech RTP Protocol), 8413/tcp, 8441/tcp, 8430/tcp, 8405/tcp (SuperVault Backup), 8421/tcp, 8454/tcp, 8406/tcp, 8425/tcp, 8426/tcp, 8420/tcp, 8416/tcp (eSpeech Session Protocol), 8401/tcp (sabarsd), 8422/tcp.
      
BHD Honeypot
Port scan
2021-02-09

In the last 24h, the attacker (194.147.140.94) attempted to scan 45 ports.
The following ports have been scanned: 8408/tcp, 8381/tcp, 8412/tcp, 8385/tcp, 8400/tcp (cvd), 8391/tcp, 8396/tcp, 8384/tcp, 8411/tcp, 8387/tcp, 8389/tcp, 8388/tcp, 8394/tcp, 8392/tcp, 8418/tcp, 8415/tcp, 8395/tcp, 8397/tcp, 8390/tcp, 8399/tcp, 8413/tcp, 8386/tcp, 8398/tcp, 8383/tcp (M2m Services), 8401/tcp (sabarsd), 8382/tcp.
      
BHD Honeypot
Port scan
2021-02-08

In the last 24h, the attacker (194.147.140.94) attempted to scan 109 ports.
The following ports have been scanned: 8330/tcp, 8337/tcp, 8310/tcp, 8321/tcp (Thin(ium) Network Protocol), 8335/tcp, 8326/tcp, 8354/tcp, 8350/tcp, 8348/tcp, 8343/tcp, 8358/tcp, 8309/tcp, 8320/tcp (Thin(ium) Network Protocol), 8360/tcp, 8313/tcp, 8311/tcp, 8332/tcp, 8312/tcp, 8304/tcp, 8341/tcp, 8355/tcp, 8349/tcp, 8316/tcp, 8352/tcp, 8327/tcp, 8336/tcp, 8353/tcp, 8344/tcp, 8347/tcp, 8305/tcp, 8322/tcp, 8319/tcp, 8307/tcp, 8340/tcp, 8342/tcp, 8324/tcp, 8345/tcp, 8334/tcp, 8346/tcp, 8338/tcp, 8329/tcp, 8339/tcp, 8317/tcp, 8351/tcp (Server Find), 8357/tcp, 8328/tcp, 8356/tcp, 8318/tcp, 8331/tcp, 8323/tcp, 8306/tcp, 8308/tcp, 8301/tcp (Amberon PPC/PPS), 8325/tcp, 8359/tcp, 8302/tcp, 8333/tcp.
      
BHD Honeypot
Port scan
2021-02-07

In the last 24h, the attacker (194.147.140.94) attempted to scan 94 ports.
The following ports have been scanned: 8279/tcp, 8277/tcp, 8266/tcp, 8299/tcp, 8268/tcp, 8275/tcp, 8272/tcp, 8274/tcp, 8263/tcp, 8276/tcp (Pando Media Controlled Distribution), 8267/tcp, 8297/tcp, 8309/tcp, 8265/tcp, 8313/tcp, 8311/tcp, 8261/tcp, 8264/tcp, 8291/tcp, 8281/tcp, 8298/tcp, 8278/tcp, 8287/tcp, 8288/tcp, 8269/tcp, 8284/tcp, 8283/tcp, 8285/tcp, 8300/tcp (Transport Management Interface), 8305/tcp, 8319/tcp, 8307/tcp, 8262/tcp, 8294/tcp (Bloomberg intelligent client), 8271/tcp, 8282/tcp, 8308/tcp, 8289/tcp, 8301/tcp (Amberon PPC/PPS), 8293/tcp (Hiperscan Identification Service), 8296/tcp, 8295/tcp, 8303/tcp, 8290/tcp, 8280/tcp (Synapse Non Blocking HTTP), 8302/tcp, 8273/tcp, 8270/tcp.
      
BHD Honeypot
Port scan
2021-02-06

In the last 24h, the attacker (194.147.140.94) attempted to scan 110 ports.
The following ports have been scanned: 8214/tcp, 8235/tcp, 8221/tcp, 8256/tcp, 8228/tcp, 8279/tcp, 8236/tcp, 8243/tcp (Synapse Non Blocking HTTPS), 8233/tcp, 8249/tcp, 8206/tcp (LM Dta), 8268/tcp, 8204/tcp (LM Perfworks), 8250/tcp, 8237/tcp, 8272/tcp, 8276/tcp (Pando Media Controlled Distribution), 8267/tcp, 8251/tcp, 8247/tcp, 8265/tcp, 8252/tcp, 8253/tcp, 8246/tcp, 8264/tcp, 8254/tcp, 8257/tcp, 8255/tcp, 8222/tcp, 8219/tcp, 8258/tcp, 8238/tcp, 8245/tcp, 8269/tcp, 8234/tcp, 8223/tcp, 8226/tcp, 8227/tcp, 8244/tcp, 8240/tcp, 8262/tcp, 8232/tcp, 8239/tcp, 8224/tcp, 8271/tcp, 8259/tcp, 8229/tcp, 8260/tcp, 8215/tcp, 8241/tcp, 8230/tcp (RexecJ Server), 8248/tcp, 8242/tcp, 8280/tcp (Synapse Non Blocking HTTP), 8273/tcp, 8270/tcp, 8231/tcp.
      
BHD Honeypot
Port scan
2021-02-06

Port scan from IP: 194.147.140.94 detected by psad.

Blacklist

Near real-time, easy to use data feed containing IPs reported on our website.

Bronze

$3

Updated daily

Learn More

Silver

$15

Updated every hour

Learn More

Gold

$30

Updated every 10 minutes

Learn More

Remarks

Black hat directory contains this IP address, because Internet users reported it as an address making unsolicited, nagging requests. We make every effort to ensure that the information contained in the Black hat directory are correct and up to date. The database is developed and updated by Internet users and moderators.

If you have any reliable information regarding malicious activity originating from this IP address, please share it with others and fill in the 'Report breach' form. It is prohibited from adding personally identifiable information.

Below breach categories are used in the database:

  • Denial of service attack - this attack is accomplished by flooding the target with massive amount of requests in order to overload the targeted system
  • Brute force attack - this category encompasses attempts to login to machine by trying many passwords and usernames
  • Backdoor attack - this category represents bypassing authentication by hidden programs or services to obtain remote access to a computer or trojan activity
  • Port scan - represents attackers identifying running services on the targeted machine by probing a server for open ports
  • Malicious bot - this category encompasses all bots performing unsolicited requests or ignoring robots.txt file
  • Anonymous proxy - public proxies like Tor, I2P relays or anonymous VPNs are often used by attacker to hide his identity
  • Web attack - attempts to exploit web application security flaws
  • CMS attack - attempts to exploit CMS vulnerability
  • App vulnerability attack - attempts to exploit other applications vulnerability
  • Web spam - encompasses all kind of HTTP spamming
  • Email spam - encompasses all kind of E-mail spamming
  • Dodgy activity - this category encompasses superfluous, dodgy requests

Emerging threats

The most commonly reported IP addresses in the last 24 hours

Report breach!

Rate host 194.147.140.94