iAnonymous lookups: 30/hr per source IP. Sign in (free) to lift the limit, run heavier queries, and get an API key for MCP / HTTP.
Filtered actors
ASN=31898
34 unique IPs · 613 events · 17 countries · 1 ASNs
Activity · last 7d
peak 322 on 2026-07-04
Top source networks · click to refine
ASN: 31898×window1h24h7d30d🔒90d🔒
Turn this query into a daily email digest or an IOC feed URL.Save as feed
Sample payloads
top distinct probes matching this query| Protocol | Port | Probe / payload | Hits | Example |
|---|---|---|---|---|
| HTTP | 55555 | POST /login UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:131.0) Gecko/20100101 Firefox/131.0 | 350 | 141.148.181.195 → |
| HTTP | 8080/HTTP-alt | CONNECT ip.ifconfig.dpdns.org:443 HTTP/1.1 Host: ip.ifconfig.dpdns.org:443 User-Agent: Go-http-client/1.1 | 20 · 2 IPs | 149.118.133.156 → |
| HTTP | 8443/HTTPS-alt | HEAD / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 | 14 · 2 IPs | 163.192.193.212 → |
| HTTP | 52869 | POST /picdesc.xml UA: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) | 11 · 3 IPs | 129.146.143.17 → |
| - | 5432/Postgres | 0a | 11 · 3 IPs | 129.146.184.116 → |
| HTTP | 8000/HTTP-alt | GET / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 | 10 · 2 IPs | 163.192.193.212 → |
| HTTP | 52869 | POST /wanipcn.xml UA: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) | 7 · 3 IPs | 129.146.143.17 → |
| - | 1433/MSSQL | ) � U �O | 6 | 193.122.174.236 → |
| - | 1433/MSSQL | ) � U �% | 6 | 193.122.174.236 → |
| - | 8000/HTTP-alt | username=aa&password=asdfgh | 3 | 141.148.181.195 → |
| - | 8000/HTTP-alt | username=aa&password=admin123456 | 3 | 141.148.181.195 → |
| SOCKS5 | 4080 | SOCKS505 01 00 | 3 | 141.253.117.39 → |
IPCountryASNTop portsEvents