83.168.69.197

Summary (Bottom Line Up Front)

Malicious activity detected from 83.168.69.197 (PL, AS202520). 12110 events observed across ADB, TCP. AI verdict: NOISE.

ADB TCP
ADB_ATTACK PROTO_ABUSE
Activity Timeline
INITIAL REPORT2026-05-24T08:35:44Z
Source: Analyst Manual Entry
Malicious activity detected from 83.168.69.197 (PL, AS202520). 12110 events observed across ADB, TCP. AI verdict: NOISE.
Technical details
Protocols: ADB, TCP
Attack types: ADB_ATTACK, PROTO_ABUSE
Unique destination ports: 1
Active window: 2026-04-30 01:29:21.902124 to 2026-05-05 06:59:46.740778
Top patterns: adb_connect, adb_shell, suricata_sid_2210050
IOCs
IP:83.168.69.197
ASN:202520
COUNTRY:PL
Recommendations
  • Block 83.168.69.197 at perimeter firewall
  • Monitor other traffic from AS202520
  • Review correlated attacker profiles for campaign links
Threat Assessment
Threat Level MEDIUM
AI Verdict NOISE
Confidence 95%
Total Events 12,110
AbuseIPDB 31/100
Indicators of Compromise
ip 83.168.69.197
asn 202520
country PL
Captured Payloads (1)
MEDIUM PROTO_ABUSE TCP:5555 
SURICATA STREAM reassembly overlap with different data