I have 3 mikrotik routers (3011, 4011 and CCR1016) at 3 sites. All show access attempts from IPs that lead to a site called 'shadowserver'.
IPs are 64.62.197.93, 94, 80, 14 and 74.82.47.4 and others. See the attached images for the log and shadowserver page.
Has anyone heard of this? Any action necessary?
Help appreciated,
Dave