IP address

Search at other sites:

.071138.36.239.20vps-1387733-x.dattaweb.com

Shodan(more info)

Passive DNS

IP blacklists

AbuseIPDB

138.36.239.20 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2024-07-20 04:00:00.455000
Was present on blacklist at: 2024-07-07 04:00, 2024-07-16 04:00, 2024-07-20 04:00

Spamhaus SBL

138.36.239.20 is listed on the Spamhaus SBL blacklist.

Description: The Spamhaus Block List ("SBL") Advisory is a database of IP addresses from which Spamhaus does not recommend the acceptance of electronic mail.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2024-09-16 07:23:40.673000
Was present on blacklist at: 2024-06-24 07:23, 2024-07-01 07:23, 2024-07-08 07:23, 2024-07-15 07:23, 2024-07-22 07:23, 2024-07-29 07:23, 2024-08-05 07:23, 2024-08-12 07:23, 2024-08-27 01:09, 2024-09-02 07:23, 2024-09-09 07:23, 2024-09-16 07:23

URLHaus

138.36.239.20 is listed on the URLHaus blacklist.

Description: URLhaus is a project from abuse.ch with the goal of sharing<br>malicious URLs that are being used for malware distribution.<br>This list contains IPs that are part of the malicious ULRs.
Type of feed: primary (feed detail page)

Last checked at: 2024-08-11 10:10:00.840000
Was present on blacklist at: 2024-08-01 06:10, 2024-08-08 18:10, 2024-08-08 22:10, 2024-08-11 10:10

Warden events (36)

2024-09-19

AnomalyTraffic (node.ffe95c): 1

2024-09-15

ReconScanning (node.368407): 1

2024-09-11

ReconScanning (node.368407): 1

2024-09-03

ReconScanning (node.4dc198): 1

2024-08-30

ReconScanning (node.ce2b59): 4

AnomalyTraffic (node.ce2b59): 1

AnomalyTraffic (node.ffe95c): 1

ReconScanning (node.4dc198): 1

2024-08-23

ReconScanning (node.368407): 1

2024-08-22

AnomalyTraffic (node.ffe95c): 3

ReconScanning (node.4dc198): 1

2024-08-21

ReconScanning (node.368407): 1

2024-08-12

AnomalyTraffic (node.ffe95c): 3

ReconScanning (node.4dc198): 1

2024-07-25

ReconScanning (node.368407): 1

2024-07-23

AnomalyTraffic (node.ffe95c): 1

ReconScanning (node.4dc198): 1

AttemptLogin (node.007391): 1

ReconScanning (node.368407): 1

2024-07-21

AnomalyTraffic (node.ce2b59): 3

AnomalyTraffic (node.ffe95c): 3

ReconScanning (node.ce2b59): 2

ReconScanning (node.4dc198): 1

2024-07-15

ReconScanning (node.4dc198): 1

DShield reports (IP summary, reports)

2024-07-19

Number of reports: 10

Distinct targets: 6

2024-09-06

Number of reports: 11

Distinct targets: 6

Origin AS

AS27823 -

BGP Prefix

138.36.239.0/24

geo

Argentina, Rosario

🕑 America/Argentina/Cordoba

hostname

vps-1387733-x.dattaweb.com

Address block ('inetnum' or 'NetRange' in whois database)

138.36.236.0 - 138.36.239.255

last_activity

2024-09-19 06:05:00

last_warden_event

2024-09-19 06:05:00

rep

0.07142857142857142

reserved_range

0

Shodan's InternetDB

Open ports: 80, 3001, 3002, 3306, 4000, 8080

Tags: eol-product, database

CPEs: cpe:/a:oracle:jre, cpe:/a:apache:http_server:2.4.18, cpe:/a:momentjs:moment, cpe:/a:mariadb:mariadb:10.0.38-MariaDB-0ubuntu0.16.04.1, cpe:/a:atlassian:jira

ts_added

2024-02-19 07:23:38.217000

ts_last_update

2024-09-19 07:23:40.160000

Warden event timeline

DShield event timeline

Presence on blacklists