IP address

Search at other sites:
.012141.148.209.213
Shodan(more info)
Passive DNS
Tags: Scanner
IP blacklists
Spamhaus XBL CBL
141.148.209.213 is listed on the Spamhaus XBL CBL blacklist.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-03-02 06:01:50.250000
Was present on blacklist at: 2025-12-08 06:01, 2025-12-15 06:01, 2025-12-22 06:01, 2025-12-29 06:01, 2026-01-05 06:01, 2026-01-12 06:01, 2026-01-19 06:01, 2026-01-26 06:01, 2026-02-02 06:01, 2026-02-09 06:01, 2026-02-16 06:01, 2026-02-23 06:01, 2026-03-02 06:01
FireHOL anonymizers
141.148.209.213 is listed on the FireHOL anonymizers blacklist.

Description: List of anonymizing IPs, aggregated from multiple lists by FireHOL.
Type of feed: secondary (feed detail page)

Last checked at: 2026-03-05 06:05:12
Was present on blacklist at: 2025-12-05 06:05, 2025-12-06 06:05, 2025-12-07 06:05, 2025-12-08 06:05, 2025-12-09 06:05, 2025-12-10 06:05, 2025-12-11 06:05, 2025-12-12 06:05, 2025-12-13 06:05, 2025-12-14 06:05, 2025-12-15 06:05, 2025-12-16 06:05, 2025-12-17 06:05, 2025-12-18 06:05, 2025-12-19 06:05, 2025-12-20 06:05, 2025-12-21 06:05, 2025-12-22 06:05, 2025-12-23 06:05, 2025-12-24 06:05, 2025-12-25 06:05, 2025-12-26 06:05, 2025-12-27 06:05, 2025-12-28 06:05, 2025-12-29 06:05, 2025-12-30 06:05, 2025-12-31 06:05, 2026-01-01 06:05, 2026-01-02 06:05, 2026-01-03 06:05, 2026-01-04 06:05, 2026-01-05 06:05, 2026-01-06 06:05, 2026-01-07 06:05, 2026-01-08 06:05, 2026-01-09 06:05, 2026-01-10 06:05, 2026-01-11 06:05, 2026-01-12 06:05, 2026-01-13 06:05, 2026-01-14 06:05, 2026-01-15 06:05, 2026-01-16 06:05, 2026-01-17 06:05, 2026-01-18 06:05, 2026-01-19 06:05, 2026-01-20 06:05, 2026-01-21 06:05, 2026-01-22 06:05, 2026-01-23 06:05, 2026-01-24 06:05, 2026-01-25 06:05, 2026-01-26 06:05, 2026-01-27 06:05, 2026-01-28 06:05, 2026-01-29 06:05, 2026-01-30 06:05, 2026-01-31 06:05, 2026-02-01 06:05, 2026-02-02 06:05, 2026-02-03 06:05, 2026-02-04 06:05, 2026-02-05 06:05, 2026-02-06 06:05, 2026-02-07 06:05, 2026-02-08 06:05, 2026-02-09 06:05, 2026-02-10 06:05, 2026-02-11 06:05, 2026-02-12 06:05, 2026-02-13 06:05, 2026-02-14 06:05, 2026-02-15 06:05, 2026-02-16 06:05, 2026-02-17 06:05, 2026-02-18 06:05, 2026-02-19 06:05, 2026-02-20 06:05, 2026-02-21 06:05, 2026-02-22 06:05, 2026-02-23 06:05, 2026-02-24 06:05, 2026-02-25 06:05, 2026-02-26 06:05, 2026-02-27 06:05, 2026-02-28 06:05, 2026-03-01 06:05, 2026-03-02 06:05, 2026-03-03 06:05, 2026-03-04 06:05, 2026-03-05 06:05
Spamhaus SBL CSS
141.148.209.213 is listed on the Spamhaus SBL CSS blacklist.

Description: The Spamhaus CSS is part of the SBL. CSS listings will have return code 127.0.0.3 to differentiate from regular SBL listings, which have return code 127.0.0.2.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-03-02 06:01:50.250000
Was present on blacklist at: 2025-12-15 06:01, 2025-12-22 06:01, 2025-12-29 06:01, 2026-01-05 06:01, 2026-02-09 06:01, 2026-02-16 06:01, 2026-02-23 06:01, 2026-03-02 06:01

Threat categories

TLRoleCategoryDetails
25 src scan port: 445
Warden events (32)
2026-02-24
ReconScanning (node.9c1411): 1
2026-02-19
ReconScanning (node.9c1411): 3
2026-02-16
ReconScanning (node.9c1411): 1
2026-02-12
ReconScanning (node.9c1411): 1
2026-02-10
ReconScanning (node.9c1411): 2
2026-02-09
ReconScanning (node.368407): 1
2026-02-04
ReconScanning (node.9c1411): 1
2026-02-03
ReconScanning (node.9c1411): 1
2026-01-29
ReconScanning (node.9c1411): 1
2026-01-26
ReconScanning (node.9c1411): 1
2026-01-20
ReconScanning (node.368407): 1
2026-01-12
ReconScanning (node.9c1411): 1
2026-01-10
ReconScanning (node.9c1411): 4
2026-01-06
ReconScanning (node.9c1411): 4
2025-12-15
ReconScanning (node.9c1411): 1
2025-12-12
ReconScanning (node.9c1411): 2
2025-12-07
ReconScanning (node.9c1411): 3
2025-12-06
ReconScanning (node.368407): 1
2025-12-05
ReconScanning (node.9c1411): 2
DShield reports (IP summary, reports)
2025-12-09
Number of reports: 17
Distinct targets: 5
Origin AS
AS31898 - ORACLE-BMC-31898
BGP Prefix
141.148.192.0/19
geo
India, Mumbai
🕑 Asia/Kolkata
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
141.143.0.0 - 141.148.255.255
last_activity
2026-02-24 06:56:25
last_warden_event
2026-02-24 06:56:25
rep
0.011904761904761906
reserved_range
0
Shodan's InternetDB
Open ports: 22
Tags: cloud
CPEs: cpe:/a:openbsd:openssh:8.4p1
ts_added
2025-06-02 06:01:49.361000
ts_last_update
2026-03-05 06:01:50.135000

Warden event timeline

DShield event timeline

Presence on blacklists