IP address
Tags:
Static IP
IP in hostname
- IP blacklists
Spamhaus SBL
167.160.161.4 is listed on the Spamhaus SBL blacklist.
Description: The Spamhaus Block List ("SBL") Advisory is a database of IP addresses from which Spamhaus does not recommend the acceptance of electronic mail.
Type of feed:
secondary (DNSBL) (
feed detail page)
Last checked at:
2025-07-20 09:50:40.190000
Was present on blacklist at:
2025-07-13 09:50,
2025-07-20 09:50
Spamhaus DROP
167.160.161.4 is listed on the Spamhaus DROP blacklist.
Description: Spamhaus DROP (Don't Route Or Peer) list. Netblocks controlled by spammers or cyber criminals. The DROP lists are a tiny subset of the SBL, designed for use by firewalls and routing equipment to filter out the malicious traffic from these netblocks.
Type of feed:
secondary (DNSBL) (
feed detail page)
Last checked at:
2025-07-20 09:50:40.190000
Was present on blacklist at:
2025-07-13 09:50,
2025-07-20 09:50
DataPlane SMTP data
167.160.161.4 is listed on the DataPlane SMTP data blacklist.
Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IP addresses that <br>have been identified as SMTP clients sending unsolicited DATA commands.
Type of feed:
primary (
feed detail page)
Last checked at:
2025-07-20 10:10:05.640000
Was present on blacklist at:
2025-07-14 14:10,
2025-07-14 18:10,
2025-07-14 22:10,
2025-07-15 02:10,
2025-07-15 06:10,
2025-07-15 10:10,
2025-07-15 14:10,
2025-07-15 18:10,
2025-07-15 22:10,
2025-07-16 02:10,
2025-07-16 06:10,
2025-07-16 10:10,
2025-07-16 14:10,
2025-07-16 18:10,
2025-07-16 22:10,
2025-07-17 02:10,
2025-07-17 06:10,
2025-07-17 10:10,
2025-07-17 14:10,
2025-07-17 18:10,
2025-07-17 22:10,
2025-07-18 02:10,
2025-07-18 06:10,
2025-07-18 10:10,
2025-07-18 14:10,
2025-07-18 18:10,
2025-07-18 22:10,
2025-07-19 02:10,
2025-07-19 06:10,
2025-07-19 10:10,
2025-07-19 14:10,
2025-07-19 18:10,
2025-07-19 22:10,
2025-07-20 02:10,
2025-07-20 06:10,
2025-07-20 10:10
DataPlane SMTP greeting
167.160.161.4 is listed on the DataPlane SMTP greeting blacklist.
Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IPs that are<br>identified as SMTP clients issuing unsolicited HELO or EHLO commands.
Type of feed:
primary (
feed detail page)
Last checked at:
2025-07-14 14:10:00.987000
Was present on blacklist at:
2025-07-14 14:10
Turris greylist
167.160.161.4 is listed on the Turris greylist blacklist.
Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed:
primary (
feed detail page)
Last checked at:
2025-07-15 21:15:00.257000
Was present on blacklist at:
2025-07-14 21:15,
2025-07-15 21:15
- Warden events (64)
- 2025-07-13
-
-
IntrusionUserCompromise (node.cfb4f7): 64
- Origin AS
- AS214943 - RAILNET
- BGP Prefix
- 167.160.161.0/24
- geo
-
United States, Charleston
- 🕑 America/New_York
- hostname
- (null)
- hostname_class
- ['ip_in_hostname', 'static']
- Address block ('inetnum' or 'NetRange' in whois database)
- 167.160.160.0 - 167.160.191.255
- last_activity
- 2025-07-13 21:12:26
- last_warden_event
- 2025-07-13 21:12:26
- rep
- 0.03333333333333333
- reserved_range
- 0
- Shodan's InternetDB
- Open ports: 445, 3389
- Tags: eol-os, self-signed
- CPEs: –
- ts_added
- 2025-07-13 09:50:33.619000
- ts_last_update
- 2025-07-20 10:10:29.424000
Warden event timeline
DShield event timeline
Presence on blacklists
