IP address

Search at other sites:

.642176.65.138.108

Shodan(more info)

Passive DNS

IP blacklists

Spamhaus SBL

176.65.138.108 is listed on the Spamhaus SBL blacklist.

Description: The Spamhaus Block List ("SBL") Advisory is a database of IP addresses from which Spamhaus does not recommend the acceptance of electronic mail.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-04-14 20:18:10.064000
Was present on blacklist at: 2025-04-07 20:18, 2025-04-14 20:18

Spamhaus DROP

176.65.138.108 is listed on the Spamhaus DROP blacklist.

Description: Spamhaus DROP (Don't Route Or Peer) list. Netblocks controlled by spammers or cyber criminals. The DROP lists are a tiny subset of the SBL, designed for use by firewalls and routing equipment to filter out the malicious traffic from these netblocks.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-04-14 20:18:10.064000
Was present on blacklist at: 2025-04-07 20:18, 2025-04-14 20:18

CI Army

176.65.138.108 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-04-20 02:50:01.059000
Was present on blacklist at: 2025-04-08 02:50, 2025-04-09 02:50, 2025-04-10 02:50, 2025-04-11 02:50, 2025-04-12 02:50, 2025-04-13 02:50, 2025-04-14 02:50, 2025-04-15 02:50, 2025-04-16 02:50, 2025-04-17 02:50, 2025-04-18 02:50, 2025-04-19 02:50, 2025-04-20 02:50

AbuseIPDB

176.65.138.108 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-04-17 04:00:00.753000
Was present on blacklist at: 2025-04-08 04:00, 2025-04-09 04:00, 2025-04-10 04:00, 2025-04-11 04:00, 2025-04-12 04:00, 2025-04-13 04:00, 2025-04-14 04:00, 2025-04-15 04:00, 2025-04-16 04:00, 2025-04-17 04:00

Warden events (6109)

2025-04-17

ReconScanning (node.4dc198): 95

ReconScanning (node.368407): 90

ReconScanning (node.9c1411): 54

2025-04-16

ReconScanning (node.4dc198): 287

ReconScanning (node.368407): 285

ReconScanning (node.9c1411): 79

2025-04-15

ReconScanning (node.4dc198): 284

ReconScanning (node.368407): 281

ReconScanning (node.9c1411): 72

2025-04-14

ReconScanning (node.368407): 284

ReconScanning (node.4dc198): 286

ReconScanning (node.9c1411): 75

2025-04-13

ReconScanning (node.368407): 279

ReconScanning (node.4dc198): 288

ReconScanning (node.9c1411): 69

2025-04-12

ReconScanning (node.4dc198): 286

ReconScanning (node.368407): 284

ReconScanning (node.9c1411): 69

2025-04-11

ReconScanning (node.9c1411): 66

ReconScanning (node.4dc198): 285

ReconScanning (node.368407): 284

2025-04-10

ReconScanning (node.9c1411): 61

ReconScanning (node.4dc198): 287

ReconScanning (node.368407): 285

2025-04-09

ReconScanning (node.368407): 279

ReconScanning (node.4dc198): 288

ReconScanning (node.9c1411): 77

2025-04-08

ReconScanning (node.368407): 282

ReconScanning (node.4dc198): 288

ReconScanning (node.9c1411): 81

2025-04-07

ReconScanning (node.4dc198): 45

ReconScanning (node.368407): 44

ReconScanning (node.9c1411): 10

DShield reports (IP summary, reports)

2025-04-07

Number of reports: 259

Distinct targets: 106

2025-04-08

Number of reports: 1301

Distinct targets: 336

2025-04-09

Number of reports: 1673

Distinct targets: 362

2025-04-10

Number of reports: 1274

Distinct targets: 333

2025-04-11

Number of reports: 1928

Distinct targets: 375

2025-04-12

Number of reports: 1867

Distinct targets: 350

2025-04-13

Number of reports: 1343

Distinct targets: 349

2025-04-14

Number of reports: 1168

Distinct targets: 328

2025-04-15

Number of reports: 1091

Distinct targets: 317

2025-04-16

Number of reports: 1736

Distinct targets: 348

2025-04-17

Number of reports: 529

Distinct targets: 181

Origin AS

AS215462 - BUGGZ-HOSTING

BGP Prefix

176.65.138.0/24

geo

Germany

🕑 Europe/Berlin

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

176.65.128.0 - 176.65.159.255

last_activity

2025-04-17 14:49:52

last_warden_event

2025-04-17 14:49:52

rep

0.6416666666666667

reserved_range

0

Shodan's InternetDB

Open ports: 22

Tags: –

CPEs: cpe:/o:canonical:ubuntu_linux, cpe:/a:openbsd:openssh:8.9p1

ts_added

2025-04-07 20:18:00.770000

ts_last_update

2025-04-20 02:58:39.863000

Warden event timeline

DShield event timeline

Presence on blacklists