IP address

Search at other sites:

.007185.132.53.252

Shodan(more info)

Passive DNS

IP blacklists

CI Army

185.132.53.252 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-05-29 02:50:00.920000
Was present on blacklist at: 2025-05-11 02:50, 2025-05-25 02:50, 2025-05-26 02:50, 2025-05-27 02:50, 2025-05-28 02:50, 2025-05-29 02:50

DataPlane TELNET login

185.132.53.252 is listed on the DataPlane TELNET login blacklist.

Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IPs trying<br>an unsolicited login via TELNET password authentication.
Type of feed: primary (feed detail page)

Last checked at: 2025-05-17 14:10:04.099000
Was present on blacklist at: 2025-05-11 02:10, 2025-05-11 06:10, 2025-05-11 14:10, 2025-05-11 18:10, 2025-05-12 02:10, 2025-05-12 06:10, 2025-05-12 14:10, 2025-05-12 18:10, 2025-05-13 02:10, 2025-05-13 06:10, 2025-05-13 14:10, 2025-05-13 18:10, 2025-05-14 02:10, 2025-05-14 06:10, 2025-05-14 14:10, 2025-05-14 18:10, 2025-05-15 02:10, 2025-05-15 14:10, 2025-05-15 18:10, 2025-05-16 02:10, 2025-05-16 06:10, 2025-05-16 14:10, 2025-05-16 18:10, 2025-05-17 02:10, 2025-05-17 06:10, 2025-05-17 14:10

Turris greylist

185.132.53.252 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-07-03 21:15:00.178000
Was present on blacklist at: 2025-05-13 21:15, 2025-05-14 21:15, 2025-05-15 21:15, 2025-05-16 21:15, 2025-05-18 21:15, 2025-05-21 21:15, 2025-05-23 21:15, 2025-05-26 21:15, 2025-05-28 21:15, 2025-05-30 21:15, 2025-06-02 21:15, 2025-06-05 21:15, 2025-06-06 21:15, 2025-06-08 21:15, 2025-06-09 21:15, 2025-06-12 21:15, 2025-06-14 21:15, 2025-06-15 21:15, 2025-06-17 21:15, 2025-06-18 21:15, 2025-06-19 21:15, 2025-06-20 21:15, 2025-06-21 21:15, 2025-06-22 21:15, 2025-06-24 21:15, 2025-06-26 21:15, 2025-06-28 21:15, 2025-06-29 21:15, 2025-06-30 21:15, 2025-07-02 21:15, 2025-07-03 21:15

AbuseIPDB

185.132.53.252 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-05-31 04:00:00.626000
Was present on blacklist at: 2025-05-25 04:00, 2025-05-31 04:00

UCEPROTECT L1

185.132.53.252 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-06-19 07:45:00.842000
Was present on blacklist at: 2025-06-12 15:45, 2025-06-12 23:45, 2025-06-13 07:45, 2025-06-13 15:45, 2025-06-13 23:45, 2025-06-14 07:45, 2025-06-14 15:45, 2025-06-14 23:45, 2025-06-15 07:45, 2025-06-15 15:45, 2025-06-15 23:45, 2025-06-16 07:45, 2025-06-16 15:45, 2025-06-16 23:45, 2025-06-17 07:45, 2025-06-17 15:45, 2025-06-17 23:45, 2025-06-18 07:45, 2025-06-18 15:45, 2025-06-18 23:45, 2025-06-19 07:45

Warden events (3640)

2025-07-02

IntrusionUserCompromise (node.cfb4f7): 194

ReconScanning (node.9c1411): 2

2025-07-01

ReconScanning (node.9c1411): 3

IntrusionUserCompromise (node.cfb4f7): 4

2025-06-30

ReconScanning (node.9c1411): 7

IntrusionUserCompromise (node.cfb4f7): 194

2025-06-29

ReconScanning (node.9c1411): 7

IntrusionUserCompromise (node.cfb4f7): 102

2025-06-28

IntrusionUserCompromise (node.cfb4f7): 103

ReconScanning (node.9c1411): 3

2025-06-27

ReconScanning (node.9c1411): 8

IntrusionUserCompromise (node.cfb4f7): 99

2025-06-26

ReconScanning (node.9c1411): 3

2025-06-25

ReconScanning (node.9c1411): 5

IntrusionUserCompromise (node.cfb4f7): 97

2025-06-24

ReconScanning (node.9c1411): 5

IntrusionUserCompromise (node.cfb4f7): 291

2025-06-23

ReconScanning (node.9c1411): 9

2025-06-22

ReconScanning (node.9c1411): 2

IntrusionUserCompromise (node.cfb4f7): 60

2025-06-21

IntrusionUserCompromise (node.cfb4f7): 145

ReconScanning (node.9c1411): 4

2025-06-20

ReconScanning (node.9c1411): 2

IntrusionUserCompromise (node.cfb4f7): 57

2025-06-19

IntrusionUserCompromise (node.cfb4f7): 103

2025-06-18

IntrusionUserCompromise (node.cfb4f7): 133

ReconScanning (node.9c1411): 2

2025-06-17

ReconScanning (node.9c1411): 2

IntrusionUserCompromise (node.cfb4f7): 156

2025-06-16

ReconScanning (node.9c1411): 2

IntrusionUserCompromise (node.cfb4f7): 137

2025-06-15

IntrusionUserCompromise (node.cfb4f7): 194

ReconScanning (node.9c1411): 1

2025-06-14

ReconScanning (node.9c1411): 2

IntrusionUserCompromise (node.cfb4f7): 193

2025-06-13

IntrusionUserCompromise (node.cfb4f7): 114

2025-06-12

ReconScanning (node.9c1411): 5

2025-06-11

IntrusionUserCompromise (node.cfb4f7): 13

ReconScanning (node.9c1411): 1

2025-06-10

IntrusionUserCompromise (node.cfb4f7): 49

ReconScanning (node.9c1411): 3

2025-06-09

IntrusionUserCompromise (node.cfb4f7): 23

ReconScanning (node.9c1411): 2

2025-06-08

IntrusionUserCompromise (node.cfb4f7): 25

2025-06-07

IntrusionUserCompromise (node.cfb4f7): 45

2025-06-06

IntrusionUserCompromise (node.cfb4f7): 21

2025-06-05

IntrusionUserCompromise (node.cfb4f7): 30

2025-06-02

IntrusionUserCompromise (node.cfb4f7): 22

2025-06-01

IntrusionUserCompromise (node.cfb4f7): 19

2025-05-31

IntrusionUserCompromise (node.cfb4f7): 61

2025-05-29

IntrusionUserCompromise (node.cfb4f7): 6

2025-05-28

IntrusionUserCompromise (node.cfb4f7): 20

2025-05-27

IntrusionUserCompromise (node.cfb4f7): 22

2025-05-26

IntrusionUserCompromise (node.cfb4f7): 33

2025-05-25

IntrusionUserCompromise (node.cfb4f7): 25

2025-05-23

IntrusionUserCompromise (node.cfb4f7): 22

2025-05-22

IntrusionUserCompromise (node.cfb4f7): 36

2025-05-21

IntrusionUserCompromise (node.cfb4f7): 36

2025-05-20

IntrusionUserCompromise (node.cfb4f7): 36

2025-05-19

IntrusionUserCompromise (node.cfb4f7): 19

2025-05-17

IntrusionUserCompromise (node.cfb4f7): 45

2025-05-16

IntrusionUserCompromise (node.cfb4f7): 24

2025-05-15

IntrusionUserCompromise (node.cfb4f7): 22

2025-05-14

IntrusionUserCompromise (node.cfb4f7): 250

2025-05-13

IntrusionUserCompromise (node.cfb4f7): 102

2025-05-12

IntrusionUserCompromise (node.cfb4f7): 52

2025-05-11

IntrusionUserCompromise (node.cfb4f7): 61

2025-05-10

ReconScanning (node.4dc198): 2

IntrusionUserCompromise (node.cfb4f7): 63

DShield reports (IP summary, reports)

2025-05-10

Number of reports: 26

Distinct targets: 14

2025-05-24

Number of reports: 169

Distinct targets: 125

2025-05-25

Number of reports: 224

Distinct targets: 171

2025-06-09

Number of reports: 18

Distinct targets: 3

2025-07-02

Number of reports: 16

Distinct targets: 5

Origin AS

AS215898 - XOR-AS

AS211507 - lain

BGP Prefix

185.132.53.0/24

geo

Germany

🕑 Europe/Berlin

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

185.132.52.0 - 185.132.55.255

last_activity

2025-07-02 16:41:07

last_warden_event

2025-07-02 16:41:07

rep

0.007142857142857143

reserved_range

0

Shodan's InternetDB

Open ports: 22

Tags: –

CPEs: cpe:/a:openbsd:openssh:9.6p1, cpe:/o:canonical:ubuntu_linux

ts_added

2025-05-10 10:53:25.531000

ts_last_update

2025-07-15 10:53:30.109000

Warden event timeline

DShield event timeline

Presence on blacklists