IP address

Search at other sites:
.286185.167.98.54mail.vanmaanen.de
Shodan(more info)
Passive DNS
Tags: Scanner
IP blacklists
UCEPROTECT L1
185.167.98.54 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2026-04-01 07:45:01.338000
Was present on blacklist at: 2026-03-29 15:45, 2026-03-29 23:45, 2026-03-30 07:45, 2026-03-30 15:45, 2026-03-30 23:45, 2026-03-31 07:45, 2026-03-31 15:45, 2026-03-31 23:45, 2026-04-01 07:45

Threat categories

TLRoleCategoryDetails
50 src login protocol: ssh, telnet
port: 23
37 src
34 src scan port: many
Warden events (104)
2026-03-31
ReconScanning (node.ce2b59): 2
2026-03-30
ReconScanning (node.ce2b59): 1
2026-03-29
ReconScanning (node.ce2b59): 2
2026-03-28
IntrusionUserCompromise (node.cfb4f7): 50
IntrusionUserCompromise (node.40929a): 2
2026-03-26
IntrusionUserCompromise (node.cfb4f7): 43
ReconScanning (node.ce2b59): 3
2026-03-25
ReconScanning (node.ce2b59): 1
Origin AS
AS41436 - CloudWebManage-EU
BGP Prefix
185.167.98.0/24
geo
Netherlands, Amsterdam
🕑 Europe/Amsterdam
hostname
mail.vanmaanen.de
Address block ('inetnum' or 'NetRange' in whois database)
185.167.96.0 - 185.167.99.255
last_activity
2026-03-31 23:58:36
last_warden_event
2026-03-31 23:58:36
rep
0.2857142857142857
reserved_range
0
Shodan's InternetDB
Open ports: 22, 3389, 5985
Tags: self-signed
CPEs: cpe:/a:openbsd:openssh:8.9p1, cpe:/o:canonical:ubuntu_linux
ts_added
2026-03-25 23:44:27.387000
ts_last_update
2026-04-01 08:03:48.805000

Warden event timeline

DShield event timeline

Presence on blacklists