IP address

Search at other sites:

.537185.242.3.66

Shodan(more info)

Passive DNS

IP blacklists

Spamhaus SBL

185.242.3.66 is listed on the Spamhaus SBL blacklist.

Description: The Spamhaus Block List ("SBL") Advisory is a database of IP addresses from which Spamhaus does not recommend the acceptance of electronic mail.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-03-23 23:09:02.443000
Was present on blacklist at: 2026-02-23 23:08, 2026-03-02 23:09, 2026-03-09 23:22, 2026-03-16 23:09, 2026-03-23 23:09

Spamhaus DROP

185.242.3.66 is listed on the Spamhaus DROP blacklist.

Description: Spamhaus DROP (Don't Route Or Peer) list. Netblocks controlled by spammers or cyber criminals. The DROP lists are a tiny subset of the SBL, designed for use by firewalls and routing equipment to filter out the malicious traffic from these netblocks.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-03-23 23:09:02.443000
Was present on blacklist at: 2026-02-23 23:08, 2026-03-02 23:09, 2026-03-09 23:22, 2026-03-16 23:09, 2026-03-23 23:09

AbuseIPDB

185.242.3.66 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2026-03-26 05:00:00.645000
Was present on blacklist at: 2026-02-25 05:00, 2026-02-26 05:00, 2026-02-27 05:00, 2026-02-28 05:00, 2026-03-01 05:00, 2026-03-03 05:00, 2026-03-04 05:00, 2026-03-06 05:00, 2026-03-10 05:00, 2026-03-11 05:00, 2026-03-12 05:00, 2026-03-13 05:00, 2026-03-14 05:00, 2026-03-22 05:00, 2026-03-23 05:00, 2026-03-25 05:00, 2026-03-26 05:00

DShield Block

185.242.3.66 was recently listed on the DShield Block blacklist, but currently it is not.

Description: Recommended Block List by DShield.org. It summarizes the top 20 attacking<br>class C (/24) subnets over the last three days.
Type of feed: secondary (feed detail page)

Last checked at: 2026-03-25 04:50:00
Was present on blacklist at: 2026-03-23 04:50

blocklist.de bots

185.242.3.66 is listed on the blocklist.de bots blacklist.

Description: Blocklist.de feed is a free and voluntary service provided<br>by a Fraud/Abuse-specialist. IPs performing attacks on the RFI-Attacks,<br>REG-Bots, IRC-Bots or BadBots.
Type of feed: primary (feed detail page)

Last checked at: 2026-03-26 17:05:00.170000
Was present on blacklist at: 2026-03-25 11:05, 2026-03-25 17:05, 2026-03-25 23:05, 2026-03-26 05:05, 2026-03-26 11:05, 2026-03-26 17:05

Echelon web crawler

185.242.3.66 is listed on the Echelon web crawler blacklist.

Description: HTTP web crawling activity detected on web honeypots
Type of feed: primary (feed detail page)

Last checked at: 2026-03-26 10:50:00.769000
Was present on blacklist at: 2026-03-26 10:50

Threat categories

TL	Role	Category	Details
70	src	scan	port: 80, 3000, 6379, 7860, 18789
51	src	—

---

Warden events (6022)

2026-03-26

ReconScanning (node.368407): 231

ReconScanning (node.4dc198): 203

ReconScanning (node.ce2b59): 24

AnomalyTraffic (node.6a1878): 14

ReconScanning (node.9c1411): 40

2026-03-25

ReconScanning (node.4dc198): 207

ReconScanning (node.9c1411): 48

ReconScanning (node.368407): 168

AnomalyTraffic (node.6a1878): 12

ReconScanning (node.ce2b59): 15

2026-03-23

ReconScanning (node.4dc198): 98

ReconScanning (node.9c1411): 56

ReconScanning (node.368407): 39

2026-03-22

ReconScanning (node.4dc198): 262

ReconScanning (node.368407): 198

ReconScanning (node.9c1411): 68

2026-03-21

ReconScanning (node.368407): 47

ReconScanning (node.4dc198): 68

ReconScanning (node.9c1411): 20

2026-03-15

ReconScanning (node.9c1411): 12

ReconScanning (node.4dc198): 1

2026-03-14

ReconScanning (node.9c1411): 79

2026-03-13

ReconScanning (node.9c1411): 79

ReconScanning (node.4dc198): 13

2026-03-12

ReconScanning (node.4dc198): 98

ReconScanning (node.9c1411): 73

2026-03-11

ReconScanning (node.9c1411): 81

ReconScanning (node.4dc198): 214

2026-03-10

ReconScanning (node.4dc198): 140

ReconScanning (node.9c1411): 79

2026-03-09

ReconScanning (node.9c1411): 67

ReconScanning (node.4dc198): 244

2026-03-08

ReconScanning (node.4dc198): 203

ReconScanning (node.9c1411): 76

2026-03-07

ReconScanning (node.4dc198): 186

ReconScanning (node.9c1411): 68

2026-03-06

ReconScanning (node.9c1411): 57

ReconScanning (node.4dc198): 13

2026-03-05

ReconScanning (node.9c1411): 58

ReconScanning (node.4dc198): 72

2026-03-04

ReconScanning (node.4dc198): 167

ReconScanning (node.9c1411): 68

2026-03-03

ReconScanning (node.4dc198): 260

ReconScanning (node.9c1411): 62

2026-03-02

ReconScanning (node.4dc198): 212

ReconScanning (node.9c1411): 59

2026-03-01

ReconScanning (node.4dc198): 277

ReconScanning (node.9c1411): 66

2026-02-28

ReconScanning (node.9c1411): 65

ReconScanning (node.4dc198): 67

2026-02-27

ReconScanning (node.9c1411): 67

ReconScanning (node.4dc198): 76

2026-02-26

ReconScanning (node.9c1411): 65

ReconScanning (node.4dc198): 114

2026-02-25

ReconScanning (node.4dc198): 250

ReconScanning (node.9c1411): 63

2026-02-24

ReconScanning (node.4dc198): 281

ReconScanning (node.9c1411): 60

2026-02-23

ReconScanning (node.4dc198): 11

ReconScanning (node.9c1411): 1

DShield reports (IP summary, reports)

2026-02-24

Number of reports: 164

Distinct targets: 94

2026-02-25

Number of reports: 164

Distinct targets: 94

2026-02-26

Number of reports: 145

Distinct targets: 93

2026-02-27

Number of reports: 114

Distinct targets: 76

2026-02-28

Number of reports: 136

Distinct targets: 79

2026-03-01

Number of reports: 143

Distinct targets: 83

2026-03-02

Number of reports: 123

Distinct targets: 78

2026-03-03

Number of reports: 111

Distinct targets: 69

2026-03-04

Number of reports: 102

Distinct targets: 70

2026-03-05

Number of reports: 102

Distinct targets: 70

2026-03-09

Number of reports: 205

Distinct targets: 105

2026-03-10

Number of reports: 179

Distinct targets: 112

2026-03-11

Number of reports: 182

Distinct targets: 109

2026-03-12

Number of reports: 163

Distinct targets: 100

2026-03-13

Number of reports: 163

Distinct targets: 100

2026-03-14

Number of reports: 68

Distinct targets: 46

2026-03-21

Number of reports: 119

Distinct targets: 76

2026-03-22

Number of reports: 471

Distinct targets: 183

2026-03-23

Number of reports: 307

Distinct targets: 152

2026-03-24

Number of reports: 307

Distinct targets: 152

2026-03-25

Number of reports: 747

Distinct targets: 219

Origin AS

AS60223 - NETIFACE-AS

BGP Prefix

185.242.3.0/24

geo

Netherlands

🕑 Europe/Amsterdam

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

185.242.0.0 - 185.242.3.255

last_activity

2026-03-26 20:07:09

last_warden_event

2026-03-26 20:07:09

rep

0.5371997651599703

reserved_range

0

Shodan's InternetDB

Open ports: 22, 80, 443

Tags: self-signed

CPEs: cpe:/o:canonical:ubuntu_linux, cpe:/a:openbsd:openssh:8.9p1, cpe:/a:apache:http_server:2.4.52

ts_added

2026-02-23 23:08:51.646000

ts_last_update

2026-03-26 20:07:17.411000

Warden event timeline

DShield event timeline

Presence on blacklists