IP address

Search at other sites:

.575194.164.107.6

Shodan(more info)

Passive DNS

IP blacklists

CI Army

194.164.107.6 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-02-08 03:50:01.011000
Was present on blacklist at: 2025-01-24 03:50, 2025-01-25 03:50, 2025-01-26 03:50, 2025-01-27 03:50, 2025-01-28 03:50, 2025-01-29 03:50, 2025-01-31 03:50, 2025-02-01 03:50, 2025-02-02 03:50, 2025-02-03 03:50, 2025-02-04 03:50, 2025-02-05 03:50, 2025-02-06 03:50, 2025-02-07 03:50, 2025-02-08 03:50

DataPlane SSH conn

194.164.107.6 is listed on the DataPlane SSH conn blacklist.

Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IP addresses that<br>has been seen initiating an unsolicited SSH connection to a remote host.
Type of feed: primary (feed detail page)

Last checked at: 2025-02-08 07:10:01.706000
Was present on blacklist at: 2025-01-24 07:10, 2025-01-24 11:10, 2025-01-24 15:10, 2025-01-24 19:10, 2025-01-24 23:10, 2025-01-25 03:10, 2025-01-25 07:10, 2025-01-25 11:10, 2025-01-25 15:10, 2025-01-25 19:10, 2025-01-25 23:10, 2025-01-26 03:10, 2025-01-26 07:10, 2025-01-26 11:10, 2025-01-26 15:10, 2025-01-26 19:10, 2025-01-26 23:10, 2025-01-27 03:10, 2025-01-27 07:10, 2025-01-27 11:10, 2025-01-27 15:10, 2025-01-27 19:10, 2025-01-27 23:10, 2025-01-28 03:10, 2025-01-28 07:10, 2025-01-28 11:10, 2025-01-28 15:10, 2025-01-28 19:10, 2025-01-28 23:10, 2025-01-29 03:10, 2025-01-29 07:10, 2025-01-29 11:10, 2025-01-29 15:10, 2025-01-29 19:10, 2025-01-29 23:10, 2025-01-30 03:10, 2025-01-30 07:10, 2025-01-30 11:10, 2025-01-30 15:10, 2025-01-30 19:10, 2025-01-30 23:10, 2025-01-31 03:10, 2025-01-31 07:10, 2025-01-31 11:10, 2025-01-31 15:10, 2025-01-31 19:10, 2025-01-31 23:10, 2025-02-01 03:10, 2025-02-01 07:10, 2025-02-01 11:10, 2025-02-01 15:10, 2025-02-01 19:10, 2025-02-01 23:10, 2025-02-02 03:10, 2025-02-02 07:10, 2025-02-02 11:10, 2025-02-02 15:10, 2025-02-02 19:10, 2025-02-02 23:10, 2025-02-03 03:10, 2025-02-03 07:10, 2025-02-03 11:10, 2025-02-03 15:10, 2025-02-03 19:10, 2025-02-03 23:10, 2025-02-04 03:10, 2025-02-04 07:10, 2025-02-04 11:10, 2025-02-04 15:10, 2025-02-04 19:10, 2025-02-04 23:10, 2025-02-05 03:10, 2025-02-05 07:10, 2025-02-05 11:10, 2025-02-05 15:10, 2025-02-05 19:10, 2025-02-05 23:10, 2025-02-06 03:10, 2025-02-06 07:10, 2025-02-06 11:10, 2025-02-06 15:10, 2025-02-06 19:10, 2025-02-06 23:10, 2025-02-07 03:10, 2025-02-07 07:10, 2025-02-07 11:10, 2025-02-07 15:10, 2025-02-07 19:10, 2025-02-07 23:10, 2025-02-08 03:10, 2025-02-08 07:10

UCEPROTECT L1

194.164.107.6 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-02-08 08:45:00.523000
Was present on blacklist at: 2025-01-24 08:45, 2025-01-24 16:45, 2025-01-25 00:45, 2025-01-25 08:45, 2025-01-25 16:45, 2025-01-26 00:45, 2025-01-26 08:45, 2025-01-26 16:45, 2025-01-27 00:45, 2025-01-27 08:45, 2025-01-27 16:45, 2025-01-28 00:45, 2025-01-28 08:45, 2025-01-28 16:45, 2025-01-29 00:45, 2025-01-29 08:45, 2025-01-29 16:45, 2025-01-30 00:45, 2025-01-30 08:45, 2025-01-30 16:45, 2025-01-31 00:45, 2025-01-31 08:45, 2025-01-31 16:45, 2025-02-01 00:45, 2025-02-01 08:45, 2025-02-01 16:45, 2025-02-02 00:45, 2025-02-02 08:45, 2025-02-02 16:45, 2025-02-03 00:45, 2025-02-03 08:45, 2025-02-03 16:45, 2025-02-04 00:45, 2025-02-04 08:45, 2025-02-04 16:45, 2025-02-05 00:45, 2025-02-05 08:45, 2025-02-05 16:45, 2025-02-06 00:45, 2025-02-06 08:45, 2025-02-06 16:45, 2025-02-07 00:45, 2025-02-07 08:45, 2025-02-07 16:45, 2025-02-08 00:45, 2025-02-08 08:45

AbuseIPDB

194.164.107.6 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-02-08 05:00:00.326000
Was present on blacklist at: 2025-01-25 05:00, 2025-01-26 05:00, 2025-01-27 05:00, 2025-01-28 05:00, 2025-01-29 05:00, 2025-01-30 05:00, 2025-01-31 05:00, 2025-02-01 05:00, 2025-02-02 05:00, 2025-02-03 05:00, 2025-02-04 05:00, 2025-02-05 05:00, 2025-02-06 05:00, 2025-02-07 05:00, 2025-02-08 05:00

Turris greylist

194.164.107.6 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-02-07 22:15:00.164000
Was present on blacklist at: 2025-01-25 22:15, 2025-01-26 22:15, 2025-01-27 22:15, 2025-01-28 22:15, 2025-01-29 22:15, 2025-01-30 22:15, 2025-01-31 22:15, 2025-02-01 22:15, 2025-02-02 22:15, 2025-02-03 22:15, 2025-02-04 22:15, 2025-02-05 22:15, 2025-02-06 22:15, 2025-02-07 22:15

Warden events (189)

2025-02-08

IntrusionUserCompromise (node.cfb4f7): 3

2025-02-07

IntrusionUserCompromise (node.cfb4f7): 15

2025-02-06

IntrusionUserCompromise (node.cfb4f7): 18

ReconScanning (node.368407): 5

2025-02-05

IntrusionUserCompromise (node.cfb4f7): 12

2025-02-04

IntrusionUserCompromise (node.cfb4f7): 12

ReconScanning (node.90bbae): 1

2025-02-03

IntrusionUserCompromise (node.cfb4f7): 15

2025-02-02

IntrusionUserCompromise (node.cfb4f7): 6

ReconScanning (node.368407): 1

2025-02-01

IntrusionUserCompromise (node.cfb4f7): 9

2025-01-31

IntrusionUserCompromise (node.cfb4f7): 3

2025-01-30

IntrusionUserCompromise (node.cfb4f7): 15

2025-01-29

IntrusionUserCompromise (node.cfb4f7): 12

ReconScanning (node.368407): 2

2025-01-28

ReconScanning (node.368407): 1

IntrusionUserCompromise (node.cfb4f7): 9

2025-01-27

IntrusionUserCompromise (node.cfb4f7): 18

2025-01-26

IntrusionUserCompromise (node.cfb4f7): 3

2025-01-25

ReconScanning (node.368407): 1

IntrusionUserCompromise (node.cfb4f7): 9

2025-01-24

ReconScanning (node.368407): 1

IntrusionUserCompromise (node.cfb4f7): 18

DShield reports (IP summary, reports)

2025-01-24

Number of reports: 767

Distinct targets: 498

2025-01-25

Number of reports: 800

Distinct targets: 486

2025-01-26

Number of reports: 844

Distinct targets: 507

2025-01-27

Number of reports: 882

Distinct targets: 548

2025-01-28

Number of reports: 698

Distinct targets: 444

2025-01-29

Number of reports: 812

Distinct targets: 490

2025-01-30

Number of reports: 786

Distinct targets: 516

2025-01-31

Number of reports: 910

Distinct targets: 565

2025-02-01

Number of reports: 927

Distinct targets: 568

2025-02-02

Number of reports: 952

Distinct targets: 592

2025-02-03

Number of reports: 843

Distinct targets: 519

2025-02-04

Number of reports: 693

Distinct targets: 451

2025-02-05

Number of reports: 585

Distinct targets: 510

2025-02-06

Number of reports: 802

Distinct targets: 480

2025-02-07

Number of reports: 746

Distinct targets: 469

OTX pulses

[67963bd210d0fe01258b4b8b] 2025-01-26 13:42:42.806000 | Redis honeypot logs for 2025-01-26

Author name:	jnazario
Pulse modified:	2025-01-26 13:42:42.806000
Indicator created:	2025-01-26 13:42:43
Indicator role:	None
Indicator title:
Indicator expiration:	2025-02-25 13:00:00

[602bc528f447d628d41494f2] 2021-02-16 13:14:16.945000 | Ka's Honeypot visitors

Author name:	Kapppppa
Pulse modified:	2025-02-08 07:37:58.170000
Indicator created:	2025-01-29 03:53:57
Indicator role:	bruteforce
Indicator title:	Telnet Login attempt
Indicator expiration:	2025-02-28 03:00:00

Origin AS

AS50219 -

BGP Prefix

194.164.107.0/24

geo

United States

🕑 America/Chicago

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

194.164.106.0 - 194.164.107.255

last_activity

2025-02-08 08:33:15.403000

last_warden_event

2025-02-08 05:34:05

rep

0.5750355675106957

reserved_range

0

ts_added

2025-01-24 00:39:29.389000

ts_last_update

2025-02-08 08:56:04.391000

Warden event timeline

DShield event timeline

Presence on blacklists

OTX pulses