IP address

Search at other sites:
.000194.169.175.48
Shodan(more info)
Passive DNS
Tags:
IP blacklists
Spamhaus SBL
194.169.175.48 was recently listed on the Spamhaus SBL blacklist, but currently it is not.

Description: The Spamhaus Block List ("SBL") Advisory is a database of IP addresses from which Spamhaus does not recommend the acceptance of electronic mail.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-01-10 16:39:40.093000
Was present on blacklist at: 2024-11-29 16:39, 2024-12-06 16:39, 2024-12-13 16:39, 2024-12-20 16:39, 2024-12-27 16:39
Spamhaus DROP
194.169.175.48 was recently listed on the Spamhaus DROP blacklist, but currently it is not.

Description: The Spamhaus DROP (Don't Route Or Peer) lists are advisory"drop all traffic" lists. The DROP lists are a tiny subset of the SBL, designed for use by firewalls and routing equipment to filter out the malicious traffic from these netblocks.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-01-10 16:39:40.093000
Was present on blacklist at: 2024-11-29 16:39, 2024-12-06 16:39, 2024-12-13 16:39, 2024-12-20 16:39, 2024-12-27 16:39
UCEPROTECT L1
194.169.175.48 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2024-12-24 00:45:00.522000
Was present on blacklist at: 2024-11-30 00:45, 2024-11-30 08:45, 2024-11-30 16:45, 2024-12-01 00:45, 2024-12-01 08:45, 2024-12-01 16:45, 2024-12-02 00:45, 2024-12-02 08:45, 2024-12-02 16:45, 2024-12-03 00:45, 2024-12-03 08:45, 2024-12-03 16:45, 2024-12-04 00:45, 2024-12-04 08:45, 2024-12-04 16:45, 2024-12-05 00:45, 2024-12-05 08:45, 2024-12-05 16:45, 2024-12-06 00:45, 2024-12-06 08:45, 2024-12-06 16:45, 2024-12-07 00:45, 2024-12-07 08:45, 2024-12-07 16:45, 2024-12-14 08:45, 2024-12-14 16:45, 2024-12-15 00:45, 2024-12-15 08:45, 2024-12-15 16:45, 2024-12-16 00:45, 2024-12-16 08:45, 2024-12-16 16:45, 2024-12-17 00:45, 2024-12-17 08:45, 2024-12-17 16:45, 2024-12-18 00:45, 2024-12-18 08:45, 2024-12-18 16:45, 2024-12-19 00:45, 2024-12-19 08:45, 2024-12-19 16:45, 2024-12-20 00:45, 2024-12-20 08:45, 2024-12-20 16:45, 2024-12-21 00:45, 2024-12-21 08:45, 2024-12-21 16:45, 2024-12-22 00:45, 2024-12-22 08:45, 2024-12-22 16:45, 2024-12-23 00:45, 2024-12-23 08:45, 2024-12-23 16:45, 2024-12-24 00:45
Warden events (6)
2024-12-17
ReconScanning (node.368407): 1
2024-12-15
ReconScanning (node.368407): 1
2024-11-30
ReconScanning (node.368407): 2
2024-11-29
ReconScanning (node.368407): 2
DShield reports (IP summary, reports)
2024-11-29
Number of reports: 492
Distinct targets: 136
2024-11-30
Number of reports: 517
Distinct targets: 136
2024-12-13
Number of reports: 32
Distinct targets: 20
2024-12-14
Number of reports: 97
Distinct targets: 54
2024-12-15
Number of reports: 185
Distinct targets: 52
2024-12-16
Number of reports: 169
Distinct targets: 47
OTX pulses
[6749dd6a9591126a8d7b5630] 2024-11-29 15:27:38.205000 | RDP honeypot logs for 2024/11/29
Author name:jnazario
Pulse modified:2024-11-29 15:27:38.205000
Indicator created:2024-11-29 15:27:39
Indicator role:None
Indicator title:
Indicator expiration:2024-12-29 15:00:00
[675da2c863043c9440a7149a] 2024-12-14 15:22:48.030000 | RDP honeypot logs for 2024/12/14
Author name:jnazario
Pulse modified:2024-12-14 15:22:48.030000
Indicator created:2024-12-14 15:22:48
Indicator role:None
Indicator title:
Indicator expiration:2025-01-13 15:00:00
Origin AS
AS211760 - AS-SUISSE
AS216419 -
AS209605 - hostbaltic
BGP Prefix
194.169.175.0/24
geo
Bulgaria
🕑 Europe/Sofia
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
194.169.175.0 - 194.169.175.255
last_activity
2024-12-17 01:52:00
last_warden_event
2024-12-17 01:52:00
rep
0.0
reserved_range
0
Shodan's InternetDB
Open ports: 135, 139, 445, 3389, 5985
Tags: self-signed
CPEs:
ts_added
2024-11-29 16:39:36.108000
ts_last_update
2025-01-14 16:39:40.323000

Warden event timeline

DShield event timeline

Presence on blacklists

OTX pulses