IP address

Search at other sites:

.000204.44.119.241204.44.119.241.static.quadranet.com

Shodan(more info)

Passive DNS

IP blacklists

DataPlane TELNET login

204.44.119.241 is listed on the DataPlane TELNET login blacklist.

Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IPs trying<br>an unsolicited login via TELNET password authentication.
Type of feed: primary (feed detail page)

Last checked at: 2025-11-10 03:10:02.140000
Was present on blacklist at: 2025-11-01 07:10, 2025-11-01 11:10, 2025-11-01 15:10, 2025-11-01 19:10, 2025-11-01 23:10, 2025-11-02 03:10, 2025-11-02 07:10, 2025-11-02 11:10, 2025-11-02 15:10, 2025-11-02 19:10, 2025-11-02 23:10, 2025-11-03 03:10, 2025-11-03 07:10, 2025-11-03 11:10, 2025-11-03 15:10, 2025-11-03 19:10, 2025-11-03 23:10, 2025-11-04 03:10, 2025-11-04 07:10, 2025-11-04 11:10, 2025-11-04 15:10, 2025-11-04 19:10, 2025-11-04 23:10, 2025-11-05 03:10, 2025-11-05 07:10, 2025-11-05 11:10, 2025-11-05 15:10, 2025-11-05 19:10, 2025-11-05 23:10, 2025-11-06 03:10, 2025-11-06 07:10, 2025-11-06 11:10, 2025-11-06 15:10, 2025-11-06 19:10, 2025-11-06 23:10, 2025-11-07 03:10, 2025-11-07 07:10, 2025-11-07 11:10, 2025-11-07 15:10, 2025-11-07 19:10, 2025-11-07 23:10, 2025-11-08 03:10, 2025-11-08 07:10, 2025-11-08 11:10, 2025-11-08 15:10, 2025-11-08 19:10, 2025-11-08 23:10, 2025-11-09 03:10, 2025-11-09 07:10, 2025-11-09 11:10, 2025-11-09 15:10, 2025-11-09 19:10, 2025-11-09 23:10, 2025-11-10 03:10

blocklist.de web-login

204.44.119.241 is listed on the blocklist.de web-login blacklist.

Description: Blocklist.de feed is a free and voluntary service provided<br>by a Fraud/Abuse-specialist. IPs that attacks Joomla, Wordpress and<br>other Web-Logins with Brute-Force Logins.
Type of feed: primary (feed detail page)

Last checked at: 2025-11-01 23:05:05.505000
Was present on blacklist at: 2025-11-01 11:05, 2025-11-01 17:05, 2025-11-01 23:05

blocklist.de Apache

204.44.119.241 is listed on the blocklist.de Apache blacklist.

Description: Blocklist.de feed is a free and voluntary service provided<br>by a Fraud/Abuse-specialist. IPs performing attacks on the service<br>Apache, Apache-DDOS, RFI-Attacks.
Type of feed: primary (feed detail page)

Last checked at: 2025-11-01 23:05:05.590000
Was present on blacklist at: 2025-11-01 11:05, 2025-11-01 17:05, 2025-11-01 23:05

DataPlane SSH login

204.44.119.241 is listed on the DataPlane SSH login blacklist.

Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IPs trying<br>an unsolicited login to a host using SSH password authentication.
Type of feed: primary (feed detail page)

Last checked at: 2025-11-10 15:10:02.016000
Was present on blacklist at: 2025-11-01 15:10, 2025-11-01 19:10, 2025-11-02 03:10, 2025-11-02 07:10, 2025-11-02 15:10, 2025-11-02 19:10, 2025-11-03 03:10, 2025-11-03 07:10, 2025-11-03 15:10, 2025-11-03 19:10, 2025-11-04 03:10, 2025-11-04 07:10, 2025-11-04 15:10, 2025-11-04 19:10, 2025-11-05 03:10, 2025-11-05 07:10, 2025-11-05 15:10, 2025-11-05 19:10, 2025-11-06 03:10, 2025-11-06 07:10, 2025-11-06 15:10, 2025-11-06 19:10, 2025-11-07 03:10, 2025-11-07 07:10, 2025-11-07 19:10, 2025-11-08 03:10, 2025-11-08 07:10, 2025-11-08 15:10, 2025-11-08 19:10, 2025-11-09 03:10, 2025-11-09 07:10, 2025-11-09 15:10, 2025-11-09 19:10, 2025-11-10 03:10, 2025-11-10 07:10, 2025-11-10 15:10

CI Army

204.44.119.241 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-11-08 03:50:01.021000
Was present on blacklist at: 2025-11-02 03:50, 2025-11-03 03:50, 2025-11-04 03:50, 2025-11-05 03:50, 2025-11-06 03:50, 2025-11-07 03:50, 2025-11-08 03:50

AbuseIPDB

204.44.119.241 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-11-08 05:00:00.664000
Was present on blacklist at: 2025-11-02 05:00, 2025-11-03 05:00, 2025-11-04 05:00, 2025-11-05 05:00, 2025-11-06 05:00, 2025-11-07 05:00, 2025-11-08 05:00

blocklist.de SSH

204.44.119.241 is listed on the blocklist.de SSH blacklist.

Description: Blocklist.de feed is a free and voluntary service provided<br>by a Fraud/Abuse-specialist. IPs performing SSH attacks.
Type of feed: primary (feed detail page)

Last checked at: 2025-11-05 11:05:05.309000
Was present on blacklist at: 2025-11-02 05:05, 2025-11-02 11:05, 2025-11-02 17:05, 2025-11-02 23:05, 2025-11-03 05:05, 2025-11-03 11:05, 2025-11-03 17:05, 2025-11-03 23:05, 2025-11-04 05:05, 2025-11-04 11:05, 2025-11-04 17:05, 2025-11-04 23:05, 2025-11-05 05:05, 2025-11-05 11:05

UCEPROTECT L1

204.44.119.241 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-11-09 16:45:00.684000
Was present on blacklist at: 2025-11-02 08:45, 2025-11-02 16:45, 2025-11-03 00:45, 2025-11-03 08:45, 2025-11-03 16:45, 2025-11-04 00:45, 2025-11-04 08:45, 2025-11-04 16:45, 2025-11-05 00:45, 2025-11-05 08:45, 2025-11-05 16:45, 2025-11-06 00:45, 2025-11-06 08:45, 2025-11-06 16:45, 2025-11-07 00:45, 2025-11-07 08:45, 2025-11-07 16:45, 2025-11-08 00:45, 2025-11-08 08:45, 2025-11-08 16:45, 2025-11-09 00:45, 2025-11-09 08:45, 2025-11-09 16:45

Turris greylist

204.44.119.241 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-11-04 22:15:00.192000
Was present on blacklist at: 2025-11-02 22:15, 2025-11-03 22:15, 2025-11-04 22:15

Spamhaus XBL CBL

204.44.119.241 was recently listed on the Spamhaus XBL CBL blacklist, but currently it is not.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-11-15 06:06:10.415000
Was present on blacklist at: 2025-11-08 06:06

Warden events (134455)

2025-11-03

IntrusionUserCompromise (node.cfb4f7): 20032

ReconScanning (node.4dc198): 188

ReconScanning (node.9c1411): 59

AttemptLogin (node.e1f86c): 1

AttemptLogin (node.7c0a3c): 1

AttemptLogin (node.e47683): 1

AttemptLogin (node.03e7a9): 1

2025-11-02

IntrusionUserCompromise (node.cfb4f7): 68020

ReconScanning (node.4dc198): 278

ReconScanning (node.9c1411): 73

AttemptLogin (node.ce2b59): 1

AttemptLogin (node.00aee5): 1

AttemptLogin (node.b17ef8): 1

AttemptLogin (node.03e7a9): 1

AttemptLogin (node.40929a): 1

2025-11-01

ReconScanning (node.4dc198): 114

ReconScanning (node.9c1411): 52

IntrusionUserCompromise (node.cfb4f7): 45626

AttemptLogin (node.ce2b59): 2

AttemptLogin (node.03e7a9): 2

DShield reports (IP summary, reports)

2025-11-01

Number of reports: 503

Distinct targets: 155

2025-11-02

Number of reports: 503

Distinct targets: 155

2025-11-03

Number of reports: 590

Distinct targets: 203

2025-11-04

Number of reports: 590

Distinct targets: 203

Origin AS

AS136258 - ONEPROVIDER-AS

BGP Prefix

204.44.119.0/24

geo

United States, Atlanta

🕑 America/New_York

hostname

204.44.119.241.static.quadranet.com

hostname_class

['ip_in_hostname', 'static']

Address block ('inetnum' or 'NetRange' in whois database)

204.44.64.0 - 204.44.127.255

last_activity

2025-11-03 16:58:06

last_warden_event

2025-11-03 16:58:06

rep

0.0

reserved_range

0

ts_added

2025-11-01 06:06:09.750000

ts_last_update

2025-11-19 06:06:10.016000

Warden event timeline

DShield event timeline

Presence on blacklists