IP address

Search at other sites:
.00051.158.55.112332dbb77-4786-4c15-86a1-f3d3f8e10afc.fr-par-2.baremetal.scw.cloud
Shodan(more info)
Passive DNS
Tags: Scanner
IP blacklists
CI Army
51.158.55.112 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2024-11-30 03:50:00.909000
Was present on blacklist at: 2024-11-23 03:50, 2024-11-24 03:50, 2024-11-25 03:50, 2024-11-26 03:50, 2024-11-27 03:50, 2024-11-28 03:50, 2024-11-29 03:50, 2024-11-30 03:50
Turris greylist
51.158.55.112 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2024-12-18 22:15:00.180000
Was present on blacklist at: 2024-11-23 22:15, 2024-11-24 22:15, 2024-11-26 22:15, 2024-11-28 22:15, 2024-12-04 22:15, 2024-12-06 22:15, 2024-12-08 22:15, 2024-12-09 22:15, 2024-12-13 22:15, 2024-12-14 22:15, 2024-12-18 22:15
AbuseIPDB
51.158.55.112 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2024-12-06 05:00:00.399000
Was present on blacklist at: 2024-11-24 05:00, 2024-11-26 05:00, 2024-12-06 05:00
Warden events (299)
2024-11-24
ReconScanning (node.f90c6b): 76
2024-11-23
AnomalyTraffic (node.ffe95c): 4
ReconScanning (node.86eb21): 135
ReconScanning (node.f90c6b): 29
2024-11-22
ReconScanning (node.f90c6b): 33
2024-11-21
ReconScanning (node.ce2b59): 3
ReconScanning (node.f90c6b): 19
DShield reports (IP summary, reports)
2024-11-21
Number of reports: 564
Distinct targets: 428
2024-11-22
Number of reports: 4255
Distinct targets: 2435
2024-11-23
Number of reports: 4808
Distinct targets: 3689
2024-11-24
Number of reports: 5926
Distinct targets: 3784
2024-11-25
Number of reports: 8541
Distinct targets: 5876
2024-11-26
Number of reports: 193
Distinct targets: 193
2024-11-27
Number of reports: 110
Distinct targets: 110
2024-11-28
Number of reports: 14
Distinct targets: 14
2024-11-29
Number of reports: 59591
Distinct targets: 59591
2024-12-01
Number of reports: 3868
Distinct targets: 2074
2024-12-02
Number of reports: 94
Distinct targets: 94
2024-12-03
Number of reports: 72
Distinct targets: 72
2024-12-06
Number of reports: 370
Distinct targets: 370
2024-12-07
Number of reports: 85
Distinct targets: 85
2024-12-08
Number of reports: 3427
Distinct targets: 1726
2024-12-10
Number of reports: 78
Distinct targets: 78
2024-12-12
Number of reports: 305
Distinct targets: 305
2024-12-13
Number of reports: 77
Distinct targets: 77
2024-12-14
Number of reports: 3021
Distinct targets: 2367
2024-12-16
Number of reports: 160
Distinct targets: 80
2024-12-17
Number of reports: 78
Distinct targets: 78
2024-12-18
Number of reports: 176
Distinct targets: 176
2024-12-19
Number of reports: 404
Distinct targets: 202
2024-12-20
Number of reports: 7420
Distinct targets: 3811
2024-12-21
Number of reports: 3610
Distinct targets: 1906
OTX pulses
[606d75c11c08ff94089a9430] 2021-04-07 09:05:05.353000 | Georgs Honeypot
Author name:georgengelmann
Pulse modified:2024-12-20 09:02:01.913000
Indicator created:2024-12-09 07:20:07
Indicator role:bruteforce
Indicator title:SSH intrusion attempt from 332dbb77-4786-4c15-86a1-f3d3f8e10afc.fr-par-2.baremetal.scw.cloud port 43550
Indicator expiration:2025-01-08 07:00:00
Origin AS
AS12876 - AS12876
BGP Prefix
51.158.0.0/15
geo
France, Paris
🕑 Europe/Paris
hostname
332dbb77-4786-4c15-86a1-f3d3f8e10afc.fr-par-2.baremetal.scw.cloud
Address block ('inetnum' or 'NetRange' in whois database)
51.158.0.0 - 51.159.255.255
last_activity
2024-12-20 12:34:14.581000
last_warden_event
2024-11-24 14:04:50
rep
0.0
reserved_range
0
Shodan's InternetDB
Open ports: 22, 80
Tags: eol-product
CPEs: cpe:/o:linux:linux_kernel, cpe:/a:openbsd:openssh:7.9p1, cpe:/o:debian:debian_linux, cpe:/a:f5:nginx:1.14.2
ts_added
2024-11-21 20:00:32.015000
ts_last_update
2024-12-22 05:06:45.274000

Warden event timeline

DShield event timeline

Presence on blacklists

OTX pulses