IP address

Search at other sites:

.274109.205.213.113

Shodan(more info)

Passive DNS

IP blacklists

Spamhaus PBL ISP

109.205.213.113 is listed on the Spamhaus PBL ISP blacklist.

Description: The Spamhaus PBL is a DNSBL database of end-user IP address ranges which should not be delivering unauthenticated SMTP email to any Internet mail server except those provided for specifically by an ISP for that customer's use.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-04-30 23:34:10.047000
Was present on blacklist at: 2025-04-09 23:34, 2025-04-16 23:34, 2025-04-23 23:34, 2025-04-30 23:34

CI Army

109.205.213.113 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-05-02 02:50:00.818000
Was present on blacklist at: 2025-04-10 02:50, 2025-04-11 02:50, 2025-04-12 02:50, 2025-04-13 02:50, 2025-04-14 02:50, 2025-04-15 02:50, 2025-04-16 02:50, 2025-04-17 02:50, 2025-04-18 02:50, 2025-04-19 02:50, 2025-04-20 02:50, 2025-04-21 02:50, 2025-04-22 02:50, 2025-04-23 02:50, 2025-04-24 02:50, 2025-04-25 02:50, 2025-04-26 02:50, 2025-04-27 02:50, 2025-04-28 02:50, 2025-04-29 02:50, 2025-04-30 02:50, 2025-05-01 02:50, 2025-05-02 02:50

AbuseIPDB

109.205.213.113 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-04-28 04:00:00.712000
Was present on blacklist at: 2025-04-10 04:00, 2025-04-11 04:00, 2025-04-12 04:00, 2025-04-13 04:00, 2025-04-14 04:00, 2025-04-15 04:00, 2025-04-16 04:00, 2025-04-17 04:00, 2025-04-18 04:00, 2025-04-22 04:00, 2025-04-23 04:00, 2025-04-24 04:00, 2025-04-25 04:00, 2025-04-26 04:00, 2025-04-27 04:00, 2025-04-28 04:00

Turris greylist

109.205.213.113 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-04-28 21:15:00.206000
Was present on blacklist at: 2025-04-12 21:15, 2025-04-13 21:15, 2025-04-15 21:15, 2025-04-16 21:15, 2025-04-17 21:15, 2025-04-24 21:15, 2025-04-25 21:15, 2025-04-26 21:15, 2025-04-28 21:15

Warden events (7265)

2025-04-27

ReconScanning (node.368407): 273

ReconScanning (node.4dc198): 283

2025-04-26

ReconScanning (node.4dc198): 293

ReconScanning (node.368407): 287

2025-04-25

ReconScanning (node.4dc198): 291

ReconScanning (node.368407): 276

AnomalyTraffic (node.ffe95c): 1

2025-04-24

ReconScanning (node.368407): 255

ReconScanning (node.4dc198): 295

AnomalyTraffic (node.ffe95c): 3

2025-04-23

ReconScanning (node.368407): 284

ReconScanning (node.4dc198): 287

ReconScanning (node.5f02e7): 2

2025-04-22

ReconScanning (node.368407): 286

ReconScanning (node.4dc198): 290

AnomalyTraffic (node.ffe95c): 1

2025-04-21

ReconScanning (node.368407): 20

ReconScanning (node.4dc198): 20

AnomalyTraffic (node.ffe95c): 3

2025-04-16

ReconScanning (node.368407): 158

ReconScanning (node.4dc198): 170

2025-04-15

ReconScanning (node.4dc198): 288

ReconScanning (node.368407): 282

ReconScanning (node.9c1411): 1

2025-04-14

ReconScanning (node.4dc198): 287

ReconScanning (node.368407): 274

ReconScanning (node.9c1411): 2

2025-04-13

ReconScanning (node.368407): 275

ReconScanning (node.4dc198): 289

ReconScanning (node.9c1411): 2

2025-04-12

ReconScanning (node.368407): 286

ReconScanning (node.4dc198): 288

2025-04-11

ReconScanning (node.9c1411): 32

ReconScanning (node.4dc198): 287

ReconScanning (node.368407): 287

ReconScanning (node.5f02e7): 1

2025-04-10

ReconScanning (node.4dc198): 288

ReconScanning (node.368407): 281

ReconScanning (node.9c1411): 25

2025-04-09

ReconScanning (node.368407): 6

ReconScanning (node.4dc198): 6

DShield reports (IP summary, reports)

2025-04-09

Number of reports: 99

Distinct targets: 91

2025-04-10

Number of reports: 5322

Distinct targets: 4645

2025-04-11

Number of reports: 7696

Distinct targets: 5146

2025-04-12

Number of reports: 7924

Distinct targets: 5230

2025-04-13

Number of reports: 5241

Distinct targets: 4636

2025-04-14

Number of reports: 5009

Distinct targets: 4405

2025-04-15

Number of reports: 5071

Distinct targets: 4476

2025-04-16

Number of reports: 4453

Distinct targets: 2892

2025-04-21

Number of reports: 384

Distinct targets: 296

2025-04-22

Number of reports: 5595

Distinct targets: 4610

2025-04-23

Number of reports: 7234

Distinct targets: 4743

2025-04-24

Number of reports: 7479

Distinct targets: 4869

2025-04-25

Number of reports: 5326

Distinct targets: 4390

2025-04-26

Number of reports: 5009

Distinct targets: 4046

2025-04-27

Number of reports: 6544

Distinct targets: 4265

Origin AS

AS23470 - RELIABLESITE

AS19318 - NJIIX-AS-1

BGP Prefix

109.205.213.0/24

geo

Azerbaijan

🕑 Asia/Baku

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

109.205.208.0 - 109.205.215.255

last_activity

2025-04-27 23:24:51

last_warden_event

2025-04-27 23:24:51

rep

0.27380952380952384

reserved_range

0

Shodan's InternetDB

Open ports: 3389, 5357, 5985

Tags: self-signed

CPEs: –

ts_added

2025-04-09 23:34:06.631000

ts_last_update

2025-05-03 23:34:10.210000

Warden event timeline

DShield event timeline

Presence on blacklists