IP address

Search at other sites:

.115124.198.131.145

Shodan(more info)

Passive DNS

IP blacklists

CI Army

124.198.131.145 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-10-03 02:50:01.015000
Was present on blacklist at: 2025-09-04 02:50, 2025-09-05 02:50, 2025-09-06 02:50, 2025-09-07 02:50, 2025-09-08 02:50, 2025-09-09 02:50, 2025-09-10 02:50, 2025-09-11 02:50, 2025-09-12 02:50, 2025-09-13 02:50, 2025-09-14 02:50, 2025-09-15 02:50, 2025-09-16 02:50, 2025-09-17 02:50, 2025-09-18 02:50, 2025-09-19 02:50, 2025-09-20 02:50, 2025-09-21 02:50, 2025-09-22 02:50, 2025-09-23 02:50, 2025-09-24 02:50, 2025-09-25 02:50, 2025-09-26 02:50, 2025-09-27 02:50, 2025-09-28 02:50, 2025-09-29 02:50, 2025-09-30 02:50, 2025-10-01 02:50, 2025-10-02 02:50, 2025-10-03 02:50

AbuseIPDB

124.198.131.145 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-10-12 04:00:00.594000
Was present on blacklist at: 2025-09-04 04:00, 2025-09-05 04:00, 2025-09-06 04:00, 2025-09-07 04:00, 2025-09-08 04:00, 2025-09-09 04:00, 2025-09-10 04:00, 2025-09-11 04:00, 2025-09-12 04:00, 2025-09-13 04:00, 2025-09-14 04:00, 2025-09-15 04:00, 2025-09-16 04:00, 2025-09-17 04:00, 2025-09-18 04:00, 2025-09-19 04:00, 2025-09-20 04:00, 2025-09-21 04:00, 2025-09-22 04:00, 2025-09-23 04:00, 2025-09-24 04:00, 2025-09-25 04:00, 2025-09-26 04:00, 2025-09-27 04:00, 2025-09-28 04:00, 2025-09-29 04:00, 2025-09-30 04:00, 2025-10-01 04:00, 2025-10-02 04:00, 2025-10-03 04:00, 2025-10-04 04:00, 2025-10-05 04:00, 2025-10-06 04:00, 2025-10-07 04:00, 2025-10-08 04:00, 2025-10-09 04:00, 2025-10-10 04:00, 2025-10-11 04:00, 2025-10-12 04:00

Turris greylist

124.198.131.145 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-10-04 21:15:00.175000
Was present on blacklist at: 2025-09-04 21:15, 2025-09-05 21:15, 2025-09-06 21:15, 2025-09-07 21:15, 2025-09-08 21:15, 2025-09-09 21:15, 2025-09-10 21:15, 2025-09-11 21:15, 2025-09-12 21:15, 2025-09-13 21:15, 2025-09-14 21:15, 2025-09-15 21:15, 2025-09-16 21:15, 2025-09-17 21:15, 2025-09-18 21:15, 2025-09-19 21:15, 2025-09-20 21:15, 2025-09-21 21:15, 2025-09-22 21:15, 2025-09-23 21:15, 2025-09-24 21:15, 2025-09-25 21:15, 2025-09-26 21:15, 2025-09-27 21:15, 2025-09-28 21:15, 2025-09-29 21:15, 2025-09-30 21:15, 2025-10-01 21:15, 2025-10-02 21:15, 2025-10-03 21:15, 2025-10-04 21:15

Spamhaus XBL CBL

124.198.131.145 is listed on the Spamhaus XBL CBL blacklist.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-10-08 15:34:44.773000
Was present on blacklist at: 2025-09-10 15:23, 2025-09-17 15:23, 2025-09-24 15:23, 2025-10-01 15:23, 2025-10-08 15:34

UCEPROTECT L1

124.198.131.145 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-09-30 23:45:00.712000
Was present on blacklist at: 2025-09-23 07:45, 2025-09-23 15:45, 2025-09-23 23:45, 2025-09-24 07:45, 2025-09-24 15:45, 2025-09-24 23:45, 2025-09-25 07:45, 2025-09-25 15:45, 2025-09-25 23:45, 2025-09-26 07:45, 2025-09-26 15:45, 2025-09-26 23:45, 2025-09-27 07:45, 2025-09-27 15:45, 2025-09-27 23:45, 2025-09-28 07:45, 2025-09-28 15:45, 2025-09-28 23:45, 2025-09-29 07:45, 2025-09-29 15:45, 2025-09-29 23:45, 2025-09-30 07:45, 2025-09-30 15:45, 2025-09-30 23:45

Warden events (18412)

2025-10-03

ReconScanning (node.4dc198): 118

ReconScanning (node.368407): 120

2025-10-02

ReconScanning (node.368407): 244

ReconScanning (node.4dc198): 242

IntrusionUserCompromise (node.cfb4f7): 9

2025-10-01

ReconScanning (node.368407): 143

ReconScanning (node.4dc198): 146

IntrusionUserCompromise (node.cfb4f7): 249

2025-09-30

ReconScanning (node.4dc198): 197

ReconScanning (node.368407): 190

2025-09-29

ReconScanning (node.368407): 73

ReconScanning (node.4dc198): 73

2025-09-28

ReconScanning (node.368407): 244

ReconScanning (node.4dc198): 252

2025-09-27

ReconScanning (node.4dc198): 266

ReconScanning (node.368407): 270

2025-09-26

ReconScanning (node.368407): 252

ReconScanning (node.4dc198): 248

IntrusionUserCompromise (node.cfb4f7): 27

2025-09-25

ReconScanning (node.4dc198): 274

ReconScanning (node.368407): 268

IntrusionUserCompromise (node.cfb4f7): 56

2025-09-24

ReconScanning (node.4dc198): 246

ReconScanning (node.368407): 246

AnomalyTraffic (node.ffe95c): 1

2025-09-23

ReconScanning (node.4dc198): 234

ReconScanning (node.368407): 239

IntrusionUserCompromise (node.cfb4f7): 39

2025-09-22

ReconScanning (node.368407): 250

ReconScanning (node.4dc198): 253

IntrusionUserCompromise (node.cfb4f7): 78

2025-09-21

ReconScanning (node.368407): 265

ReconScanning (node.4dc198): 266

2025-09-20

ReconScanning (node.4dc198): 244

ReconScanning (node.368407): 244

2025-09-19

ReconScanning (node.368407): 257

ReconScanning (node.4dc198): 266

IntrusionUserCompromise (node.cfb4f7): 18

2025-09-18

ReconScanning (node.4dc198): 288

ReconScanning (node.368407): 278

IntrusionUserCompromise (node.cfb4f7): 118

2025-09-17

ReconScanning (node.4dc198): 275

ReconScanning (node.368407): 275

AnomalyTraffic (node.ffe95c): 5

AnomalyTraffic (node.86dac8): 3

2025-09-16

ReconScanning (node.4dc198): 271

ReconScanning (node.368407): 271

IntrusionUserCompromise (node.cfb4f7): 421

2025-09-15

ReconScanning (node.368407): 287

ReconScanning (node.4dc198): 280

2025-09-14

ReconScanning (node.4dc198): 272

ReconScanning (node.368407): 264

IntrusionUserCompromise (node.cfb4f7): 149

2025-09-13

ReconScanning (node.368407): 271

ReconScanning (node.4dc198): 269

AnomalyTraffic (node.ffe95c): 5

2025-09-12

ReconScanning (node.4dc198): 273

ReconScanning (node.368407): 280

AnomalyTraffic (node.ffe95c): 1

2025-09-11

ReconScanning (node.368407): 286

ReconScanning (node.4dc198): 285

IntrusionUserCompromise (node.cfb4f7): 669

2025-09-10

ReconScanning (node.4dc198): 257

ReconScanning (node.368407): 263

IntrusionUserCompromise (node.cfb4f7): 20

2025-09-09

ReconScanning (node.368407): 282

ReconScanning (node.4dc198): 282

IntrusionUserCompromise (node.cfb4f7): 96

AnomalyTraffic (node.ffe95c): 4

2025-09-08

ReconScanning (node.368407): 258

ReconScanning (node.4dc198): 255

IntrusionUserCompromise (node.cfb4f7): 52

2025-09-07

ReconScanning (node.368407): 252

IntrusionUserCompromise (node.cfb4f7): 138

ReconScanning (node.4dc198): 266

2025-09-06

ReconScanning (node.368407): 285

ReconScanning (node.4dc198): 290

IntrusionUserCompromise (node.cfb4f7): 104

2025-09-05

ReconScanning (node.4dc198): 279

ReconScanning (node.368407): 268

IntrusionUserCompromise (node.cfb4f7): 206

2025-09-04

ReconScanning (node.4dc198): 291

ReconScanning (node.368407): 280

IntrusionUserCompromise (node.cfb4f7): 687

AnomalyTraffic (node.ffe95c): 1

2025-09-03

AnomalyTraffic (node.ffe95c): 4

ReconScanning (node.4dc198): 106

ReconScanning (node.368407): 101

IntrusionUserCompromise (node.cfb4f7): 182

DShield reports (IP summary, reports)

2025-09-03

Number of reports: 486

Distinct targets: 461

2025-09-05

Number of reports: 2885

Distinct targets: 2453

2025-09-06

Number of reports: 5587

Distinct targets: 3449

2025-09-07

Number of reports: 5211

Distinct targets: 2845

2025-09-08

Number of reports: 5100

Distinct targets: 3148

2025-09-09

Number of reports: 6048

Distinct targets: 3832

2025-09-10

Number of reports: 5345

Distinct targets: 3096

2025-09-11

Number of reports: 5850

Distinct targets: 3580

2025-09-12

Number of reports: 5505

Distinct targets: 3326

2025-09-13

Number of reports: 5309

Distinct targets: 2388

2025-09-14

Number of reports: 5030

Distinct targets: 3160

2025-09-15

Number of reports: 5392

Distinct targets: 3456

2025-09-16

Number of reports: 5263

Distinct targets: 3148

2025-09-17

Number of reports: 5124

Distinct targets: 3210

2025-09-18

Number of reports: 4865

Distinct targets: 3199

2025-09-19

Number of reports: 4375

Distinct targets: 2353

2025-09-20

Number of reports: 4819

Distinct targets: 1520

2025-09-21

Number of reports: 5376

Distinct targets: 2360

2025-09-22

Number of reports: 4842

Distinct targets: 2630

2025-09-23

Number of reports: 4745

Distinct targets: 2837

2025-09-25

Number of reports: 5561

Distinct targets: 3284

2025-09-26

Number of reports: 6038

Distinct targets: 3466

2025-09-27

Number of reports: 6576

Distinct targets: 3353

2025-09-28

Number of reports: 6624

Distinct targets: 4056

2025-09-29

Number of reports: 6624

Distinct targets: 4056

2025-09-30

Number of reports: 754

Distinct targets: 607

2025-10-03

Number of reports: 3889

Distinct targets: 1945

Origin AS

AS210558 - services-1337-gmbh

BGP Prefix

124.198.131.0/24

geo

United States, New York

🕑 America/New_York

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

124.198.128.0 - 124.198.159.255

last_activity

2025-10-03 10:46:33

last_warden_event

2025-10-03 10:46:33

rep

0.11547619047619047

reserved_range

0

Shodan's InternetDB

Open ports: 135, 139, 445, 3389, 5986

Tags: self-signed

CPEs: –

ts_added

2025-09-03 15:23:13.355000

ts_last_update

2025-10-12 15:23:33.367000

Warden event timeline

DShield event timeline

Presence on blacklists