IP address

Search at other sites:

.015132.243.161.212aspen3535green

Shodan(more info)

Passive DNS

IP blacklists

blocklist.de SSH

132.243.161.212 is listed on the blocklist.de SSH blacklist.

Description: Blocklist.de feed is a free and voluntary service provided<br>by a Fraud/Abuse-specialist. IPs performing SSH attacks.
Type of feed: primary (feed detail page)

Last checked at: 2026-06-01 22:05:00.222000
Was present on blacklist at: 2026-06-01 22:05

AbuseIPDB

132.243.161.212 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2026-06-02 04:00:00.612000
Was present on blacklist at: 2026-06-02 04:00

blocklist.de FTP

132.243.161.212 is listed on the blocklist.de FTP blacklist.

Description: Blocklist.de feed is a free and voluntary service<br>provided by a Fraud/Abuse-specialist. IPs performing attacks<br>on the Service FTP.
Type of feed: primary (feed detail page)

Last checked at: 2026-06-03 22:05:05.180000
Was present on blacklist at: 2026-06-02 04:05, 2026-06-02 10:05, 2026-06-02 16:05, 2026-06-02 22:05, 2026-06-03 04:05, 2026-06-03 10:05, 2026-06-03 16:05, 2026-06-03 22:05

Echelon SSH connection attempt

132.243.161.212 is listed on the Echelon SSH connection attempt blacklist.

Description: SSH connection attempt detected on port 22 or 2222
Type of feed: primary (feed detail page)

Last checked at: 2026-06-09 09:35:00.354000
Was present on blacklist at: 2026-06-02 09:35, 2026-06-03 09:35, 2026-06-04 09:35, 2026-06-05 09:35, 2026-06-06 09:35, 2026-06-07 09:35, 2026-06-08 09:35, 2026-06-09 09:35

Echelon SSH bruteforce

132.243.161.212 is listed on the Echelon SSH bruteforce blacklist.

Description: Multiple SSH authentication attempts detected
Type of feed: primary (feed detail page)

Last checked at: 2026-06-09 09:35:00.318000
Was present on blacklist at: 2026-06-02 09:35, 2026-06-03 09:35, 2026-06-04 09:35, 2026-06-05 09:35, 2026-06-06 09:35, 2026-06-07 09:35, 2026-06-08 09:35, 2026-06-09 09:35

Threat categories

TL	Role	Category	Details
48	src	—
42	src	login	protocol: ssh port: 22, 2222

---

Warden events (17)

2026-06-02

AttemptLogin (node.985fb4): 8

AttemptLogin (node.ce2b59): 2

2026-06-01

AttemptLogin (node.ce2b59): 5

AttemptLogin (node.985fb4): 2

Origin AS

AS200019 - AlexHost

BGP Prefix

132.243.161.0/24

geo

Switzerland, Rümlang

🕑 Europe/Zurich

hostname

aspen3535green

Address block ('inetnum' or 'NetRange' in whois database)

132.243.0.0 - 132.243.255.255

last_activity

2026-06-02 00:40:12.428000

last_warden_event

2026-06-02 00:40:12.428000

rep

0.015015635142774375

reserved_range

0

Shodan's InternetDB

Open ports: 111, 587, 2079, 2082, 2083, 2087, 3306

Tags: self-signed, starttls, database

CPEs: cpe:/a:mariadb:mariadb, cpe:/a:cpanel:cpanel, cpe:/a:exim:exim:4.98.2

ts_added

2026-06-01 13:49:35.102000

ts_last_update

2026-06-12 13:49:40.295000

Warden event timeline

DShield event timeline

Presence on blacklists