IP address

Search at other sites:
.137150.241.230.64
Shodan(more info)
Passive DNS
Tags: Scanner
IP blacklists
CI Army
150.241.230.64 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-10-09 02:50:00.911000
Was present on blacklist at: 2025-09-20 02:50, 2025-09-21 02:50, 2025-10-02 02:50, 2025-10-03 02:50, 2025-10-04 02:50, 2025-10-05 02:50, 2025-10-06 02:50, 2025-10-07 02:50, 2025-10-08 02:50, 2025-10-09 02:50
ThreatFox
150.241.230.64 is listed on the ThreatFox blacklist.

Description: ThreatFox is a free platform from abuse.ch with the goal of<br>sharing indicators of compromise (IOCs) associated with malware with the<br>infosec community, AV vendors and threat intelligence providers.
Type of feed: primary (feed detail page)

Last checked at: 2025-10-01 18:10:00.206000
Was present on blacklist at: 2025-09-20 14:10, 2025-09-20 18:10, 2025-09-20 22:10, 2025-09-21 02:10, 2025-09-21 06:10, 2025-09-21 10:10, 2025-09-21 14:10, 2025-09-21 18:10, 2025-09-21 22:10, 2025-09-22 02:10, 2025-09-22 06:10, 2025-09-22 10:10, 2025-09-29 22:10, 2025-09-30 02:10, 2025-09-30 06:10, 2025-09-30 10:10, 2025-09-30 14:10, 2025-09-30 18:10, 2025-09-30 22:10, 2025-10-01 02:10, 2025-10-01 06:10, 2025-10-01 10:10, 2025-10-01 14:10, 2025-10-01 18:10
AbuseIPDB
150.241.230.64 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-10-04 04:00:00.578000
Was present on blacklist at: 2025-10-01 04:00, 2025-10-02 04:00, 2025-10-03 04:00, 2025-10-04 04:00
Turris greylist
150.241.230.64 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-10-04 21:15:00.175000
Was present on blacklist at: 2025-10-04 21:15
Warden events (5953)
2025-10-03
ReconScanning (node.4dc198): 252
ReconScanning (node.368407): 257
2025-10-02
ReconScanning (node.4dc198): 279
ReconScanning (node.368407): 275
2025-10-01
ReconScanning (node.368407): 165
ReconScanning (node.4dc198): 164
AnomalyTraffic (node.ffe95c): 7
2025-09-30
ReconScanning (node.368407): 32
ReconScanning (node.4dc198): 32
AnomalyTraffic (node.ffe95c): 2
2025-09-19
AnomalyTraffic (node.ffe95c): 5
ReconScanning (node.86eb21): 4483
DShield reports (IP summary, reports)
2025-09-19
Number of reports: 25116
Distinct targets: 21365
2025-10-03
Number of reports: 3225
Distinct targets: 2264
Origin AS
AS215703 - FREAKHOSTING
BGP Prefix
150.241.230.0/24
geo
United States, Los Angeles
🕑 America/Los_Angeles
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
150.241.128.0 - 150.241.255.255
last_activity
2025-10-03 21:32:24
last_warden_event
2025-10-03 21:32:24
rep
0.1369047619047619
reserved_range
0
Shodan's InternetDB
Open ports: 22
Tags:
CPEs: cpe:/o:canonical:ubuntu_linux, cpe:/a:openbsd:openssh:9.6p1
ts_added
2025-09-19 17:23:02.614000
ts_last_update
2025-10-11 17:23:20.689000

Warden event timeline

DShield event timeline

Presence on blacklists