IP address

Search at other sites:

.144154.52.116.150

Shodan(more info)

Passive DNS

IP blacklists

CI Army

154.52.116.150 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-05-12 02:50:00.831000
Was present on blacklist at: 2025-05-08 02:50, 2025-05-09 02:50, 2025-05-10 02:50, 2025-05-11 02:50, 2025-05-12 02:50

AbuseIPDB

154.52.116.150 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-05-10 04:00:00.681000
Was present on blacklist at: 2025-05-09 04:00, 2025-05-10 04:00

Warden events (29)

2025-05-12

IntrusionUserCompromise (node.cfb4f7): 1

2025-05-09

ReconScanning (node.368407): 1

ReconScanning (node.4dc198): 25

2025-05-07

ReconScanning (node.4dc198): 2

DShield reports (IP summary, reports)

2025-05-07

Number of reports: 55

Distinct targets: 35

2025-05-08

Number of reports: 131

Distinct targets: 104

2025-05-09

Number of reports: 115

Distinct targets: 83

2025-05-10

Number of reports: 73

Distinct targets: 49

Origin AS

AS210099 - TIGOVA

BGP Prefix

154.52.116.0/22

geo

Turkey

🕑 Europe/Istanbul

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

154.52.0.0 - 154.52.255.255

last_activity

2025-05-12 12:08:39

last_warden_event

2025-05-12 12:08:39

rep

0.14404761904761904

reserved_range

0

Shodan's InternetDB

Open ports: 135, 1080, 3389, 5985

Tags: self-signed

CPEs: –

ts_added

2025-05-07 12:53:05.823000

ts_last_update

2025-05-12 12:53:10.150000

Warden event timeline

DShield event timeline

Presence on blacklists