IP address

Search at other sites:

.061162.244.30.110vmi2366031.contaboserver.net

Shodan(more info)

Passive DNS

IP blacklists

DataPlane SSH login

162.244.30.110 is listed on the DataPlane SSH login blacklist.

Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IPs trying<br>an unsolicited login to a host using SSH password authentication.
Type of feed: primary (feed detail page)

Last checked at: 2025-12-21 19:10:01.592000
Was present on blacklist at: 2025-12-15 15:10, 2025-12-15 19:10, 2025-12-16 03:10, 2025-12-16 07:10, 2025-12-16 15:10, 2025-12-16 19:10, 2025-12-17 03:10, 2025-12-17 07:10, 2025-12-17 15:10, 2025-12-17 19:10, 2025-12-18 03:10, 2025-12-18 07:10, 2025-12-18 15:10, 2025-12-18 19:10, 2025-12-19 03:10, 2025-12-19 07:10, 2025-12-19 15:10, 2025-12-19 19:10, 2025-12-20 03:10, 2025-12-20 07:10, 2025-12-20 15:10, 2025-12-20 19:10, 2025-12-21 03:10, 2025-12-21 07:10, 2025-12-21 15:10, 2025-12-21 19:10

blocklist.de SSH

162.244.30.110 is listed on the blocklist.de SSH blacklist.

Description: Blocklist.de feed is a free and voluntary service provided<br>by a Fraud/Abuse-specialist. IPs performing SSH attacks.
Type of feed: primary (feed detail page)

Last checked at: 2025-12-18 05:05:00.665000
Was present on blacklist at: 2025-12-15 17:05, 2025-12-15 23:05, 2025-12-16 05:05, 2025-12-16 11:05, 2025-12-16 17:05, 2025-12-16 23:05, 2025-12-17 05:05, 2025-12-17 11:05, 2025-12-17 17:05, 2025-12-17 23:05, 2025-12-18 05:05

AbuseIPDB

162.244.30.110 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-12-16 05:00:00.711000
Was present on blacklist at: 2025-12-16 05:00

Warden events (4)

2025-12-16

AttemptLogin (node.40929a): 1

IntrusionUserCompromise (node.40929a): 1

2025-12-15

AttemptLogin (node.40929a): 1

IntrusionUserCompromise (node.40929a): 1

DShield reports (IP summary, reports)

2025-12-19

Number of reports: 58

Distinct targets: 6

2025-12-20

Number of reports: 54

Distinct targets: 30

Origin AS

AS51167 - CONTABO

BGP Prefix

162.244.28.0/22

geo

Germany, Karlsruhe

🕑 Europe/Berlin

hostname

vmi2366031.contaboserver.net

Address block ('inetnum' or 'NetRange' in whois database)

162.244.24.0 - 162.244.31.255

last_activity

2025-12-16 08:20:35.290000

last_warden_event

2025-12-16 08:20:35.290000

rep

0.06071428571428572

reserved_range

0

Shodan's InternetDB

Open ports: 22, 80, 443, 1337, 3000, 3010, 3306, 3310, 5000, 5435, 6379, 6380, 8080

Tags: eol-product, database

CPEs: cpe:/a:f5:nginx:1.25.5, cpe:/a:oracle:mysql:8.0.44, cpe:/a:oracle:mysql:8.0.41, cpe:/a:redislabs:redis:7.4.4, cpe:/a:facebook:react, cpe:/o:canonical:ubuntu_linux, cpe:/a:f5:nginx:1.18.0, cpe:/o:linux:linux_kernel, cpe:/a:zeit:next.js, cpe:/a:openbsd:openssh:8.9p1, cpe:/a:php:php:7.4.33

ts_added

2025-12-15 15:22:37.102000

ts_last_update

2025-12-21 19:22:15.334000

Warden event timeline

DShield event timeline

Presence on blacklists