IP address

Search at other sites:

--185.70.186.139

Shodan(more info)

Passive DNS

IP blacklists

UCEPROTECT L1

185.70.186.139 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-09-18 07:45:00.645000
Was present on blacklist at: 2025-09-11 15:45, 2025-09-11 23:45, 2025-09-12 07:45, 2025-09-12 15:45, 2025-09-12 23:45, 2025-09-13 07:45, 2025-09-13 15:45, 2025-09-13 23:45, 2025-09-14 07:45, 2025-09-14 15:45, 2025-09-14 23:45, 2025-09-15 07:45, 2025-09-15 15:45, 2025-09-15 23:45, 2025-09-16 07:45, 2025-09-16 15:45, 2025-09-16 23:45, 2025-09-17 07:45, 2025-09-17 15:45, 2025-09-17 23:45, 2025-09-18 07:45

OTX pulses

[68c2c035569e9159181c000b] 2025-09-11 12:27:33.832000 | RDP honeypot logs for 2025/09/11

Author name:	jnazario
Pulse modified:	2025-09-11 12:27:33.832000
Indicator created:	2025-09-11 12:27:34
Indicator role:	None
Indicator title:
Indicator expiration:	2025-10-11 12:00:00

Origin AS

AS57043 - HOSTKEY-AS

BGP Prefix

185.70.186.0/24

geo

Netherlands, Amsterdam

🕑 Europe/Amsterdam

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

185.70.184.0 - 185.70.187.255

last_activity

2025-09-11 16:09:14.646000

reserved_range

0

Shodan's InternetDB

Open ports: 443, 2081, 2222

Tags: –

CPEs: cpe:/a:openbsd:openssh:8.9p1, cpe:/o:canonical:ubuntu_linux

ts_added

2025-09-11 15:56:02.673000

ts_last_update

2025-10-22 15:56:10.571000

Warden event timeline

DShield event timeline

Presence on blacklists

OTX pulses