IP address

Search at other sites:

.050198.12.88.132198-12-88-132-host.colocrossing.com

Shodan(more info)

Passive DNS

IP blacklists

CI Army

198.12.88.132 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-12-20 03:50:00.995000
Was present on blacklist at: 2025-12-09 03:50, 2025-12-10 03:50, 2025-12-11 03:50, 2025-12-12 03:50, 2025-12-13 03:50, 2025-12-14 03:50, 2025-12-15 03:50, 2025-12-16 03:50, 2025-12-17 03:50, 2025-12-18 03:50, 2025-12-19 03:50, 2025-12-20 03:50

Turris greylist

198.12.88.132 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-12-18 22:15:00.167000
Was present on blacklist at: 2025-12-11 22:15, 2025-12-13 22:15, 2025-12-15 22:15, 2025-12-18 22:15

AbuseIPDB

198.12.88.132 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-12-20 05:00:00.692000
Was present on blacklist at: 2025-12-12 05:00, 2025-12-13 05:00, 2025-12-15 05:00, 2025-12-16 05:00, 2025-12-17 05:00, 2025-12-18 05:00, 2025-12-19 05:00, 2025-12-20 05:00

Warden events (111)

2025-12-12

AnomalyTraffic (node.ffe95c): 17

ReconScanning (node.368407): 47

ReconScanning (node.4dc198): 47

DShield reports (IP summary, reports)

2025-12-08

Number of reports: 727

Distinct targets: 653

2025-12-09

Number of reports: 1129

Distinct targets: 912

2025-12-10

Number of reports: 725

Distinct targets: 581

2025-12-11

Number of reports: 359

Distinct targets: 302

2025-12-12

Number of reports: 359

Distinct targets: 302

2025-12-13

Number of reports: 1141

Distinct targets: 981

2025-12-14

Number of reports: 1272

Distinct targets: 1109

2025-12-15

Number of reports: 461

Distinct targets: 409

2025-12-16

Number of reports: 336

Distinct targets: 302

2025-12-17

Number of reports: 779

Distinct targets: 717

2025-12-18

Number of reports: 779

Distinct targets: 717

2025-12-19

Number of reports: 1332

Distinct targets: 1094

Origin AS

AS36352 - AS-COLOCROSSING

BGP Prefix

198.12.88.0/21

geo

United States, Buffalo

🕑 America/New_York

hostname

198-12-88-132-host.colocrossing.com

hostname_class

['ip_in_hostname']

Address block ('inetnum' or 'NetRange' in whois database)

198.12.64.0 - 198.12.127.255

last_activity

2025-12-12 04:32:36

last_warden_event

2025-12-12 04:32:36

rep

0.05

reserved_range

0

Shodan's InternetDB

Open ports: 22, 53, 80, 110, 143, 443, 993, 995, 2083, 2086, 2087, 3306

Tags: starttls, database

CPEs: cpe:/a:mariadb:mariadb, cpe:/a:openbsd:openssh:8.7, cpe:/a:cpanel:whm, cpe:/a:cpanel:cpanel, cpe:/a:apache:http_server

ts_added

2025-12-09 03:57:29.650000

ts_last_update

2025-12-20 05:04:00.873000

Warden event timeline

DShield event timeline

Presence on blacklists