IP address

Passive DNS

Tags: IP in hostname

IP blacklists

AbuseIPDB

198.144.189.87 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-12-14 05:00:00.671000
Was present on blacklist at: 2025-10-20 04:00, 2025-10-21 04:00, 2025-10-22 04:00, 2025-10-23 04:00, 2025-10-24 04:00, 2025-10-25 04:00, 2025-10-26 05:00, 2025-10-27 05:00, 2025-10-28 05:00, 2025-10-29 05:00, 2025-10-30 05:00, 2025-10-31 05:00, 2025-11-01 05:00, 2025-11-02 05:00, 2025-11-03 05:00, 2025-11-04 05:00, 2025-11-05 05:00, 2025-11-06 05:00, 2025-11-07 05:00, 2025-11-08 05:00, 2025-11-09 05:00, 2025-11-10 05:00, 2025-11-11 05:00, 2025-11-12 05:00, 2025-11-13 05:00, 2025-11-14 05:00, 2025-11-15 05:00, 2025-11-16 05:00, 2025-11-17 05:00, 2025-11-18 05:00, 2025-11-19 05:00, 2025-11-20 05:00, 2025-11-21 05:00, 2025-11-22 05:00, 2025-11-23 05:00, 2025-11-24 05:00, 2025-11-25 05:00, 2025-11-26 05:00, 2025-11-27 05:00, 2025-11-28 05:00, 2025-11-29 05:00, 2025-11-30 05:00, 2025-12-01 05:00, 2025-12-02 05:00, 2025-12-03 05:00, 2025-12-04 05:00, 2025-12-05 05:00, 2025-12-06 05:00, 2025-12-07 05:00, 2025-12-08 05:00, 2025-12-09 05:00, 2025-12-10 05:00, 2025-12-11 05:00, 2025-12-12 05:00, 2025-12-13 05:00, 2025-12-14 05:00

FireHOL anonymizers

198.144.189.87 is listed on the FireHOL anonymizers blacklist.

Description: List of anonymizing IPs, aggregated from multiple lists by FireHOL.
Type of feed: secondary (feed detail page)

Last checked at: 2025-12-20 00:05:09
Was present on blacklist at: 2025-10-20 00:05, 2025-10-21 00:05, 2025-10-22 00:05, 2025-10-23 00:05, 2025-10-24 00:05, 2025-10-25 00:05, 2025-10-26 00:05, 2025-10-27 00:05, 2025-10-28 00:05, 2025-10-29 00:05, 2025-10-30 00:05, 2025-10-31 00:05, 2025-11-01 00:05, 2025-11-02 00:05, 2025-11-03 00:05, 2025-11-04 00:05, 2025-11-05 00:05, 2025-11-06 00:05, 2025-11-07 00:05, 2025-11-08 00:05, 2025-11-09 00:05, 2025-11-10 00:05, 2025-11-11 00:05, 2025-11-12 00:05, 2025-11-13 00:05, 2025-11-14 00:05, 2025-11-15 00:05, 2025-11-16 00:05, 2025-11-17 00:05, 2025-11-18 00:05, 2025-11-19 00:05, 2025-11-20 00:05, 2025-11-21 00:05, 2025-11-22 00:05, 2025-11-23 00:05, 2025-11-24 00:05, 2025-11-25 00:05, 2025-11-26 00:05, 2025-11-27 00:05, 2025-11-28 00:05, 2025-11-29 00:05, 2025-11-30 00:05, 2025-12-01 00:05, 2025-12-02 00:05, 2025-12-03 00:05, 2025-12-04 00:05, 2025-12-05 00:05, 2025-12-06 00:05, 2025-12-07 00:05, 2025-12-08 00:05, 2025-12-09 00:05, 2025-12-10 00:05, 2025-12-11 00:05, 2025-12-12 00:05, 2025-12-13 00:05, 2025-12-14 00:05, 2025-12-15 00:05, 2025-12-16 00:05, 2025-12-17 00:05, 2025-12-18 00:05, 2025-12-19 00:05, 2025-12-20 00:05

Turris greylist

198.144.189.87 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-12-15 22:15:00.177000
Was present on blacklist at: 2025-10-20 21:15, 2025-10-22 21:15, 2025-10-23 21:15, 2025-10-24 21:15, 2025-10-25 21:15, 2025-10-26 22:15, 2025-10-27 22:15, 2025-10-29 22:15, 2025-10-30 22:15, 2025-10-31 22:15, 2025-11-01 22:15, 2025-11-02 22:15, 2025-11-04 22:15, 2025-11-05 22:15, 2025-11-06 22:15, 2025-11-07 22:15, 2025-11-08 22:15, 2025-11-10 22:15, 2025-11-11 22:15, 2025-11-12 22:15, 2025-11-13 22:15, 2025-11-14 22:15, 2025-11-16 22:15, 2025-11-17 22:15, 2025-11-18 22:15, 2025-11-19 22:15, 2025-11-21 22:15, 2025-11-22 22:15, 2025-11-23 22:15, 2025-11-24 22:15, 2025-11-26 22:15, 2025-11-27 22:15, 2025-11-28 22:15, 2025-11-29 22:15, 2025-11-30 22:15, 2025-12-02 22:15, 2025-12-03 22:15, 2025-12-04 22:15, 2025-12-05 22:15, 2025-12-06 22:15, 2025-12-08 22:15, 2025-12-09 22:15, 2025-12-10 22:15, 2025-12-11 22:15, 2025-12-12 22:15, 2025-12-13 22:15, 2025-12-15 22:15

CI Army

198.144.189.87 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-12-15 03:50:01.114000
Was present on blacklist at: 2025-12-15 03:50

DShield reports (IP summary, reports)

2025-10-20: Number of reports: 2527; Distinct targets: 2169
2025-10-21: Number of reports: 3010; Distinct targets: 2866
2025-10-22: Number of reports: 3553; Distinct targets: 2891
2025-10-23: Number of reports: 2970; Distinct targets: 2531
2025-10-24: Number of reports: 2970; Distinct targets: 2531
2025-10-25: Number of reports: 3879; Distinct targets: 3047
2025-10-26: Number of reports: 3879; Distinct targets: 3047
2025-10-27: Number of reports: 4165; Distinct targets: 3382
2025-10-28: Number of reports: 3736; Distinct targets: 3051
2025-10-29: Number of reports: 4114; Distinct targets: 3436
2025-10-30: Number of reports: 3654; Distinct targets: 3045
2025-10-31: Number of reports: 3990; Distinct targets: 3012
2025-11-01: Number of reports: 4612; Distinct targets: 3696
2025-11-02: Number of reports: 4612; Distinct targets: 3696
2025-11-03: Number of reports: 3643; Distinct targets: 2905
2025-11-04: Number of reports: 3643; Distinct targets: 2905
2025-11-05: Number of reports: 3984; Distinct targets: 3495
2025-11-06: Number of reports: 3984; Distinct targets: 3495
2025-11-07: Number of reports: 3801; Distinct targets: 3325
2025-11-08: Number of reports: 3794; Distinct targets: 3067
2025-11-09: Number of reports: 4345; Distinct targets: 3464
2025-11-10: Number of reports: 4370; Distinct targets: 3506
2025-11-11: Number of reports: 4370; Distinct targets: 3506
2025-11-12: Number of reports: 3148; Distinct targets: 2608
2025-11-13: Number of reports: 3293; Distinct targets: 2697
2025-11-14: Number of reports: 3340; Distinct targets: 2901
2025-11-15: Number of reports: 4001; Distinct targets: 2930
2025-11-16: Number of reports: 4001; Distinct targets: 2930
2025-11-17: Number of reports: 3757; Distinct targets: 3175
2025-11-18: Number of reports: 3757; Distinct targets: 3175
2025-11-19: Number of reports: 2826; Distinct targets: 2514
2025-11-20: Number of reports: 2826; Distinct targets: 2514
2025-11-21: Number of reports: 3716; Distinct targets: 2993
2025-11-22: Number of reports: 3724; Distinct targets: 2780
2025-11-23: Number of reports: 3255; Distinct targets: 2530
2025-11-24: Number of reports: 2927; Distinct targets: 2192
2025-11-25: Number of reports: 2927; Distinct targets: 2192
2025-11-26: Number of reports: 2940; Distinct targets: 2463
2025-11-27: Number of reports: 3088; Distinct targets: 2614
2025-11-28: Number of reports: 3230; Distinct targets: 2778
2025-11-29: Number of reports: 3230; Distinct targets: 2778
2025-11-30: Number of reports: 3298; Distinct targets: 2656
2025-12-01: Number of reports: 2839; Distinct targets: 2287
2025-12-02: Number of reports: 2839; Distinct targets: 2287
2025-12-03: Number of reports: 2676; Distinct targets: 2122
2025-12-04: Number of reports: 1937; Distinct targets: 1622
2025-12-05: Number of reports: 1108; Distinct targets: 1108
2025-12-06: Number of reports: 596; Distinct targets: 596
2025-12-07: Number of reports: 596; Distinct targets: 596
2025-12-08: Number of reports: 1576; Distinct targets: 1373
2025-12-09: Number of reports: 1676; Distinct targets: 1350
2025-12-10: Number of reports: 1493; Distinct targets: 1263
2025-12-11: Number of reports: 1192; Distinct targets: 1073
2025-12-12: Number of reports: 1192; Distinct targets: 1073
2025-12-13: Number of reports: 1705; Distinct targets: 1466
2025-12-14: Number of reports: 1291; Distinct targets: 1061

Origin AS: AS36352 - AS-COLOCROSSING
BGP Prefix: 198.144.189.0/24
geo: United States, Buffalo; 🕑 America/New_York
hostname: 198-144-189-87-host.colocrossing.com
hostname_class: ['ip_in_hostname']
Address block ('inetnum' or 'NetRange' in whois database): 198.144.176.0 - 198.144.191.255
reserved_range: 0
Shodan's InternetDB: Open ports: 22; Tags: –; CPEs: cpe:/o:linux:linux_kernel, cpe:/a:openbsd:openssh:8.4p1, cpe:/o:debian:debian_linux
ts_added: 2025-10-20 04:01:26.209000
ts_last_update: 2025-12-20 04:01:31.551000

Warden event timeline

DShield event timeline

Presence on blacklists