IP address

Search at other sites:
--212.11.64.225mygov
Shodan(more info)
Passive DNS
Tags:
IP blacklists
ThreatFox
212.11.64.225 is listed on the ThreatFox blacklist.

Description: ThreatFox is a free platform from abuse.ch with the goal of<br>sharing indicators of compromise (IOCs) associated with malware with the<br>infosec community, AV vendors and threat intelligence providers.
Type of feed: primary (feed detail page)

Last checked at: 2025-05-13 06:10:00.164000
Was present on blacklist at: 2025-05-11 10:10, 2025-05-11 14:10, 2025-05-11 18:10, 2025-05-11 22:10, 2025-05-12 02:10, 2025-05-12 06:10, 2025-05-12 10:10, 2025-05-12 14:10, 2025-05-12 18:10, 2025-05-12 22:10, 2025-05-13 02:10, 2025-05-13 06:10
Spamhaus SBL
212.11.64.225 is listed on the Spamhaus SBL blacklist.

Description: The Spamhaus Block List ("SBL") Advisory is a database of IP addresses from which Spamhaus does not recommend the acceptance of electronic mail.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-06-15 10:10:11.386000
Was present on blacklist at: 2025-05-11 10:10, 2025-05-18 10:10, 2025-05-25 10:10, 2025-06-01 10:10, 2025-06-08 10:10, 2025-06-15 10:10
Spamhaus DROP
212.11.64.225 is listed on the Spamhaus DROP blacklist.

Description: Spamhaus DROP (Don't Route Or Peer) list. Netblocks controlled by spammers or cyber criminals. The DROP lists are a tiny subset of the SBL, designed for use by firewalls and routing equipment to filter out the malicious traffic from these netblocks.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-06-15 10:10:11.386000
Was present on blacklist at: 2025-05-11 10:10, 2025-05-18 10:10, 2025-05-25 10:10, 2025-06-01 10:10, 2025-06-08 10:10, 2025-06-15 10:10
OTX pulses
[6824ce5f2a19922c64e259ed] 2025-05-14 17:09:50.825000 | China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures
Author name:AlienVault
Pulse modified:2025-05-14 17:09:50.825000
Indicator created:2025-05-14 17:09:52
Indicator role:None
Indicator title:
Indicator expiration:2025-06-13 17:00:00
Origin AS
AS42624 - simplecarrier
BGP Prefix
212.11.64.0/24
geo
Switzerland
🕑 Europe/Zurich
hostname
mygov
Address block ('inetnum' or 'NetRange' in whois database)
212.11.64.0 - 212.11.64.255
last_activity
2025-05-14 20:44:20.796000
reserved_range
0
Shodan's InternetDB
Open ports: 443
Tags:
CPEs:
ts_added
2025-05-11 10:10:01.736000
ts_last_update
2025-06-19 10:10:12.123000

Warden event timeline

DShield event timeline

Presence on blacklists

OTX pulses