IP address

Search at other sites:

--45.142.193.215

Shodan(more info)

Passive DNS

IP blacklists

Spamhaus SBL

45.142.193.215 is listed on the Spamhaus SBL blacklist.

Description: The Spamhaus Block List ("SBL") Advisory is a database of IP addresses from which Spamhaus does not recommend the acceptance of electronic mail.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-05-11 08:37:40.081000
Was present on blacklist at: 2025-04-20 08:37, 2025-04-27 08:37, 2025-05-04 08:37, 2025-05-11 08:37

Spamhaus XBL CBL

45.142.193.215 was recently listed on the Spamhaus XBL CBL blacklist, but currently it is not.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-05-11 08:37:40.081000
Was present on blacklist at: 2025-04-20 08:37, 2025-04-27 08:37

Spamhaus DROP

45.142.193.215 is listed on the Spamhaus DROP blacklist.

Description: Spamhaus DROP (Don't Route Or Peer) list. Netblocks controlled by spammers or cyber criminals. The DROP lists are a tiny subset of the SBL, designed for use by firewalls and routing equipment to filter out the malicious traffic from these netblocks.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-05-11 08:37:40.081000
Was present on blacklist at: 2025-04-20 08:37, 2025-04-27 08:37, 2025-05-04 08:37, 2025-05-11 08:37

DShield Block

45.142.193.215 was recently listed on the DShield Block blacklist, but currently it is not.

Description: Recommended Block List by DShield.org. It summarizes the top 20 attacking<br>class C (/24) subnets over the last three days.
Type of feed: secondary (feed detail page)

Last checked at: 2025-05-15 04:50:00
Was present on blacklist at: 2025-05-09 04:50

DShield reports (IP summary, reports)

2025-04-20

Number of reports: 18

Distinct targets: 6

OTX pulses

[602bc528f447d628d41494f2] 2021-02-16 13:14:16.945000 | Ka's Honeypot visitors

Author name:	Kapppppa
Pulse modified:	2025-05-15 23:00:16.595000
Indicator created:	2025-04-20 04:15:47
Indicator role:	bruteforce
Indicator title:	Telnet Login attempt
Indicator expiration:	2025-05-20 04:00:00

Origin AS

AS214295 - SKYNET

BGP Prefix

45.142.193.0/24

geo

Romania

🕑 Europe/Bucharest

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

45.142.192.0 - 45.142.195.255

last_activity

2025-05-16 00:42:49.119000

reserved_range

0

Shodan's InternetDB

Open ports: 22, 80, 4022, 4040, 4063, 4080, 4103, 4147, 4157, 4159, 4172, 4434, 5007, 5009, 5122, 5279, 5800, 5986, 5996, 7001, 7415, 7434, 7443, 7771, 8111, 8817, 8880, 9025, 9181, 9242, 9303, 9304, 9306, 9333, 9761, 9999, 10134, 11288, 11371, 12130, 12187, 12230, 12266, 12269, 12451, 14344

Tags: –

CPEs: cpe:/o:debian:debian_linux, cpe:/a:openbsd:openssh:9.2p1, cpe:/a:apache:http_server:2.4.62, cpe:/o:linux:linux_kernel

ts_added

2025-04-20 08:37:33.428000

ts_last_update

2025-05-16 00:42:49.125000

Warden event timeline

DShield event timeline

Presence on blacklists

OTX pulses