IP address

Search at other sites:
--45.92.195.121
Shodan(more info)
Passive DNS
Tags:
IP blacklists
UCEPROTECT L1
45.92.195.121 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2026-03-16 08:45:00.860000
Was present on blacklist at: 2026-02-15 08:45, 2026-02-16 00:45, 2026-02-16 16:45, 2026-02-17 00:45, 2026-02-18 00:45, 2026-02-18 16:45, 2026-02-19 00:45, 2026-02-19 08:45, 2026-02-19 16:45, 2026-02-20 00:45, 2026-02-20 08:45, 2026-02-21 08:45, 2026-02-22 08:45, 2026-02-22 16:45, 2026-02-24 00:45, 2026-02-24 08:45, 2026-03-01 16:45, 2026-03-02 08:45, 2026-03-02 16:45, 2026-03-03 00:45, 2026-03-03 08:45, 2026-03-03 16:45, 2026-03-04 00:45, 2026-03-04 08:45, 2026-03-04 16:45, 2026-03-05 00:45, 2026-03-05 08:45, 2026-03-05 16:45, 2026-03-06 00:45, 2026-03-06 08:45, 2026-03-09 08:45, 2026-03-09 16:45, 2026-03-10 00:45, 2026-03-10 08:45, 2026-03-10 16:45, 2026-03-11 00:45, 2026-03-11 08:45, 2026-03-11 16:45, 2026-03-12 00:45, 2026-03-12 08:45, 2026-03-12 16:45, 2026-03-13 00:45, 2026-03-13 08:45, 2026-03-13 16:45, 2026-03-14 00:45, 2026-03-14 08:45, 2026-03-14 16:45, 2026-03-15 00:45, 2026-03-15 08:45, 2026-03-15 16:45, 2026-03-16 00:45, 2026-03-16 08:45
Spamhaus PBL ISP
45.92.195.121 is listed on the Spamhaus PBL ISP blacklist.

Description: The Spamhaus PBL is a DNSBL database of end-user IP address ranges which should not be delivering unauthenticated SMTP email to any Internet mail server except those provided for specifically by an ISP for that customer's use.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-04-05 08:55:30.332000
Was present on blacklist at: 2026-02-15 08:55, 2026-02-22 08:55, 2026-03-01 08:55, 2026-03-09 20:09, 2026-03-15 08:55, 2026-03-22 08:55, 2026-03-29 08:55, 2026-04-05 08:55

Threat categories

TLRoleCategoryDetails
50 src scan
DShield reports (IP summary, reports)
2026-02-27
Number of reports: 13
Distinct targets: 7
2026-04-02
Number of reports: 144
Distinct targets: 105
2026-04-03
Number of reports: 31
Distinct targets: 20
OTX pulses
[69946d85f47715341d270702] 2026-02-17 13:30:45.068000 | RDP honeypot logs for 2026/02/17
Author name:jnazario
Pulse modified:2026-02-17 13:30:45.068000
Indicator created:2026-02-17 13:30:46
Indicator role:None
Indicator title:
Indicator expiration:2026-03-19 13:00:00
[69a43d4d923eea074068c28a] 2026-03-01 13:21:17.380000 | RDP honeypot logs for 2026/03/01
Author name:jnazario
Pulse modified:2026-03-01 13:21:17.380000
Indicator created:2026-03-01 13:21:18
Indicator role:None
Indicator title:
Indicator expiration:2026-03-31 13:00:00
Origin AS
AS25693 - VIRMACH
BGP Prefix
45.92.195.0/24
geo
United States, Los Angeles
🕑 America/Los_Angeles
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
45.92.192.0 - 45.92.195.255
last_activity
2026-03-01 16:39:58.457000
reserved_range
0
Shodan's InternetDB
Open ports: 22
Tags:
CPEs: cpe:/a:openbsd:openssh:8.0
ts_added
2026-02-15 08:55:22.648000
ts_last_update
2026-04-06 08:55:31.363000

Warden event timeline

DShield event timeline

Presence on blacklists

OTX pulses