IP address

Search at other sites:

.23351.68.76.141ip-51-68-76.eu

Shodan(more info)

Passive DNS

IP blacklists

Turris greylist

51.68.76.141 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-04-24 21:15:00.214000
Was present on blacklist at: 2025-02-22 22:15, 2025-02-26 22:15, 2025-03-04 22:15, 2025-03-08 22:15, 2025-03-10 22:15, 2025-03-14 22:15, 2025-03-15 22:15, 2025-03-20 22:15, 2025-03-21 22:15, 2025-03-22 22:15, 2025-03-23 22:15, 2025-03-24 22:15, 2025-03-25 22:15, 2025-03-26 22:15, 2025-03-27 22:15, 2025-03-28 22:15, 2025-03-29 22:15, 2025-03-30 21:15, 2025-03-31 21:15, 2025-04-01 21:15, 2025-04-10 21:15, 2025-04-11 21:15, 2025-04-12 21:15, 2025-04-13 21:15, 2025-04-14 21:15, 2025-04-15 21:15, 2025-04-16 21:15, 2025-04-17 21:15, 2025-04-18 21:15, 2025-04-19 21:15, 2025-04-20 21:15, 2025-04-21 21:15, 2025-04-22 21:15, 2025-04-23 21:15, 2025-04-24 21:15

UCEPROTECT L1

51.68.76.141 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-04-17 07:45:00.813000
Was present on blacklist at: 2025-03-03 00:45, 2025-03-03 08:45, 2025-03-03 16:45, 2025-03-04 00:45, 2025-03-04 08:45, 2025-03-24 00:45, 2025-03-24 08:45, 2025-03-30 07:45, 2025-03-30 15:45, 2025-03-30 23:45, 2025-03-31 07:45, 2025-03-31 15:45, 2025-03-31 23:45, 2025-04-01 07:45, 2025-04-01 15:45, 2025-04-01 23:45, 2025-04-02 07:45, 2025-04-02 15:45, 2025-04-02 23:45, 2025-04-03 07:45, 2025-04-03 15:45, 2025-04-15 15:45, 2025-04-15 23:45, 2025-04-16 07:45, 2025-04-16 15:45, 2025-04-16 23:45, 2025-04-17 07:45

blocklist.de SSH

51.68.76.141 is listed on the blocklist.de SSH blacklist.

Description: Blocklist.de feed is a free and voluntary service provided<br>by a Fraud/Abuse-specialist. IPs performing SSH attacks.
Type of feed: primary (feed detail page)

Last checked at: 2025-03-10 17:05:05.268000
Was present on blacklist at: 2025-03-08 23:05, 2025-03-09 05:05, 2025-03-09 11:05, 2025-03-09 17:05, 2025-03-09 23:05, 2025-03-10 05:05, 2025-03-10 11:05, 2025-03-10 17:05

AbuseIPDB

51.68.76.141 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-04-16 04:00:00.726000
Was present on blacklist at: 2025-03-19 05:00, 2025-04-16 04:00

Blocklist.net.ua

51.68.76.141 is listed on the Blocklist.net.ua blacklist.

Description: BlockList contains IP addresses that perform attacks,<br>send spam or brute force passwords to the blocking list.
Type of feed: primary (feed detail page)

Last checked at: 2025-02-18 19:15:04.139000
Was present on blacklist at: 2025-01-27 23:15, 2025-01-28 03:15, 2025-01-28 07:15, 2025-01-28 11:15, 2025-01-28 15:15, 2025-01-28 19:15, 2025-01-28 23:15, 2025-01-29 03:15, 2025-01-29 07:15, 2025-01-29 11:15, 2025-01-29 15:15, 2025-01-29 19:15, 2025-01-29 23:15, 2025-01-30 03:15, 2025-01-30 07:15, 2025-01-30 11:15, 2025-01-30 15:15, 2025-01-30 19:15, 2025-01-30 23:15, 2025-01-31 03:15, 2025-01-31 07:15, 2025-01-31 11:15, 2025-01-31 15:15, 2025-01-31 19:15, 2025-01-31 23:15, 2025-02-01 03:15, 2025-02-01 07:15, 2025-02-01 11:15, 2025-02-01 15:15, 2025-02-01 19:15, 2025-02-01 23:15, 2025-02-02 03:15, 2025-02-02 07:15, 2025-02-02 11:15, 2025-02-02 15:15, 2025-02-02 19:15, 2025-02-02 23:15, 2025-02-03 03:15, 2025-02-03 07:15, 2025-02-03 11:15, 2025-02-03 15:15, 2025-02-03 19:15, 2025-02-03 23:15, 2025-02-04 03:15, 2025-02-04 07:15, 2025-02-04 11:15, 2025-02-04 15:15, 2025-02-04 19:15, 2025-02-04 23:15, 2025-02-05 03:15, 2025-02-05 07:15, 2025-02-05 11:15, 2025-02-05 15:15, 2025-02-05 19:15, 2025-02-05 23:15, 2025-02-06 03:15, 2025-02-06 07:15, 2025-02-06 11:15, 2025-02-06 15:15, 2025-02-06 19:15, 2025-02-06 23:15, 2025-02-07 03:15, 2025-02-07 07:15, 2025-02-07 11:15, 2025-02-07 15:15, 2025-02-07 19:15, 2025-02-07 23:15, 2025-02-08 03:15, 2025-02-08 07:15, 2025-02-08 11:15, 2025-02-08 15:15, 2025-02-08 19:15, 2025-02-08 23:15, 2025-02-09 03:15, 2025-02-09 07:15, 2025-02-09 11:15, 2025-02-09 15:15, 2025-02-09 19:15, 2025-02-09 23:15, 2025-02-10 03:15, 2025-02-10 07:15, 2025-02-10 11:15, 2025-02-10 15:15, 2025-02-10 19:15, 2025-02-10 23:15, 2025-02-11 03:15, 2025-02-11 07:15, 2025-02-11 11:15, 2025-02-11 15:15, 2025-02-11 19:15, 2025-02-11 23:15, 2025-02-12 03:15, 2025-02-12 07:15, 2025-02-12 11:15, 2025-02-12 15:15, 2025-02-12 19:15, 2025-02-12 23:15, 2025-02-13 03:15, 2025-02-13 07:15, 2025-02-13 11:15, 2025-02-13 15:15, 2025-02-13 19:15, 2025-02-13 23:15, 2025-02-14 03:15, 2025-02-14 07:15, 2025-02-14 11:15, 2025-02-14 15:15, 2025-02-14 19:15, 2025-02-14 23:15, 2025-02-15 03:15, 2025-02-15 07:15, 2025-02-15 11:15, 2025-02-15 15:15, 2025-02-15 19:15, 2025-02-15 23:15, 2025-02-16 03:15, 2025-02-16 07:15, 2025-02-16 11:15, 2025-02-16 15:15, 2025-02-16 19:15, 2025-02-16 23:15, 2025-02-17 03:15, 2025-02-17 07:15, 2025-02-17 11:15, 2025-02-17 15:15, 2025-02-17 19:15, 2025-02-17 23:15, 2025-02-18 03:15, 2025-02-18 07:15, 2025-02-18 11:15, 2025-02-18 15:15, 2025-02-18 19:15

Spamhaus XBL CBL

51.68.76.141 is listed on the Spamhaus XBL CBL blacklist.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-04-26 22:18:51.486000
Was present on blacklist at: 2025-03-22 22:18, 2025-03-29 22:18, 2025-04-05 22:18, 2025-04-12 22:18, 2025-04-19 22:18, 2025-04-26 22:18

blocklist.de Apache

51.68.76.141 is listed on the blocklist.de Apache blacklist.

Description: Blocklist.de feed is a free and voluntary service provided<br>by a Fraud/Abuse-specialist. IPs performing attacks on the service<br>Apache, Apache-DDOS, RFI-Attacks.
Type of feed: primary (feed detail page)

Last checked at: 2025-04-23 10:05:05.329000
Was present on blacklist at: 2025-03-26 23:05, 2025-03-27 05:05, 2025-03-27 11:05, 2025-03-27 17:05, 2025-03-27 23:05, 2025-03-28 05:05, 2025-03-28 11:05, 2025-03-28 17:05, 2025-03-29 05:05, 2025-03-29 11:05, 2025-03-29 17:05, 2025-03-29 23:05, 2025-03-30 04:05, 2025-03-30 10:05, 2025-03-30 16:05, 2025-03-30 22:05, 2025-04-21 16:05, 2025-04-21 22:05, 2025-04-22 04:05, 2025-04-22 10:05, 2025-04-22 16:05, 2025-04-22 22:05, 2025-04-23 04:05, 2025-04-23 10:05

Warden events (182)

2025-04-23

IntrusionUserCompromise (node.cfb4f7): 3

2025-04-22

IntrusionUserCompromise (node.cfb4f7): 15

2025-04-21

IntrusionUserCompromise (node.cfb4f7): 6

2025-04-20

IntrusionUserCompromise (node.cfb4f7): 30

2025-04-19

IntrusionUserCompromise (node.cfb4f7): 6

2025-04-18

IntrusionUserCompromise (node.cfb4f7): 18

2025-04-16

IntrusionUserCompromise (node.cfb4f7): 3

2025-04-15

IntrusionUserCompromise (node.cfb4f7): 3

2025-04-14

IntrusionUserCompromise (node.cfb4f7): 9

2025-04-13

IntrusionUserCompromise (node.cfb4f7): 3

2025-04-12

IntrusionUserCompromise (node.cfb4f7): 7

2025-04-11

IntrusionUserCompromise (node.cfb4f7): 9

2025-04-10

IntrusionUserCompromise (node.cfb4f7): 6

2025-04-09

IntrusionUserCompromise (node.cfb4f7): 3

2025-03-30

IntrusionUserCompromise (node.cfb4f7): 6

2025-03-29

IntrusionUserCompromise (node.cfb4f7): 3

2025-03-28

IntrusionUserCompromise (node.cfb4f7): 6

2025-03-27

IntrusionUserCompromise (node.cfb4f7): 3

2025-03-26

IntrusionUserCompromise (node.cfb4f7): 3

2025-03-25

IntrusionUserCompromise (node.cfb4f7): 9

2025-03-24

IntrusionUserCompromise (node.cfb4f7): 3

2025-03-23

IntrusionUserCompromise (node.cfb4f7): 3

2025-03-22

IntrusionUserCompromise (node.cfb4f7): 6

2025-03-21

IntrusionUserCompromise (node.cfb4f7): 6

2025-03-20

IntrusionUserCompromise (node.cfb4f7): 3

2025-03-19

IntrusionUserCompromise (node.cfb4f7): 4

2025-03-17

IntrusionUserCompromise (node.cfb4f7): 6

DShield reports (IP summary, reports)

2025-02-19

Number of reports: 12

Distinct targets: 5

2025-03-04

Number of reports: 10

Distinct targets: 4

2025-03-12

Number of reports: 10

Distinct targets: 3

2025-03-13

Number of reports: 10

Distinct targets: 3

2025-03-17

Number of reports: 13

Distinct targets: 5

2025-03-18

Number of reports: 237

Distinct targets: 6

2025-03-19

Number of reports: 700

Distinct targets: 23

2025-03-20

Number of reports: 119

Distinct targets: 6

2025-03-21

Number of reports: 524

Distinct targets: 23

2025-03-22

Number of reports: 256

Distinct targets: 24

2025-03-23

Number of reports: 368

Distinct targets: 23

2025-03-24

Number of reports: 591

Distinct targets: 24

2025-03-25

Number of reports: 246

Distinct targets: 18

2025-03-26

Number of reports: 234

Distinct targets: 10

2025-03-27

Number of reports: 653

Distinct targets: 29

2025-03-28

Number of reports: 712

Distinct targets: 35

2025-03-29

Number of reports: 375

Distinct targets: 36

2025-03-30

Number of reports: 699

Distinct targets: 21

2025-04-09

Number of reports: 243

Distinct targets: 14

2025-04-10

Number of reports: 146

Distinct targets: 29

2025-04-11

Number of reports: 263

Distinct targets: 33

2025-04-12

Number of reports: 719

Distinct targets: 40

2025-04-13

Number of reports: 825

Distinct targets: 34

2025-04-14

Number of reports: 607

Distinct targets: 32

2025-04-15

Number of reports: 145

Distinct targets: 27

2025-04-16

Number of reports: 726

Distinct targets: 42

2025-04-17

Number of reports: 933

Distinct targets: 25

2025-04-18

Number of reports: 593

Distinct targets: 27

2025-04-19

Number of reports: 359

Distinct targets: 22

2025-04-20

Number of reports: 652

Distinct targets: 27

2025-04-21

Number of reports: 139

Distinct targets: 26

2025-04-22

Number of reports: 261

Distinct targets: 28

2025-04-23

Number of reports: 51

Distinct targets: 35

2025-04-24

Number of reports: 578

Distinct targets: 14

OTX pulses

[675ef4c994a7bf1db01c9a1e] 2024-12-15 15:24:57.061000 | SSH honeypot logs for 2024-12-15

Author name:	jnazario
Pulse modified:	2024-12-15 15:24:57.061000
Indicator created:	2024-12-15 15:24:57
Indicator role:	None
Indicator title:
Indicator expiration:	2025-01-14 15:00:00

Origin AS

AS16276 - OVH

BGP Prefix

51.68.0.0/16

geo

France

🕑 Europe/Paris

hostname

ip-51-68-76.eu

hostname_class

['ip_in_hostname']

Address block ('inetnum' or 'NetRange' in whois database)

51.68.0.0 - 51.68.255.255

last_activity

2025-04-23 19:47:41

last_warden_event

2025-04-23 19:47:41

rep

0.23287620544433593

reserved_range

0

Shodan's InternetDB

Open ports: 25, 80, 221, 443, 1883, 4369, 5432, 8080, 8083, 10050, 10051, 18084

Tags: starttls, database, self-signed

CPEs: cpe:/a:apache:http_server:2.4.29, cpe:/a:proftpd:proftpd:1.3.5e, cpe:/a:postfix:postfix, cpe:/a:postgresql:postgresql:10

ts_added

2024-11-09 22:18:46.960000

ts_last_update

2025-04-27 22:18:51.673000

Warden event timeline

DShield event timeline

Presence on blacklists

OTX pulses