IP address

Search at other sites:
--85.208.84.113
Shodan(more info)
Passive DNS
Tags:
IP blacklists
UCEPROTECT L1
85.208.84.113 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-09-12 15:45:00.624000
Was present on blacklist at: 2025-08-25 23:45, 2025-08-26 07:45, 2025-08-26 15:45, 2025-08-26 23:45, 2025-08-27 07:45, 2025-08-27 15:45, 2025-08-27 23:45, 2025-08-28 07:45, 2025-08-28 15:45, 2025-08-28 23:45, 2025-08-29 07:45, 2025-08-29 15:45, 2025-08-29 23:45, 2025-08-30 07:45, 2025-08-30 15:45, 2025-08-30 23:45, 2025-08-31 07:45, 2025-08-31 15:45, 2025-08-31 23:45, 2025-09-01 07:45, 2025-09-01 15:45, 2025-09-01 23:45, 2025-09-02 07:45, 2025-09-02 15:45, 2025-09-02 23:45, 2025-09-03 07:45, 2025-09-03 15:45, 2025-09-03 23:45, 2025-09-04 07:45, 2025-09-04 15:45, 2025-09-04 23:45, 2025-09-05 07:45, 2025-09-05 15:45, 2025-09-05 23:45, 2025-09-06 07:45, 2025-09-06 15:45, 2025-09-06 23:45, 2025-09-07 07:45, 2025-09-07 15:45, 2025-09-07 23:45, 2025-09-08 07:45, 2025-09-08 15:45, 2025-09-08 23:45, 2025-09-09 07:45, 2025-09-09 15:45, 2025-09-09 23:45, 2025-09-10 07:45, 2025-09-10 15:45, 2025-09-10 23:45, 2025-09-11 07:45, 2025-09-11 15:45, 2025-09-11 23:45, 2025-09-12 07:45, 2025-09-12 15:45
OTX pulses
[68ada82ea9686ed1515b9a13] 2025-08-26 12:27:26.045000 | RDP honeypot logs for 2025/08/26
Author name:jnazario
Pulse modified:2025-08-26 12:27:26.045000
Indicator created:2025-08-26 12:27:26
Indicator role:None
Indicator title:
Indicator expiration:2025-09-25 12:00:00
[68b6e2abb9382ee24e7907c7] 2025-09-02 12:27:23.980000 | RDP honeypot logs for 2025/09/02
Author name:jnazario
Pulse modified:2025-09-02 12:27:23.980000
Indicator created:2025-09-02 12:27:24
Indicator role:None
Indicator title:
Indicator expiration:2025-10-02 12:00:00
[68b833cfc86a329e5c616c8c] 2025-09-03 12:25:51.010000 | RDP honeypot logs for 2025/09/03
Author name:jnazario
Pulse modified:2025-09-03 12:25:51.010000
Indicator created:2025-09-03 12:25:51
Indicator role:None
Indicator title:
Indicator expiration:2025-10-03 12:00:00
Origin AS
AS209309 - ONIKS-AS
AS211659 - STIMUL-AS
BGP Prefix
85.208.84.0/24
geo
Russia, Moscow
🕑 Europe/Moscow
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
85.208.84.0 - 85.208.84.255
last_activity
2025-09-03 16:01:16.326000
reserved_range
0
Shodan's InternetDB
Open ports: 135, 445, 3389
Tags: self-signed
CPEs:
ts_added
2025-08-26 00:01:21.311000
ts_last_update
2025-09-13 00:01:33.266000

Warden event timeline

DShield event timeline

Presence on blacklists

OTX pulses