Block List Report

LAST UPDATED: 2022-06-27

This report is the aggregation of a variety of different Block/Deny list providers, for end-users’ reference.

The purpose in sharing this information is to alert end-users that specific IP addresses of theirs have been flagged by providers as possibly malicious, and different services might be affected because of this listing.

The option to remove any system from a block list will vary by the provider. Some will have a well documented process, and some will demand payment for removal.

Note that all timestamps are in UTC+0.

You can learn more on the report in our Block List Report tutorial.

You can learn more on our reports in general in our Overview of Free Public Benefit Shadowserver Reports presentation, which also explains example Use Cases.

Filename(s): blocklist

Fields

  • timestamp
    Date and time of the tracked event in UTC+0
  • ip
    IP Address of the device in question
  • hostname
    Reverse DNS of the device in question
  • source
    Block list source
  • reason
    Given reason of the block list by the source
  • asn
    ASN of where the device in question resides
  • geo
    Country where the device in question resides
  • region
    State / Province / Administrative region where the device in question resides
  • city
    City in which the device in question resides
  • naics
    North American Industry Classification System
  • sic
    Standard Industrial Classification

Sample

"timestamp","ip","hostname","source","reason","asn","geo","region","city","naics","sic"
"2015-09-21 01:13:38","50.62.177.14",,"blocklist.de","apache abuse",26496,"US","ARIZONA","PHOENIX",0,0
"2015-09-21 01:13:38","46.29.2.166",,"blocklist.de","apache abuse",6663,"SK","BRATISLAVSKY KRAJ","BRATISLAVA",0,0
"2015-09-21 01:13:38","50.62.177.208",,"blocklist.de","apache abuse",26496,"US","ARIZONA","PHOENIX",0,0
"2015-09-21 01:13:38","5.141.52.232",,"blocklist.de","apache abuse",28719,"RU","KHANTY-MANSIYSKIY AVTONOMNYY OKRUG-YUGRA","KHANTY-MANSYSK",0,0
"2015-09-21 01:13:38","5.141.229.165",,"blocklist.de","apache abuse",12705,"RU","PERMSKIY KRAY","PERM",0,0
"2015-09-21 01:13:38","50.62.161.15",,"blocklist.de","apache abuse",26496,"US","ARIZONA","PHOENIX",0,0
"2015-09-21 01:13:38","46.219.242.192",,"blocklist.de","apache abuse",31148,"UA","KYIV","KIEV",0,0
"2015-09-21 01:13:38","46.200.239.116",,"blocklist.de","apache abuse",6849,"UA","L'VIVS'KA OBLAST'","LVIV",517310,481302
"2015-09-21 01:13:38","46.63.78.85",,"blocklist.de","apache abuse",51784,"UA","KHMEL'NYTS'KA OBLAST'","SLAVUTA",0,0

Our 125 Report Types

« Back to Network Reporting