IP address
Search at other sites: 
.042111.39.230.69
Shodan(more info)
Passive DNS
- Warden events (84)
- 2026-04-22
-
- ReconScanning (node.ce2b59): 5
- 2026-04-21
-
- ReconScanning (node.ce2b59): 8
- 2026-04-17
-
- ReconScanning (node.ce2b59): 3
- 2026-04-16
-
- ReconScanning (node.ce2b59): 9
- 2026-04-15
-
- ReconScanning (node.ce2b59): 9
- 2026-04-14
-
- ReconScanning (node.ce2b59): 13
- IntrusionUserCompromise (node.40929a): 1
- 2026-04-13
-
- ReconScanning (node.ce2b59): 12
- AttemptLogin (node.368407): 2
- AttemptLogin (node.9c160c): 1
- IntrusionUserCompromise (node.40929a): 1
- 2026-04-12
-
- ReconScanning (node.ce2b59): 12
- AttemptLogin (node.c26a5f): 1
- 2026-04-11
-
- ReconScanning (node.ce2b59): 6
- AttemptLogin (node.03e7a9): 1
- DShield reports (IP summary, reports)
- 2026-04-13
- Number of reports: 19
- Distinct targets: 5
- 2026-04-14
- Number of reports: 20
- Distinct targets: 3
- 2026-04-15
- Number of reports: 20
- Distinct targets: 3
Threat categories
| TL | Role | Category | Details |
|---|---|---|---|
| 49 | src | scan | port: many |
- Origin AS
- AS9808 - CMNET-GD
- BGP Prefix
- 111.39.0.0/16
- geo
- China
- 🕑 Asia/Shanghai
- hostname
- (null)
- Address block ('inetnum' or 'NetRange' in whois database)
- 111.0.0.0 - 111.63.255.255
- last_activity
- 2026-04-22 23:48:24
- last_warden_event
- 2026-04-22 23:48:24
- rep
- 0.04203869047619047
- reserved_range
- 0
- Shodan's InternetDB
- Open ports: 2060, 2222, 2323, 9091, 18182
- Tags: eol-product
- CPEs: cpe:/a:php:php:7.1.7, cpe:/a:lighttpd:lighttpd:1.4.45, cpe:/a:openbsd:openssh:7.4
- ts_added
- 2026-04-11 16:28:48.304000
- ts_last_update
- 2026-05-01 16:28:50.299000
Warden event timeline
DShield event timeline