IP address
Search at other sites: 
.043185.213.23.35
Shodan(more info)
Passive DNS
- Warden events (34)
- 2026-05-03
-
- ReconScanning (node.86eb21): 1
- 2026-04-24
-
- ReconScanning (node.86eb21): 1
- 2026-04-21
-
- ReconScanning (node.86eb21): 1
- 2026-04-19
-
- ReconScanning (node.86eb21): 2
- 2026-04-18
-
- ReconScanning (node.86eb21): 1
- 2026-04-10
-
- ReconScanning (node.86eb21): 1
- 2026-04-08
-
- ReconScanning (node.f90c6b): 3
- 2026-04-05
-
- ReconScanning (node.86eb21): 1
- 2026-04-03
-
- ReconScanning (node.f90c6b): 3
- ReconScanning (node.86eb21): 1
- 2026-03-25
-
- ReconScanning (node.86eb21): 1
- 2026-03-21
-
- ReconScanning (node.86eb21): 2
- 2026-03-16
-
- ReconScanning (node.86eb21): 1
- 2026-03-15
-
- ReconScanning (node.86eb21): 1
- 2026-03-13
-
- ReconScanning (node.86eb21): 1
- 2026-03-11
-
- ReconScanning (node.86eb21): 1
- 2026-03-07
-
- ReconScanning (node.86eb21): 1
- 2026-03-06
-
- ReconScanning (node.86eb21): 1
- 2026-03-03
-
- ReconScanning (node.86eb21): 1
- 2026-02-27
-
- ReconScanning (node.86eb21): 1
- 2026-02-26
-
- ReconScanning (node.86eb21): 1
- 2026-02-24
-
- ReconScanning (node.86eb21): 1
- 2026-02-19
-
- ReconScanning (node.86eb21): 1
- 2026-02-13
-
- ReconScanning (node.86eb21): 1
- 2026-02-12
-
- ReconScanning (node.86eb21): 1
- 2026-02-11
-
- ReconScanning (node.86eb21): 1
- 2026-02-07
-
- ReconScanning (node.86eb21): 1
- 2026-02-06
-
- ReconScanning (node.86eb21): 1
- DShield reports (IP summary, reports)
- 2026-02-24
- Number of reports: 20
- Distinct targets: 3
- 2026-02-25
- Number of reports: 20
- Distinct targets: 3
- 2026-02-26
- Number of reports: 68
- Distinct targets: 10
- 2026-03-03
- Number of reports: 24
- Distinct targets: 4
- 2026-03-04
- Number of reports: 68
- Distinct targets: 9
- 2026-03-05
- Number of reports: 68
- Distinct targets: 9
- 2026-03-09
- Number of reports: 16
- Distinct targets: 3
- 2026-03-11
- Number of reports: 68
- Distinct targets: 10
- 2026-03-17
- Number of reports: 60
- Distinct targets: 9
- 2026-03-25
- Number of reports: 84
- Distinct targets: 11
- 2026-03-26
- Number of reports: 84
- Distinct targets: 11
- 2026-04-02
- Number of reports: 56
- Distinct targets: 9
- 2026-04-09
- Number of reports: 60
- Distinct targets: 10
- 2026-04-20
- Number of reports: 24
- Distinct targets: 6
- 2026-04-22
- Number of reports: 76
- Distinct targets: 11
- 2026-04-29
- Number of reports: 80
- Distinct targets: 10
- 2026-04-30
- Number of reports: 80
- Distinct targets: 10
Threat categories
| TL | Role | Category | Details |
|---|---|---|---|
| 38 | src | scan |
- Origin AS
- AS136258 - ONEPROVIDER-AS
- BGP Prefix
- 185.213.23.0/24
- geo
- Norway, Oslo
- 🕑 Europe/Oslo
- hostname
- (null)
- Address block ('inetnum' or 'NetRange' in whois database)
- 185.213.20.0 - 185.213.23.255
- last_activity
- 2026-05-03 03:57:53
- last_warden_event
- 2026-05-03 03:57:53
- rep
- 0.04285714285714286
- reserved_range
- 0
- Shodan's InternetDB
- Open ports: 11, 17, 21, 25, 26, 37, 38, 43, 49, 70, 79, 80, 81, 82, 83, 84, 92, 93, 96, 97, 102, 104, 110, 111, 113, 119, 139, 143, 175, 264, 389, 440, 444, 446, 448, 452, 465, 487, 502, 503, 515, 541, 548, 587, 591, 646, 666, 700, 771, 782, 789, 805, 873, 902, 947, 993, 1024, 1025, 1080, 1109, 1234, 1337, 1365, 1388, 1400, 1414, 1433, 1443, 1471, 1500, 1515, 1521, 1604, 1660, 1830, 1911, 1925, 1935, 1957, 1962, 1967, 1973, 1982, 1990, 2008, 2010, 2016, 2067, 2068, 2070, 2072, 2079, 2081, 2082, 2083, 2087, 2107, 2121, 2154, 2181, 2222, 2259, 2266, 2363, 2375, 2376, 2455, 2562, 2569, 2570, 2601, 2602, 2628, 2650, 2761, 2762, 2806, 3000, 3001, 3006, 3009, 3022, 3047, 3060, 3086, 3107, 3116, 3139, 3140, 3154, 3167, 3173, 3184, 3192, 3260, 3299, 3301, 3306, 3307, 3310, 3365, 3388, 3389, 3404, 3406, 3407, 3500, 3521, 3542, 3551, 3568, 3569, 3689, 3749, 3780, 3793, 3952, 4000, 4063, 4095, 4147, 4157, 4159, 4200, 4242, 4343, 4431, 4432, 4433, 4444, 4451, 4461, 4463, 4477, 4500, 4506, 4521, 4643, 4782, 4786, 4840, 4899, 4911, 4949, 5000, 5005, 5009, 5053, 5209, 5222, 5224, 5238, 5243, 5257, 5278, 5357, 5432, 5555, 5557, 5595, 5605, 5606, 5647, 5800, 5919, 5938, 5985, 5994, 6011, 6080, 6100, 6161, 6264, 6348, 6405, 6432, 6443, 6464, 6500, 6544, 6580, 6588, 6590, 6605, 6633, 6653, 6666, 6697, 7000, 7001, 7015, 7078, 7084, 7086, 7087, 7170, 7171, 7283, 7302, 7415, 7434, 7443, 7548, 7775, 7779, 7790, 7799, 7900, 7989, 8000, 8001, 8009, 8010, 8013, 8037, 8041, 8060, 8061, 8069, 8073, 8077, 8081, 8083, 8087, 8089, 8099, 8108, 8112, 8119, 8124, 8125, 8126, 8131, 8138, 8141, 8167, 8170, 8181, 8183, 8192, 8194, 8200, 8280, 8291, 8319, 8333, 8415, 8425, 8432, 8481, 8484, 8523, 8540, 8545, 8549, 8554, 8563, 8575, 8580, 8704, 8728, 8764, 8802, 8805, 8806, 8827, 8834, 8835, 8845, 8850, 8857, 8859, 8871, 8879, 8880, 8883, 8888, 8889, 8991, 9000, 9001, 9009, 9011, 9022, 9024, 9025, 9026, 9031, 9032, 9037, 9042, 9047, 9051, 9053, 9059, 9060, 9066, 9076, 9078, 9080, 9081, 9083, 9087, 9088, 9090, 9091, 9093, 9095, 9097, 9113, 9135, 9151, 9182, 9191, 9202, 9236, 9250, 9280, 9295, 9315, 9350, 9399, 9418, 9445, 9456, 9513, 9515, 9530, 9548, 9595, 9600, 9606, 9633, 9761, 9779, 9800, 9861, 9876, 9899, 9901, 9943, 9944, 9998, 9999
- Tags: honeypot
- CPEs: cpe:/a:openbsd:openssh:8.9p1, cpe:/o:canonical:ubuntu_linux
- ts_added
- 2024-04-28 03:43:08.215000
- ts_last_update
- 2026-05-04 03:43:10.551000
Warden event timeline
DShield event timeline