IP address
Search at other sites: 
.005185.213.23.35
Shodan(more info)
Passive DNS
- Warden events (25)
- 2026-06-17
-
- ReconScanning (node.86eb21): 1
- 2026-06-15
-
- ReconScanning (node.86eb21): 1
- 2026-06-14
-
- ReconScanning (node.86eb21): 1
- 2026-06-13
-
- ReconScanning (node.86eb21): 1
- 2026-06-08
-
- ReconScanning (node.86eb21): 1
- 2026-05-22
-
- ReconScanning (node.f90c6b): 3
- 2026-05-15
-
- ReconScanning (node.86eb21): 1
- 2026-05-03
-
- ReconScanning (node.86eb21): 1
- 2026-04-24
-
- ReconScanning (node.86eb21): 1
- 2026-04-21
-
- ReconScanning (node.86eb21): 1
- 2026-04-19
-
- ReconScanning (node.86eb21): 2
- 2026-04-18
-
- ReconScanning (node.86eb21): 1
- 2026-04-10
-
- ReconScanning (node.86eb21): 1
- 2026-04-08
-
- ReconScanning (node.f90c6b): 3
- 2026-04-05
-
- ReconScanning (node.86eb21): 1
- 2026-04-03
-
- ReconScanning (node.f90c6b): 3
- ReconScanning (node.86eb21): 1
- 2026-03-25
-
- ReconScanning (node.86eb21): 1
- DShield reports (IP summary, reports)
- 2026-03-25
- Number of reports: 84
- Distinct targets: 11
- 2026-03-26
- Number of reports: 84
- Distinct targets: 11
- 2026-04-02
- Number of reports: 56
- Distinct targets: 9
- 2026-04-09
- Number of reports: 60
- Distinct targets: 10
- 2026-04-20
- Number of reports: 24
- Distinct targets: 6
- 2026-04-22
- Number of reports: 76
- Distinct targets: 11
- 2026-04-29
- Number of reports: 80
- Distinct targets: 10
- 2026-04-30
- Number of reports: 80
- Distinct targets: 10
- 2026-05-09
- Number of reports: 69
- Distinct targets: 10
- 2026-05-14
- Number of reports: 81
- Distinct targets: 12
- 2026-05-20
- Number of reports: 74
- Distinct targets: 11
- 2026-06-02
- Number of reports: 44
- Distinct targets: 8
- 2026-06-03
- Number of reports: 44
- Distinct targets: 8
- 2026-06-09
- Number of reports: 68
- Distinct targets: 10
- 2026-06-10
- Number of reports: 68
- Distinct targets: 10
- 2026-06-16
- Number of reports: 65
- Distinct targets: 11
Threat categories
| TL | Role | Category | Details |
|---|---|---|---|
| 32 | src | scan |
- Origin AS
- AS136258 - ONEPROVIDER-AS
- BGP Prefix
- 185.213.23.0/24
- geo
- Norway, Oslo
- 🕑 Europe/Oslo
- hostname
- (null)
- Address block ('inetnum' or 'NetRange' in whois database)
- 185.213.20.0 - 185.213.23.255
- last_activity
- 2026-06-17 03:52:21
- last_warden_event
- 2026-06-17 03:52:21
- rep
- 0.005127799172983893
- reserved_range
- 0
- Shodan's InternetDB
- Open ports: 11, 13, 21, 38, 80, 86, 88, 92, 101, 102, 175, 311, 444, 465, 513, 541, 692, 771, 902, 1029, 1054, 1074, 1080, 1099, 1193, 1234, 1311, 1337, 1414, 1957, 1962, 1985, 2062, 2063, 2080, 2087, 2153, 2154, 2222, 2271, 2376, 2404, 2435, 2566, 2701, 2761, 3006, 3009, 3050, 3052, 3065, 3077, 3098, 3187, 3268, 3269, 3299, 3333, 3389, 3408, 3522, 3542, 3551, 3557, 3568, 4063, 4150, 4160, 4242, 4369, 4436, 4444, 4505, 4543, 4848, 4949, 5000, 5001, 5228, 5594, 5601, 5614, 5900, 5916, 5989, 5997, 6005, 6348, 6363, 6633, 6653, 6664, 7011, 7071, 7434, 7443, 7547, 7779, 7840, 8003, 8008, 8009, 8025, 8053, 8069, 8081, 8094, 8126, 8140, 8350, 8460, 8484, 8532, 8545, 8637, 8767, 8790, 8800, 8841, 8846, 8877, 9000, 9046, 9051, 9092, 9114, 9151, 9200, 9201, 9214, 9241, 9256, 9311, 9444, 9530, 9532, 9600, 9658, 9996
- Tags: honeypot
- CPEs: –
- ts_added
- 2024-04-28 03:43:08.215000
- ts_last_update
- 2026-06-22 03:43:10.073000
Warden event timeline
DShield event timeline