IP address
Shodan(more info)

Passive DNS

- Warden events (19)
- 2026-07-16
-
- ReconScanning (node.86eb21): 1
- 2026-07-15
-
- ReconScanning (node.86eb21): 1
- 2026-07-03
-
- ReconScanning (node.86eb21): 1
- 2026-07-01
-
- ReconScanning (node.86eb21): 1
- 2026-06-27
-
- ReconScanning (node.86eb21): 1
- 2026-06-24
-
- ReconScanning (node.86eb21): 1
- 2026-06-17
-
- ReconScanning (node.86eb21): 1
- 2026-06-15
-
- ReconScanning (node.86eb21): 1
- 2026-06-14
-
- ReconScanning (node.86eb21): 1
- 2026-06-13
-
- ReconScanning (node.86eb21): 1
- 2026-06-08
-
- ReconScanning (node.86eb21): 1
- 2026-05-22
-
- ReconScanning (node.f90c6b): 3
- 2026-05-03
-
- ReconScanning (node.86eb21): 1
- 2026-04-24
-
- ReconScanning (node.86eb21): 1
- 2026-04-21
-
- ReconScanning (node.86eb21): 1
- 2026-04-19
-
- ReconScanning (node.86eb21): 2
- DShield reports (IP summary, reports)
- 2026-04-22
- Number of reports: 110
- Distinct targets: 25
- 2026-05-01
- Number of reports: 124
- Distinct targets: 19
- 2026-05-09
- Number of reports: 89
- Distinct targets: 21
- 2026-05-14
- Number of reports: 98
- Distinct targets: 22
- 2026-05-20
- Number of reports: 78
- Distinct targets: 17
- 2026-06-02
- Number of reports: 64
- Distinct targets: 17
- 2026-06-03
- Number of reports: 64
- Distinct targets: 17
- 2026-06-09
- Number of reports: 92
- Distinct targets: 21
- 2026-06-10
- Number of reports: 92
- Distinct targets: 21
- 2026-06-17
- Number of reports: 138
- Distinct targets: 20
- 2026-07-03
- Number of reports: 96
- Distinct targets: 20
- 2026-07-11
- Number of reports: 84
- Distinct targets: 20
- 2026-07-12
- Number of reports: 84
- Distinct targets: 20
Threat categories
| TL | Role | Category | Details |
|---|---|---|---|
| 35 | src | scan |
- Origin AS
- AS397423 - TIER-NET
- BGP Prefix
- 192.158.236.0/24
- geo
- United States, Charlotte
- 🕑 America/New_York
- hostname
- (null)
- Address block ('inetnum' or 'NetRange' in whois database)
- 192.158.224.0 - 192.158.239.255
- last_activity
- 2026-07-16 01:52:49
- last_warden_event
- 2026-07-16 01:52:49
- rep
- 0.0045606021961759335
- reserved_range
- 0
- Shodan's InternetDB
- Open ports: 21, 22, 25, 43, 70, 80, 88, 102, 110, 113, 119, 175, 195, 243, 311, 389, 427, 445, 465, 491, 502, 503, 513, 548, 555, 587, 675, 771, 789, 831, 833, 902, 990, 995, 1008, 1099, 1177, 1190, 1198, 1224, 1234, 1292, 1387, 1400, 1452, 1599, 1723, 1801, 1883, 1925, 1926, 1957, 1962, 1970, 1977, 2000, 2070, 2077, 2079, 2081, 2082, 2087, 2181, 2345, 2379, 2404, 2482, 2551, 2553, 2556, 2567, 2628, 2762, 2768, 3016, 3017, 3059, 3062, 3073, 3079, 3106, 3109, 3119, 3127, 3140, 3194, 3196, 3198, 3405, 3542, 3549, 3551, 3555, 3559, 3689, 4021, 4063, 4080, 4095, 4103, 4148, 4150, 4157, 4282, 4300, 4321, 4433, 4434, 4435, 4436, 4444, 4500, 4505, 4506, 4567, 4782, 4786, 5005, 5009, 5201, 5223, 5277, 5321, 5432, 5443, 5555, 5594, 5599, 5604, 5672, 5800, 5801, 5985, 6000, 6080, 6379, 6432, 6505, 6562, 6600, 6605, 6949, 7001, 7050, 7057, 7071, 7088, 7434, 7465, 7657, 7773, 7779, 8009, 8010, 8029, 8032, 8050, 8053, 8055, 8060, 8076, 8081, 8089, 8100, 8108, 8111, 8112, 8123, 8126, 8134, 8164, 8178, 8195, 8200, 8238, 8243, 8282, 8285, 8300, 8333, 8421, 8428, 8443, 8530, 8545, 8553, 8554, 8558, 8561, 8562, 8579, 8597, 8637, 8641, 8649, 8666, 8732, 8767, 8791, 8800, 8810, 8814, 8826, 8827, 8834, 8852, 8864, 8883, 8887, 8888, 8910, 9000, 9009, 9012, 9019, 9049, 9056, 9061, 9067, 9080, 9095, 9100, 9129, 9148, 9162, 9196, 9243, 9245, 9289, 9333, 9513, 9633, 9754, 9797, 9919, 9923, 9928, 9999
- Tags: honeypot
- CPEs: cpe:/o:canonical:ubuntu_linux, cpe:/a:openbsd:openssh:8.9p1
- ts_added
- 2024-08-20 05:01:40.829000
- ts_last_update
- 2026-07-18 05:02:57.485000
Warden event timeline
DShield event timeline

