IP address

Search at other sites:

.200221.149.94.19

Shodan(more info)

Passive DNS

IP blacklists

Blocklist.net.ua

221.149.94.19 is listed on the Blocklist.net.ua blacklist.

Description: BlockList contains IP addresses that perform attacks,<br>send spam or brute force passwords to the blocking list.
Type of feed: primary (feed detail page)

Last checked at: 2025-12-03 19:15:01.880000
Was present on blacklist at: 2025-11-22 23:15, 2025-11-23 03:15, 2025-11-23 07:15, 2025-11-23 11:15, 2025-11-23 15:15, 2025-11-23 19:15, 2025-11-24 07:15, 2025-11-24 11:15, 2025-11-24 15:15, 2025-11-24 19:15, 2025-11-24 23:15, 2025-11-25 03:15, 2025-11-26 23:15, 2025-11-27 03:15, 2025-11-27 07:15, 2025-11-27 11:15, 2025-11-27 15:15, 2025-11-27 19:15, 2025-11-27 23:15, 2025-11-28 03:15, 2025-11-28 07:15, 2025-11-28 11:15, 2025-11-28 15:15, 2025-11-28 19:15, 2025-11-28 23:15, 2025-11-29 03:15, 2025-11-29 07:15, 2025-11-29 11:15, 2025-11-29 15:15, 2025-11-29 19:15, 2025-11-29 23:15, 2025-11-30 03:15, 2025-11-30 07:15, 2025-11-30 11:15, 2025-11-30 15:15, 2025-11-30 19:15, 2025-11-30 23:15, 2025-12-01 03:15, 2025-12-01 07:15, 2025-12-01 11:15, 2025-12-01 15:15, 2025-12-01 19:15, 2025-12-01 23:15, 2025-12-02 03:15, 2025-12-02 07:15, 2025-12-02 11:15, 2025-12-02 15:15, 2025-12-02 19:15, 2025-12-02 23:15, 2025-12-03 03:15, 2025-12-03 07:15, 2025-12-03 11:15, 2025-12-03 15:15, 2025-12-03 19:15

Turris greylist

221.149.94.19 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-12-11 22:15:00.190000
Was present on blacklist at: 2025-11-24 22:15, 2025-11-25 22:15, 2025-11-27 22:15, 2025-11-29 22:15, 2025-12-10 22:15, 2025-12-11 22:15

Warden events (2355)

2025-12-24

IntrusionUserCompromise (node.cfb4f7): 105

2025-12-22

IntrusionUserCompromise (node.cfb4f7): 138

2025-12-20

IntrusionUserCompromise (node.cfb4f7): 91

2025-12-16

IntrusionUserCompromise (node.cfb4f7): 189

2025-12-10

IntrusionUserCompromise (node.cfb4f7): 86

2025-12-09

IntrusionUserCompromise (node.cfb4f7): 111

2025-12-07

IntrusionUserCompromise (node.cfb4f7): 38

2025-12-05

IntrusionUserCompromise (node.cfb4f7): 50

2025-11-28

IntrusionUserCompromise (node.cfb4f7): 479

2025-11-27

IntrusionUserCompromise (node.cfb4f7): 20

2025-11-26

IntrusionUserCompromise (node.cfb4f7): 166

2025-11-25

IntrusionUserCompromise (node.cfb4f7): 126

2025-11-24

IntrusionUserCompromise (node.cfb4f7): 155

2025-11-23

IntrusionUserCompromise (node.cfb4f7): 298

2025-11-22

IntrusionUserCompromise (node.cfb4f7): 303

Origin AS

AS4766 - KIXS-AS-KR KIXS-AS-KR-KR

BGP Prefix

221.144.0.0/13

geo

South Korea, Gwanak-gu

🕑 Asia/Seoul

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

221.144.0.0 - 221.159.255.255

last_activity

2025-12-24 10:20:11

last_warden_event

2025-12-24 10:20:11

rep

0.2

reserved_range

0

Shodan's InternetDB

Open ports: 5000, 5001, 5006

Tags: –

CPEs: cpe:/a:apache:http_server, cpe:/a:f5:nginx, cpe:/a:synology:diskstation_manager:7.0.1-42218, cpe:/a:sencha:ext_js

ts_added

2025-11-22 07:50:07.398000

ts_last_update

2025-12-24 10:58:55.996000

Warden event timeline

DShield event timeline

Presence on blacklists