IP address

Search at other sites:

.329222.185.239.70

Shodan(more info)

Passive DNS

IP blacklists

CI Army

222.185.239.70 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2026-04-16 02:50:00.779000
Was present on blacklist at: 2026-04-12 02:50, 2026-04-13 02:50, 2026-04-14 02:50, 2026-04-15 02:50, 2026-04-16 02:50

Threat categories

TL	Role	Category	Details
70	src	scan	port: many
25	src	—

---

Warden events (273)

2026-04-16

ReconScanning (node.ce2b59): 13

2026-04-15

ReconScanning (node.ce2b59): 57

2026-04-14

ReconScanning (node.ce2b59): 57

2026-04-13

ReconScanning (node.ce2b59): 58

2026-04-12

ReconScanning (node.ce2b59): 55

2026-04-11

ReconScanning (node.ce2b59): 33

DShield reports (IP summary, reports)

2026-04-11

Number of reports: 59

Distinct targets: 44

2026-04-12

Number of reports: 72

Distinct targets: 59

2026-04-13

Number of reports: 74

Distinct targets: 56

2026-04-14

Number of reports: 74

Distinct targets: 53

2026-04-15

Number of reports: 74

Distinct targets: 53

Origin AS

AS4134 - CHINANET-BACKBONE

BGP Prefix

222.184.0.0/13

geo

China

🕑 Asia/Shanghai

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

222.184.0.0 - 222.191.255.255

last_activity

2026-04-16 09:13:48

last_warden_event

2026-04-16 09:13:48

rep

0.32856329055059524

reserved_range

0

Shodan's InternetDB

Open ports: 2323, 8443

Tags: self-signed

CPEs: –

ts_added

2026-04-11 10:14:37.686000

ts_last_update

2026-04-16 09:15:33.060000

Warden event timeline

DShield event timeline

Presence on blacklists