IP address

Search at other sites:

.042223.6.252.237

Shodan(more info)

Passive DNS

IP blacklists

CI Army

223.6.252.237 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-12-12 03:50:00.954000
Was present on blacklist at: 2025-12-11 03:50, 2025-12-12 03:50

Warden events (3)

2025-12-08

ReconScanning (node.368407): 3

DShield reports (IP summary, reports)

2025-12-10

Number of reports: 15

Distinct targets: 11

Origin AS

AS37963 - CNNIC-ALIBABA-CN-NET-AP

BGP Prefix

223.6.128.0/17

geo

China, Hangzhou

🕑 Asia/Shanghai

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

223.4.0.0 - 223.7.255.255

last_activity

2025-12-08 18:43:03

last_warden_event

2025-12-08 18:43:03

rep

0.041666666666666664

reserved_range

0

Shodan's InternetDB

Open ports: 79, 111, 1193, 2001, 4120, 4437, 5272, 5280, 7001, 7087, 8136, 8569, 8570, 9105, 10004, 12218, 16047, 28080, 44307, 44410, 49682

Tags: honeypot

CPEs: cpe:/a:eset:nod32_antivirus:99, cpe:/a:openbsd:openssh:7.4, cpe:/a:openbsd:openssh:6.6.1

ts_added

2025-12-08 17:57:08.796000

ts_last_update

2025-12-12 17:57:10.152000

Warden event timeline

DShield event timeline

Presence on blacklists