IP address
Shodan(more info)

Passive DNS

- IP blacklists
- Warden events (24)
- 2026-06-26
-
- ReconScanning (node.9c1411): 1
- 2026-06-18
-
- ReconScanning (node.9c1411): 3
- 2026-06-17
-
- ReconScanning (node.9c1411): 1
- 2026-06-14
-
- ReconScanning (node.9c1411): 2
- 2026-05-27
-
- ReconScanning (node.9c1411): 1
- 2026-05-15
-
- ReconScanning (node.9c1411): 1
- 2026-04-26
-
- ReconScanning (node.9c1411): 3
- 2026-04-21
-
- ReconScanning (node.9c1411): 1
- 2026-04-20
-
- ReconScanning (node.9c1411): 1
- 2026-04-10
-
- ReconScanning (node.9c1411): 6
- 2026-04-09
-
- ReconScanning (node.9c1411): 4
- DShield reports (IP summary, reports)
- 2026-05-10
- Number of reports: 29
- Distinct targets: 5
- 2026-05-11
- Number of reports: 10
- Distinct targets: 5
Threat categories
| TL | Role | Category | Details |
|---|---|---|---|
| 28 | src | scan | port: 445 |
- Origin AS
- AS9198 - KAZTELECOM-AS
- BGP Prefix
- 89.218.0.0/16
- geo
- Kazakhstan, Almaty
- 🕑 Asia/Almaty
- hostname
- (null)
- Address block ('inetnum' or 'NetRange' in whois database)
- 89.218.0.0 - 89.218.255.255
- last_activity
- 2026-06-26 11:43:51
- last_warden_event
- 2026-06-26 11:43:51
- rep
- 0.0031022477067188525
- reserved_range
- 0
- Shodan's InternetDB
- Open ports: 8080
- Tags: –
- CPEs: cpe:/a:microsoft:internet_information_services:10.0, cpe:/o:microsoft:windows
- ts_added
- 2025-10-29 11:42:36.209000
- ts_last_update
- 2026-06-30 11:42:40.079000
Warden event timeline
DShield event timeline
Presence on blacklists

