IP address
Search at other sites: 
.12694.198.190.87
Shodan(more info)
Passive DNS
- Warden events (275)
- 2026-06-24
-
- ReconScanning (node.ce2b59): 2
- 2026-06-23
-
- IntrusionUserCompromise (node.cfb4f7): 6
- 2026-06-22
-
- IntrusionUserCompromise (node.cfb4f7): 110
- 2026-06-21
-
- IntrusionUserCompromise (node.cfb4f7): 74
- 2026-06-20
-
- IntrusionUserCompromise (node.cfb4f7): 17
- 2026-06-19
-
- IntrusionUserCompromise (node.cfb4f7): 66
- DShield reports (IP summary, reports)
- 2026-06-18
- Number of reports: 68
- Distinct targets: 34
Threat categories
| TL | Role | Category | Details |
|---|---|---|---|
| 50 | src | login | protocol: telnet port: 23 |
| 42 | src | scan | port: 22, 23, 80, 443, 3389, 5900, 8080, 8443 |
- Origin AS
- AS200651 - FlokiNET
- BGP Prefix
- 94.198.190.0/24
- geo
- Netherlands
- 🕑 Europe/Amsterdam
- hostname
- (null)
- Address block ('inetnum' or 'NetRange' in whois database)
- 94.198.184.0 - 94.198.191.255
- last_activity
- 2026-06-24 19:46:39
- last_warden_event
- 2026-06-24 19:46:39
- rep
- 0.12567146239784377
- reserved_range
- 0
- Shodan's InternetDB
- Open ports: 21
- Tags: –
- CPEs: cpe:/a:proftpd:proftpd:1.3.5
- ts_added
- 2026-06-19 02:33:49.434000
- ts_last_update
- 2026-06-24 20:25:51.937000
Warden event timeline
DShield event timeline