IP address
Search at other sites: 
.0321.246.219.212
Shodan(more info)
Passive DNS
- Warden events (2)
- 2026-03-30
-
- ReconScanning (node.4dc198): 1
- ReconScanning (node.368407): 1
- DShield reports (IP summary, reports)
- 2026-02-26
- Number of reports: 11
- Distinct targets: 6
- OTX pulses
-
[699ef83c5785c108d22cfee7] 2026-02-25 13:25:16.100000 | PostgresQL honeypot logs for 2026-02-25
Author name: jnazario Pulse modified: 2026-02-25 13:25:16.100000 Indicator created: 2026-02-25 13:25:16 Indicator role: None Indicator title: Indicator expiration: 2026-03-27 13:00:00
Threat categories
| TL | Role | Category | Details |
|---|---|---|---|
| 38 | src | scan |
- Origin AS
- AS9318 - SKB-AS SKB-AS-KR
- BGP Prefix
- 1.240.0.0/13
- geo
- South Korea, Chungju
- 🕑 Asia/Seoul
- hostname
- (null)
- Address block ('inetnum' or 'NetRange' in whois database)
- 1.224.0.0 - 1.255.255.255
- last_activity
- 2026-03-30 04:38:37
- last_warden_event
- 2026-03-30 04:38:37
- rep
- 0.03214285714285714
- reserved_range
- 0
- Shodan's InternetDB
- Open ports: 80, 3306, 8089, 9292, 10022
- Tags: eol-product, database
- CPEs: cpe:/a:openbsd:openssh:7.4, cpe:/a:f5:nginx:1.29.1, cpe:/a:oracle:mysql:8.2.0
- ts_added
- 2026-02-25 16:40:34.133000
- ts_last_update
- 2026-04-07 16:40:40.291000
Warden event timeline
DShield event timeline
OTX pulses