IP address

Search at other sites:

.04312.198.76.171

Shodan(more info)

Passive DNS

IP blacklists

CI Army

12.198.76.171 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-12-14 03:50:01.107000
Was present on blacklist at: 2025-12-13 03:50, 2025-12-14 03:50

Warden events (2)

2025-12-10

AnomalyTraffic (node.ffe95c): 1

ReconScanning (node.4dc198): 1

Origin AS

AS7018 - ATT-INTERNET4

BGP Prefix

12.128.0.0/9

geo

United States, Chicago

🕑 America/Chicago

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

12.0.0.0 - 12.255.255.255

last_activity

2025-12-10 07:43:23

last_warden_event

2025-12-10 07:43:23

rep

0.04285714285714285

reserved_range

0

Shodan's InternetDB

Open ports: 53, 80, 81, 88, 110, 123, 143, 389, 443, 445, 993, 1434, 1801, 3306, 3388, 3389, 5357, 6002, 8069, 9090

Tags: eol-product, starttls, self-signed, database, eol-os

CPEs: cpe:/a:oracle:mysql:5.6.11-log, cpe:/a:microsoft:internet_information_services, cpe:/a:jquery:jquery:1.8.3, cpe:/a:jquery:jquery_ui:1.9.2, cpe:/o:microsoft:windows, cpe:/a:microsoft:kerberos, cpe:/a:php:php:7.0.7, cpe:/a:microsoft:internet_information_services:7.5, cpe:/a:microsoft:asp.net, cpe:/a:microsoft:message_queuing

ts_added

2025-12-10 07:42:50.082000

ts_last_update

2025-12-16 07:43:00.642000

Warden event timeline

DShield event timeline

Presence on blacklists