IP address

Search at other sites:

.126156.238.244.129

Shodan(more info)

Passive DNS

IP blacklists

CI Army

156.238.244.129 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-12-11 03:50:00.929000
Was present on blacklist at: 2025-11-30 03:50, 2025-12-01 03:50, 2025-12-02 03:50, 2025-12-03 03:50, 2025-12-04 03:50, 2025-12-05 03:50, 2025-12-06 03:50, 2025-12-08 03:50, 2025-12-09 03:50, 2025-12-11 03:50

Warden events (202)

2025-12-15

ReconScanning (node.9c1411): 6

2025-12-14

ReconScanning (node.9c1411): 18

2025-12-13

ReconScanning (node.9c1411): 19

2025-12-12

ReconScanning (node.9c1411): 1

2025-12-10

ReconScanning (node.9c1411): 28

2025-12-07

ReconScanning (node.9c1411): 3

2025-12-06

ReconScanning (node.9c1411): 38

2025-12-03

ReconScanning (node.9c1411): 14

2025-12-02

ReconScanning (node.9c1411): 43

2025-12-01

ReconScanning (node.9c1411): 32

DShield reports (IP summary, reports)

2025-12-19

Number of reports: 16

Distinct targets: 15

Origin AS

AS142032 - HFTCL-AS-AP

AS401696 - COGNETCLOUD

BGP Prefix

156.238.240.0/21

geo

Seychelles

🕑 Indian/Mahe

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

156.224.0.0 - 156.255.255.255

last_activity

2025-12-15 11:29:09

last_warden_event

2025-12-15 11:29:09

rep

0.12559505644298735

reserved_range

0

Shodan's InternetDB

Open ports: 80, 3001, 5985, 8001, 9000

Tags: –

CPEs: cpe:/o:microsoft:windows

ts_added

2025-11-30 03:56:19.336000

ts_last_update

2025-12-21 03:56:21.447000

Warden event timeline

DShield event timeline

Presence on blacklists