IP address

Search at other sites:
.132159.223.10.155
Shodan(more info)
Passive DNS
Tags: Malware Login attempts Scanner
IP blacklists
blocklist.de SSH
159.223.10.155 is listed on the blocklist.de SSH blacklist.

Description: Blocklist.de feed is a free and voluntary service provided<br>by a Fraud/Abuse-specialist. IPs performing SSH attacks.
Type of feed: primary (feed detail page)

Last checked at: 2025-12-09 17:05:00.466000
Was present on blacklist at: 2025-12-07 17:05, 2025-12-07 23:05, 2025-12-08 05:05, 2025-12-08 11:05, 2025-12-08 17:05, 2025-12-08 23:05, 2025-12-09 05:05, 2025-12-09 11:05, 2025-12-09 17:05
DataPlane SSH login
159.223.10.155 is listed on the DataPlane SSH login blacklist.

Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IPs trying<br>an unsolicited login to a host using SSH password authentication.
Type of feed: primary (feed detail page)

Last checked at: 2025-12-14 15:10:01.305000
Was present on blacklist at: 2025-12-07 19:10, 2025-12-08 03:10, 2025-12-08 07:10, 2025-12-08 15:10, 2025-12-08 19:10, 2025-12-09 03:10, 2025-12-09 07:10, 2025-12-09 15:10, 2025-12-09 19:10, 2025-12-10 03:10, 2025-12-10 07:10, 2025-12-10 15:10, 2025-12-10 19:10, 2025-12-11 03:10, 2025-12-11 07:10, 2025-12-11 15:10, 2025-12-11 19:10, 2025-12-12 03:10, 2025-12-12 07:10, 2025-12-12 15:10, 2025-12-12 19:10, 2025-12-13 03:10, 2025-12-13 07:10, 2025-12-13 15:10, 2025-12-13 19:10, 2025-12-14 03:10, 2025-12-14 07:10, 2025-12-14 15:10
Warden events (20)
2025-12-13
ReconScanning (node.9c1411): 6
2025-12-11
ReconScanning (node.9c1411): 7
2025-12-07
AttemptLogin (node.eef996): 5
IntrusionUserCompromise (node.eef996): 1
Malware (node.eef996): 1
Origin AS
AS14061 - DIGITALOCEAN-ASN
BGP Prefix
159.223.0.0/20
geo
Netherlands, Amsterdam
🕑 Europe/Amsterdam
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
159.223.0.0 - 159.223.255.255
last_activity
2025-12-13 10:08:25
last_warden_event
2025-12-13 10:08:25
rep
0.1318452380952381
reserved_range
0
Shodan's InternetDB
Open ports: 21, 22, 102, 110, 113, 122, 135, 347, 444, 445, 522, 632, 801, 1022, 1023, 1200, 1337, 1414, 1515, 1521, 1604, 1926, 2003, 2209, 2222, 3005, 3018, 3107, 3110, 3146, 3200, 3301, 3408, 3838, 4000, 4022, 4042, 4118, 4321, 4432, 4443, 5000, 5002, 5009, 5010, 5025, 5140, 5400, 5433, 5435, 5601, 5603, 5801, 6008, 6405, 6510, 6601, 7001, 7002, 7102, 7403, 8000, 8001, 8008, 8028, 8032, 8119, 8123, 8140, 8241, 8334, 8401, 8403, 8413, 8418, 8435, 8531, 8708, 8801, 8825, 8906, 8911, 8913, 9000, 9026, 9032, 9042, 9100, 9101, 9118, 9120, 9121, 9123, 9143, 9247, 9418, 9507, 9600, 9633, 9704, 9930, 9943, 9944, 9999, 10001, 10015, 10016, 10018, 10134, 10243, 10443, 10533, 11000, 11112, 11210, 11211, 11300, 11434
Tags: cloud
CPEs: cpe:/a:openbsd:openssh:8.2p1, cpe:/o:canonical:ubuntu_linux
ts_added
2025-12-07 15:06:59.436000
ts_last_update
2025-12-15 15:07:00.119000

Warden event timeline

DShield event timeline

Presence on blacklists