IP address

Search at other sites:

.000159.223.104.100

Shodan(more info)

Passive DNS

IP blacklists

CI Army

159.223.104.100 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-09-29 02:50:00.989000
Was present on blacklist at: 2025-09-21 02:50, 2025-09-22 02:50, 2025-09-23 02:50, 2025-09-24 02:50, 2025-09-25 02:50, 2025-09-26 02:50, 2025-09-27 02:50, 2025-09-28 02:50, 2025-09-29 02:50

DataPlane VNC RFB

159.223.104.100 is listed on the DataPlane VNC RFB blacklist.

Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IPs initiating<br>an unsolicited VNC remote frame buffer (RFB) session to a remote host.
Type of feed: primary (feed detail page)

Last checked at: 2025-09-24 18:10:01.147000
Was present on blacklist at: 2025-09-20 14:10, 2025-09-20 18:10, 2025-09-21 02:10, 2025-09-21 06:10, 2025-09-21 14:10, 2025-09-21 18:10, 2025-09-22 02:10, 2025-09-22 06:10, 2025-09-22 14:10, 2025-09-22 18:10, 2025-09-23 02:10, 2025-09-23 06:10, 2025-09-23 14:10, 2025-09-23 18:10, 2025-09-24 02:10, 2025-09-24 06:10, 2025-09-24 14:10, 2025-09-24 18:10

Warden events (238)

2025-10-28

ReconScanning (node.9c1411): 2

2025-10-02

ReconScanning (node.9c1411): 2

2025-10-01

ReconScanning (node.9c1411): 1

2025-09-30

ReconScanning (node.9c1411): 2

2025-09-29

ReconScanning (node.9c1411): 6

2025-09-28

ReconScanning (node.9c1411): 6

2025-09-27

ReconScanning (node.9c1411): 24

2025-09-26

ReconScanning (node.9c1411): 26

2025-09-25

ReconScanning (node.9c1411): 29

2025-09-24

ReconScanning (node.9c1411): 26

2025-09-23

ReconScanning (node.9c1411): 30

2025-09-22

ReconScanning (node.9c1411): 18

2025-09-21

ReconScanning (node.9c1411): 29

2025-09-20

ReconScanning (node.9c1411): 37

DShield reports (IP summary, reports)

2025-09-21

Number of reports: 13

Distinct targets: 9

2025-09-22

Number of reports: 24

Distinct targets: 14

2025-09-23

Number of reports: 10

Distinct targets: 6

OTX pulses

[5a7e3e70c44e7b48947593a7] 2018-02-10 00:36:00.396000 | Webscanners 2018-02-09 thru current day

Author name:	david3
Pulse modified:	2025-09-21 19:55:34.383000
Indicator created:	2025-08-22 20:30:20
Indicator role:	scanning_host
Indicator title:	404 NOT FOUND
Indicator expiration:	2025-11-20 00:00:00

Origin AS

AS14061 - DIGITALOCEAN-ASN

BGP Prefix

159.223.96.0/20

geo

United States, North Bergen

🕑 America/New_York

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

159.223.0.0 - 159.223.255.255

last_activity

2025-10-28 02:47:39

last_warden_event

2025-10-28 02:47:39

rep

0.0

reserved_range

0

ts_added

2025-03-23 09:26:24.033000

ts_last_update

2025-12-19 09:26:30.075000

Warden event timeline

DShield event timeline

Presence on blacklists

OTX pulses