IP address

Search at other sites:

.159172.120.158.201

Shodan(more info)

Passive DNS

IP blacklists

Echelon router exploit

172.120.158.201 is listed on the Echelon router exploit blacklist.

Description: Attempting router firmware exploits (Netgear, D-Link, etc.)
Type of feed: primary (feed detail page)

Last checked at: 2026-06-04 09:30:00.275000
Was present on blacklist at: 2026-05-28 09:30, 2026-05-29 09:30, 2026-05-30 09:30, 2026-05-31 09:30, 2026-06-01 09:30, 2026-06-02 09:30, 2026-06-03 09:30, 2026-06-04 09:30

Threat categories

TL	Role	Category	Details
25	src	exploit

---

Origin AS

AS214238 - iwihost

AS44559 - ITHOSTLINE

BGP Prefix

172.120.158.0/24

geo

United States

🕑 America/Chicago

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

172.120.0.0 - 172.121.255.255

rep

0.1591035847462855

reserved_range

0

Shodan's InternetDB

Open ports: 24442

Tags: –

CPEs: cpe:/o:debian:debian_linux, cpe:/a:openbsd:openssh:9.2p1, cpe:/o:linux:linux_kernel

ts_added

2026-05-28 09:30:41.743000

ts_last_update

2026-06-04 09:30:51.405000

Warden event timeline

DShield event timeline

Presence on blacklists