IP address
Search at other sites: 
.02389.248.68.73
Shodan(more info)
Passive DNS
- DShield reports (IP summary, reports)
- 2026-05-21
- Number of reports: 20
- Distinct targets: 3
- OTX pulses
-
[6a143ebb9b167155ca0332d4] 2026-05-25 12:21:15.237000 | RDP honeypot logs for 2026/05/25
Author name: jnazario Pulse modified: 2026-05-25 12:21:15.237000 Indicator created: 2026-05-25 12:21:16 Indicator role: None Indicator title: Indicator expiration: 2026-06-24 12:00:00
Threat categories
| TL | Role | Category | Details |
|---|---|---|---|
| 25 | src | login | protocol: rdp |
- Origin AS
- AS62240 - Clouvider
- BGP Prefix
- 89.248.68.0/24
- geo
- Germany, Barmstedt
- 🕑 Europe/Berlin
- hostname
- (null)
- Address block ('inetnum' or 'NetRange' in whois database)
- 89.248.68.0 - 89.248.68.255
- last_activity
- 2026-05-29 10:04:40.857000
- rep
- 0.022580645161290325
- reserved_range
- 0
- ts_added
- 2026-05-22 05:04:15.018000
- ts_last_update
- 2026-06-04 05:04:23.262000
Warden event timeline
DShield event timeline
OTX pulses