A wild shodan.io appears (refrigerator.census)

I was informed that refrigerator.census.shodan.io[] connected and as i dislike them (my blog) it was added to the permanent firewall (my blog).

OrgAbuseHandle: ABUSE341-ARIN
OrgAbuseName: CariNet Abuse
OrgAbusePhone: +1-858-974-5080
OrgAbuseEmail: complaints@cari.net
OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE341-ARIN

They have also had a mention before

Its been a while and lets hope you never try to visit the zoo with that address once they discard iit.

Novell groupwise getting the shodan.io experience


I hate shodan (my blog) and never really understood the Novelll thing (my blog) but history has ignored Novell.who was being sued by it’s owner Microsoft for reasons best known to themselves towards the end.

Anyhow i notice that the Novell GroupWise Internet Agent 7.0.1 is being used by shodan.io users to send viruses which our thing detects.

Whether this is really groupwise or not i dont honestly care about but since it is not branded as a Microsoft product i guess its another example of Embrace, extend, and extinguish, or Embrace, extend, and exterminate from our friends at Microsoft.

So if your a non clued in member of shodan and aspiring script kiddie you know what to look for after all that’s the meaning of shodan as i understand it.

A picard moment for you (shodan.io)

Oh yes its our friendly scumbags from shodan (my blog) – over to you captain

connect from 

Its from our beachhut scanning outpost in the Seychelles (my blog) and a small /24 this time if you want to mass block this scammy isp and its lovely client.

So shields up, and i hope you never get this recycled ip addresss once shodan.io have fucked it up reputation wise.  I never delist shodian.io ip addresses from who ever the isp is.

Enjoy your day.

Another shodan.io find once again co hosted with David Attenborough

The delights of being a shodan.io spotter (my blog) never disappoint.  Beats birdwatching

pirateCome and meet

does not resolve to address

Of whom that isp is remembered

But is actually

pirate.census.shodan.io. 300    IN      A

picardWhich may also be called burger (my blog) I make no comment about them as i know them already other than hi once more shall suffice.

What was up with burger ?

Anyhow something well worth crimson firewalling. You should by all know my views on the scum at shodan.io.

Enjoy your day


a shodan.io spotting in the wild. (co hosted with David Attenborough)

Robert Stilwell judo criminal

Robert Stilwell judo criminal

Turn on your crimson forcefield, as shodan (my blog) have moved to fresh scanning pasture.

I was alerted by my cron job with a person pretending to be them

burger.census.shodan.io does not resolve to address

That’s cari.net (who ring a bell my blog) – perhaps there ex hosters now ?

A dig of burger.census.shodan.io states.

; <<>> DiG 9.10.3-P4-Debian <<>> burger.census.shodan.io
burger.census.shodan.io. 299    IN      A

picardI suggest a block of too which is a provider called abuse @cyrusone.com

I am not delisting cari.net from the zoo’s firewall hosting shodan is shady to start with.

This has been a public information announcement, nobody wants to be scanned by these scum and villainy be they genuine shodan or fakes.

Have a happy wednesday.  If you work for cyrusone.com hello, hope to see you and block more of your ip ranges soon.