IP address

Search at other sites:

.00045.120.101.64

Shodan(more info)

Passive DNS

IP blacklists

CI Army

45.120.101.64 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2026-01-14 03:50:00.938000
Was present on blacklist at: 2025-12-25 03:50, 2025-12-26 03:50, 2025-12-27 03:50, 2025-12-28 03:50, 2025-12-29 03:50, 2025-12-30 03:50, 2025-12-31 03:50, 2026-01-01 03:50, 2026-01-02 03:50, 2026-01-03 03:50, 2026-01-04 03:50, 2026-01-05 03:50, 2026-01-06 03:50, 2026-01-08 03:50, 2026-01-09 03:50, 2026-01-10 03:50, 2026-01-11 03:50, 2026-01-12 03:50, 2026-01-13 03:50, 2026-01-14 03:50

Turris greylist

45.120.101.64 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-12-30 22:15:00.182000
Was present on blacklist at: 2025-12-25 22:15, 2025-12-27 22:15, 2025-12-28 22:15, 2025-12-29 22:15, 2025-12-30 22:15

AbuseIPDB

45.120.101.64 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2026-01-13 05:00:00.638000
Was present on blacklist at: 2025-12-28 05:00, 2025-12-31 05:00, 2026-01-01 05:00, 2026-01-02 05:00, 2026-01-03 05:00, 2026-01-06 05:00, 2026-01-08 05:00, 2026-01-09 05:00, 2026-01-12 05:00, 2026-01-13 05:00

Warden events (1641)

2025-12-29

IntrusionUserCompromise (node.cfb4f7): 472

2025-12-28

IntrusionUserCompromise (node.cfb4f7): 77

2025-12-27

IntrusionUserCompromise (node.cfb4f7): 334

2025-12-26

IntrusionUserCompromise (node.cfb4f7): 242

2025-12-25

IntrusionUserCompromise (node.cfb4f7): 31

2025-12-24

IntrusionUserCompromise (node.cfb4f7): 485

DShield reports (IP summary, reports)

2025-12-25

Number of reports: 239

Distinct targets: 34

2025-12-26

Number of reports: 239

Distinct targets: 34

2025-12-27

Number of reports: 81

Distinct targets: 60

2025-12-28

Number of reports: 79

Distinct targets: 59

2025-12-30

Number of reports: 329

Distinct targets: 25

2025-12-31

Number of reports: 548

Distinct targets: 29

2026-01-01

Number of reports: 301

Distinct targets: 33

2026-01-02

Number of reports: 301

Distinct targets: 33

2026-01-03

Number of reports: 377

Distinct targets: 34

2026-01-04

Number of reports: 73

Distinct targets: 58

2026-01-05

Number of reports: 72

Distinct targets: 57

2026-01-06

Number of reports: 84

Distinct targets: 63

2026-01-08

Number of reports: 359

Distinct targets: 35

2026-01-09

Number of reports: 357

Distinct targets: 23

2026-01-10

Number of reports: 346

Distinct targets: 19

2026-01-11

Number of reports: 346

Distinct targets: 19

2026-01-12

Number of reports: 464

Distinct targets: 31

2026-01-13

Number of reports: 146

Distinct targets: 7

Origin AS

AS137697 - CHINATELECOM-JiangSu-YangZhou-IDC

BGP Prefix

45.120.100.0/22

geo

China

🕑 Asia/Shanghai

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

45.120.100.0 - 45.120.103.255

last_activity

2025-12-29 14:10:19

last_warden_event

2025-12-29 14:10:19

rep

0.0

reserved_range

0

Shodan's InternetDB

Open ports: 21, 3306, 8090, 8113, 47001

Tags: database

CPEs: cpe:/o:microsoft:windows, cpe:/a:oracle:mysql

ts_added

2025-12-24 06:54:01.628000

ts_last_update

2026-01-14 06:54:10.155000

Warden event timeline

DShield event timeline

Presence on blacklists