IP address

Passive DNS

Tags:

IP blacklists

Spamhaus SBL

45.144.212.47 is listed on the Spamhaus SBL blacklist.

Description: The Spamhaus Block List ("SBL") Advisory is a database of IP addresses from which Spamhaus does not recommend the acceptance of electronic mail.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-02-05 22:29:50.880000
Was present on blacklist at: 2026-01-22 22:29, 2026-01-29 22:29, 2026-02-05 22:29

Spamhaus DROP

45.144.212.47 is listed on the Spamhaus DROP blacklist.

Description: Spamhaus DROP (Don't Route Or Peer) list. Netblocks controlled by spammers or cyber criminals. The DROP lists are a tiny subset of the SBL, designed for use by firewalls and routing equipment to filter out the malicious traffic from these netblocks.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-02-05 22:29:50.880000
Was present on blacklist at: 2026-01-22 22:29, 2026-01-29 22:29, 2026-02-05 22:29

Turris greylist

45.144.212.47 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2026-02-04 22:15:00.171000
Was present on blacklist at: 2026-01-23 22:15, 2026-01-24 22:15, 2026-01-25 22:15, 2026-01-26 22:15, 2026-01-27 22:15, 2026-01-28 22:15, 2026-01-29 22:15, 2026-01-30 22:15, 2026-01-31 22:15, 2026-02-01 22:15, 2026-02-04 22:15

AbuseIPDB

45.144.212.47 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2026-01-31 05:00:00.703000
Was present on blacklist at: 2026-01-24 05:00, 2026-01-25 05:00, 2026-01-27 05:00, 2026-01-28 05:00, 2026-01-29 05:00, 2026-01-31 05:00

Spamhaus SBL CSS

45.144.212.47 is listed on the Spamhaus SBL CSS blacklist.

Description: The Spamhaus CSS is part of the SBL. CSS listings will have return code 127.0.0.3 to differentiate from regular SBL listings, which have return code 127.0.0.2.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-02-05 22:29:50.880000
Was present on blacklist at: 2026-01-29 22:29, 2026-02-05 22:29

Spamhaus XBL CBL

45.144.212.47 is listed on the Spamhaus XBL CBL blacklist.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-02-05 22:29:50.880000
Was present on blacklist at: 2026-01-29 22:29, 2026-02-05 22:29

Warden events (2838)

2026-02-03: IntrusionUserCompromise (node.cfb4f7): 30
2026-01-31: IntrusionUserCompromise (node.cfb4f7): 87
2026-01-30: IntrusionUserCompromise (node.cfb4f7): 194
2026-01-29: IntrusionUserCompromise (node.cfb4f7): 187
2026-01-28: IntrusionUserCompromise (node.cfb4f7): 282
2026-01-27: IntrusionUserCompromise (node.cfb4f7): 305
2026-01-26: IntrusionUserCompromise (node.cfb4f7): 298
2026-01-25: IntrusionUserCompromise (node.cfb4f7): 252
2026-01-24: IntrusionUserCompromise (node.cfb4f7): 227
2026-01-23: IntrusionUserCompromise (node.cfb4f7): 919
2026-01-22: IntrusionUserCompromise (node.cfb4f7): 57

Origin AS: AS60721 - bursabil; AS214940 - KPRONET
BGP Prefix: 45.144.212.0/24
geo: Ukraine; 🕑 Europe/Kyiv
hostname: (null)
Address block ('inetnum' or 'NetRange' in whois database): 45.144.212.0 - 45.144.215.255
last_activity: 2026-02-03 18:16:47
last_warden_event: 2026-02-03 18:16:47
rep: 0.2714285714285714
reserved_range: 0
Shodan's InternetDB: Open ports: 21, 22, 80, 135, 443, 445, 3157, 3306, 4444; Tags: self-signed, database; CPEs: cpe:/a:openbsd:openssh:9.6p1, cpe:/a:jupyter:jupyter_server:2.17.0, cpe:/o:canonical:ubuntu_linux, cpe:/a:mariadb:mariadb, cpe:/a:openssl:openssl:1.1.1w, cpe:/a:apache:http_server:2.4.58, cpe:/a:php:php:8.2.12, cpe:/a:perl:perl:5.34.1, cpe:/o:unix:unix, cpe:/a:getbootstrap:bootstrap, cpe:/a:apache:mod_perl:2.0.12
ts_added: 2026-01-22 22:29:43.051000
ts_last_update: 2026-02-05 22:29:50.916000

Warden event timeline

DShield event timeline

Presence on blacklists