IP address

Search at other sites:
.19845.205.1.3
Shodan(more info)
Passive DNS
Tags: Scanner
IP blacklists
DShield Block
45.205.1.3 is listed on the DShield Block blacklist.

Description: Recommended Block List by DShield.org. It summarizes the top 20 attacking<br>class C (/24) subnets over the last three days.
Type of feed: secondary (feed detail page)

Last checked at: 2026-04-28 04:50:00
Was present on blacklist at: 2026-04-05 04:50, 2026-04-06 04:50, 2026-04-07 04:50, 2026-04-08 04:50, 2026-04-09 04:50, 2026-04-10 04:50, 2026-04-11 04:50, 2026-04-12 04:50, 2026-04-13 04:50, 2026-04-14 04:50, 2026-04-15 04:50, 2026-04-16 04:50, 2026-04-17 04:50, 2026-04-19 04:50, 2026-04-20 04:50, 2026-04-22 04:50, 2026-04-23 04:50, 2026-04-25 04:50, 2026-04-26 04:50, 2026-04-28 04:50
Spamhaus XBL CBL
45.205.1.3 is listed on the Spamhaus XBL CBL blacklist.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-04-26 05:15:32.030000
Was present on blacklist at: 2026-04-12 05:11, 2026-04-19 05:06, 2026-04-26 05:15
AbuseIPDB
45.205.1.3 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2026-04-19 04:00:00.609000
Was present on blacklist at: 2026-04-13 04:00, 2026-04-14 04:00, 2026-04-15 04:00, 2026-04-16 04:00, 2026-04-17 04:00, 2026-04-18 04:00, 2026-04-19 04:00
UCEPROTECT L1
45.205.1.3 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2026-04-19 23:45:00.487000
Was present on blacklist at: 2026-04-13 07:45, 2026-04-13 15:45, 2026-04-13 23:45, 2026-04-14 07:45, 2026-04-14 15:45, 2026-04-14 23:45, 2026-04-15 07:45, 2026-04-15 15:45, 2026-04-15 23:45, 2026-04-16 07:45, 2026-04-16 15:45, 2026-04-16 23:45, 2026-04-17 07:45, 2026-04-17 15:45, 2026-04-17 23:45, 2026-04-18 07:45, 2026-04-18 15:45, 2026-04-18 23:45, 2026-04-19 07:45, 2026-04-19 15:45, 2026-04-19 23:45
Echelon config file hunt
45.205.1.3 is listed on the Echelon config file hunt blacklist.

Description: Scanning for exposed configuration files
Type of feed: primary (feed detail page)

Last checked at: 2026-04-22 09:10:00.782000
Was present on blacklist at: 2026-04-13 09:10, 2026-04-14 09:10, 2026-04-15 09:10, 2026-04-16 09:10, 2026-04-17 09:10, 2026-04-18 09:10, 2026-04-19 09:10, 2026-04-20 09:10, 2026-04-21 09:10, 2026-04-22 09:10
Echelon web crawler
45.205.1.3 is listed on the Echelon web crawler blacklist.

Description: HTTP web crawling activity detected on web honeypots
Type of feed: primary (feed detail page)

Last checked at: 2026-04-22 09:50:00.853000
Was present on blacklist at: 2026-04-14 09:50, 2026-04-15 09:50, 2026-04-16 09:50, 2026-04-17 09:50, 2026-04-19 09:50, 2026-04-20 09:50, 2026-04-21 09:50, 2026-04-22 09:50
Echelon admin panel hunt
45.205.1.3 is listed on the Echelon admin panel hunt blacklist.

Description: Scanning for administrative interfaces
Type of feed: primary (feed detail page)

Last checked at: 2026-04-22 09:05:01.670000
Was present on blacklist at: 2026-04-16 09:05, 2026-04-17 09:05, 2026-04-18 09:05, 2026-04-19 09:05, 2026-04-20 09:05, 2026-04-21 09:05, 2026-04-22 09:05
Echelon database admin hunt
45.205.1.3 is listed on the Echelon database admin hunt blacklist.

Description: Scanning for database admin interfaces (phpMyAdmin, etc.)
Type of feed: primary (feed detail page)

Last checked at: 2026-04-22 09:10:00.760000
Was present on blacklist at: 2026-04-16 09:10, 2026-04-17 09:10, 2026-04-18 09:10, 2026-04-19 09:10, 2026-04-20 09:10, 2026-04-21 09:10, 2026-04-22 09:10
Spamhaus SBL CSS
45.205.1.3 was recently listed on the Spamhaus SBL CSS blacklist, but currently it is not.

Description: The Spamhaus CSS is part of the SBL. CSS listings will have return code 127.0.0.3 to differentiate from regular SBL listings, which have return code 127.0.0.2.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-04-26 05:15:32.030000
Was present on blacklist at: 2026-04-19 05:06

Threat categories

TLRoleCategoryDetails
66 src scan port: 80, 1080, 3128, 5555, 8080, 8081, 12322, 30120
60 src
Warden events (255)
2026-04-23
ReconScanning (node.9c1411): 4
2026-04-22
ReconScanning (node.ce2b59): 3
ReconScanning (node.4dc198): 12
ReconScanning (node.368407): 13
2026-04-18
ReconScanning (node.9c1411): 4
AnomalyTraffic (node.6a1878): 5
ReconScanning (node.ce2b59): 1
ReconScanning (node.4dc198): 1
ReconScanning (node.368407): 1
2026-04-17
ReconScanning (node.ce2b59): 2
ReconScanning (node.4dc198): 1
ReconScanning (node.368407): 1
ReconScanning (node.9c1411): 4
2026-04-16
ReconScanning (node.9c1411): 9
AnomalyTraffic (node.6a1878): 8
ReconScanning (node.ce2b59): 3
ReconScanning (node.4dc198): 5
ReconScanning (node.368407): 4
2026-04-15
AnomalyTraffic (node.6a1878): 6
ReconScanning (node.4dc198): 4
ReconScanning (node.ce2b59): 6
ReconScanning (node.9c1411): 8
ReconScanning (node.368407): 1
2026-04-14
ReconScanning (node.9c1411): 10
AnomalyTraffic (node.6a1878): 29
ReconScanning (node.4dc198): 12
ReconScanning (node.368407): 3
ReconScanning (node.ce2b59): 8
2026-04-13
ReconScanning (node.ce2b59): 4
AnomalyTraffic (node.6a1878): 11
ReconScanning (node.4dc198): 9
ReconScanning (node.368407): 4
ReconScanning (node.9c1411): 4
2026-04-12
AnomalyTraffic (node.6a1878): 25
ReconScanning (node.ce2b59): 6
ReconScanning (node.368407): 4
ReconScanning (node.4dc198): 12
ReconScanning (node.f90c6b): 1
2026-04-05
AnomalyTraffic (node.6a1878): 1
ReconScanning (node.368407): 2
ReconScanning (node.4dc198): 2
ReconScanning (node.ce2b59): 2
DShield reports (IP summary, reports)
2026-04-05
Number of reports: 21
Distinct targets: 14
2026-04-12
Number of reports: 67
Distinct targets: 37
2026-04-13
Number of reports: 435
Distinct targets: 64
2026-04-14
Number of reports: 784
Distinct targets: 235
2026-04-15
Number of reports: 784
Distinct targets: 235
2026-04-16
Number of reports: 249
Distinct targets: 116
2026-04-17
Number of reports: 19
Distinct targets: 13
2026-04-18
Number of reports: 19
Distinct targets: 13
2026-04-19
Number of reports: 83
Distinct targets: 39
2026-04-22
Number of reports: 695
Distinct targets: 470
Origin AS
AS215925 - VPSVAULTHOST
BGP Prefix
45.205.1.0/24
geo
United States
🕑 America/Chicago
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
45.192.0.0 - 45.207.255.255
last_activity
2026-04-23 11:16:58
last_warden_event
2026-04-23 11:16:58
rep
0.19810064406622024
reserved_range
0
ts_added
2026-04-05 05:04:49.967000
ts_last_update
2026-04-28 05:06:57.603000

Warden event timeline

DShield event timeline

Presence on blacklists