IP address

Search at other sites:
.245112.74.38.239measurements.ki3.org.cn
Shodan(more info)
Passive DNS
Tags: Scanner
IP blacklists
CI Army
112.74.38.239 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-05-06 02:50:01.028000
Was present on blacklist at: 2025-02-06 03:50, 2025-02-07 03:50, 2025-02-08 03:50, 2025-02-09 03:50, 2025-02-10 03:50, 2025-02-11 03:50, 2025-02-12 03:50, 2025-03-01 03:50, 2025-03-02 03:50, 2025-03-03 03:50, 2025-03-04 03:50, 2025-03-05 03:50, 2025-03-06 03:50, 2025-03-07 03:50, 2025-03-08 03:50, 2025-03-09 03:50, 2025-03-10 03:50, 2025-03-12 03:50, 2025-04-03 02:50, 2025-04-04 02:50, 2025-04-05 02:50, 2025-04-06 02:50, 2025-04-07 02:50, 2025-04-08 02:50, 2025-04-09 02:50, 2025-04-10 02:50, 2025-04-11 02:50, 2025-04-12 02:50, 2025-04-13 02:50, 2025-05-01 02:50, 2025-05-02 02:50, 2025-05-03 02:50, 2025-05-04 02:50, 2025-05-05 02:50, 2025-05-06 02:50
AbuseIPDB
112.74.38.239 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-05-06 04:00:00.590000
Was present on blacklist at: 2025-02-06 05:00, 2025-02-07 05:00, 2025-03-02 05:00, 2025-03-05 05:00, 2025-03-06 05:00, 2025-03-07 05:00, 2025-04-01 04:00, 2025-04-02 04:00, 2025-04-03 04:00, 2025-04-07 04:00, 2025-04-10 04:00, 2025-05-01 04:00, 2025-05-03 04:00, 2025-05-04 04:00, 2025-05-05 04:00, 2025-05-06 04:00
Turris greylist
112.74.38.239 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-05-06 21:15:00.171000
Was present on blacklist at: 2025-02-07 22:15, 2025-03-02 22:15, 2025-04-05 21:15, 2025-04-11 21:15, 2025-05-02 21:15, 2025-05-05 21:15, 2025-05-06 21:15
UCEPROTECT L1
112.74.38.239 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-03-08 16:45:00.651000
Was present on blacklist at: 2025-03-01 08:45, 2025-03-01 16:45, 2025-03-02 00:45, 2025-03-02 08:45, 2025-03-02 16:45, 2025-03-03 00:45, 2025-03-03 08:45, 2025-03-03 16:45, 2025-03-04 00:45, 2025-03-04 08:45, 2025-03-04 16:45, 2025-03-05 00:45, 2025-03-05 08:45, 2025-03-05 16:45, 2025-03-06 00:45, 2025-03-06 08:45, 2025-03-06 16:45, 2025-03-07 00:45, 2025-03-07 08:45, 2025-03-07 16:45, 2025-03-08 00:45, 2025-03-08 16:45
Warden events (323)
2025-05-06
ReconScanning (node.4dc198): 27
2025-05-05
ReconScanning (node.4dc198): 22
2025-05-04
ReconScanning (node.4dc198): 12
2025-05-01
AnomalyTraffic (node.ffe95c): 1
2025-04-30
ReconScanning (node.4dc198): 42
2025-04-08
ReconScanning (node.4dc198): 18
2025-04-06
ReconScanning (node.4dc198): 1
2025-04-02
ReconScanning (node.4dc198): 2
2025-03-06
ReconScanning (node.4dc198): 4
2025-03-05
ReconScanning (node.4dc198): 52
2025-03-04
ReconScanning (node.4dc198): 17
2025-03-03
ReconScanning (node.4dc198): 15
2025-02-07
ReconScanning (node.4dc198): 6
2025-02-06
ReconScanning (node.4dc198): 3
2025-02-05
ReconScanning (node.4dc198): 101
DShield reports (IP summary, reports)
2025-02-05
Number of reports: 125
Distinct targets: 111
2025-02-06
Number of reports: 325
Distinct targets: 149
2025-02-07
Number of reports: 144
Distinct targets: 90
2025-02-10
Number of reports: 28
Distinct targets: 16
2025-02-24
Number of reports: 19
Distinct targets: 15
2025-02-27
Number of reports: 32
Distinct targets: 19
2025-02-28
Number of reports: 87
Distinct targets: 61
2025-03-01
Number of reports: 141
Distinct targets: 126
2025-03-02
Number of reports: 52
Distinct targets: 50
2025-03-03
Number of reports: 96
Distinct targets: 63
2025-03-04
Number of reports: 188
Distinct targets: 118
2025-03-05
Number of reports: 220
Distinct targets: 149
2025-03-06
Number of reports: 158
Distinct targets: 106
2025-03-07
Number of reports: 39
Distinct targets: 21
2025-03-10
Number of reports: 21
Distinct targets: 14
2025-03-19
Number of reports: 21
Distinct targets: 16
2025-03-24
Number of reports: 158
Distinct targets: 107
2025-03-30
Number of reports: 55
Distinct targets: 31
2025-03-31
Number of reports: 59
Distinct targets: 41
2025-04-01
Number of reports: 185
Distinct targets: 125
2025-04-02
Number of reports: 170
Distinct targets: 126
2025-04-03
Number of reports: 14
Distinct targets: 9
2025-04-04
Number of reports: 136
Distinct targets: 87
2025-04-05
Number of reports: 62
Distinct targets: 37
2025-04-06
Number of reports: 154
Distinct targets: 104
2025-04-07
Number of reports: 40
Distinct targets: 23
2025-04-08
Number of reports: 93
Distinct targets: 75
2025-04-09
Number of reports: 166
Distinct targets: 113
2025-04-10
Number of reports: 148
Distinct targets: 95
2025-04-14
Number of reports: 75
Distinct targets: 70
2025-04-30
Number of reports: 116
Distinct targets: 74
2025-05-01
Number of reports: 244
Distinct targets: 160
2025-05-02
Number of reports: 100
Distinct targets: 66
2025-05-03
Number of reports: 67
Distinct targets: 57
2025-05-04
Number of reports: 145
Distinct targets: 117
2025-05-05
Number of reports: 172
Distinct targets: 100
Origin AS
AS37963 - CNNIC-ALIBABA-CN-NET-AP
BGP Prefix
112.74.0.0/17
fmp
{'general': 0.41922447085380554}
geo
China, Shenzhen
🕑 Asia/Shanghai
hostname
measurements.ki3.org.cn
Address block ('inetnum' or 'NetRange' in whois database)
112.74.0.0 - 112.75.255.255
last_activity
2025-05-06 12:23:55
last_warden_event
2025-05-06 12:23:55
otx_pulses
[]
rep
0.24522414434523815
reserved_range
0
Shodan's InternetDB
Open ports: 10250
Tags: scanner, devops
CPEs:
ts_added
2023-06-20 18:42:50.013000
ts_last_update
2025-05-06 21:16:14.932000

Warden event timeline

DShield event timeline

Presence on blacklists