IP address

Search at other sites:

.000155.212.132.245

Shodan(more info)

Passive DNS

IP blacklists

Echelon TLS/SSL crawler

155.212.132.245 is listed on the Echelon TLS/SSL crawler blacklist.

Description: TLS/SSL connection fingerprinting detected via Suricata
Type of feed: primary (feed detail page)

Last checked at: 2026-03-30 09:40:00.588000
Was present on blacklist at: 2026-03-23 10:40, 2026-03-24 10:40, 2026-03-25 10:40, 2026-03-26 10:40, 2026-03-27 10:40, 2026-03-28 10:40, 2026-03-29 09:40, 2026-03-30 09:40

Echelon web crawler

155.212.132.245 is listed on the Echelon web crawler blacklist.

Description: HTTP web crawling activity detected on web honeypots
Type of feed: primary (feed detail page)

Last checked at: 2026-03-30 09:50:00.499000
Was present on blacklist at: 2026-03-23 10:50, 2026-03-24 10:50, 2026-03-25 10:50, 2026-03-26 10:50, 2026-03-27 10:50, 2026-03-28 10:50, 2026-03-29 09:50, 2026-03-30 09:50

Spamhaus SBL CSS

155.212.132.245 was recently listed on the Spamhaus SBL CSS blacklist, but currently it is not.

Description: The Spamhaus CSS is part of the SBL. CSS listings will have return code 127.0.0.3 to differentiate from regular SBL listings, which have return code 127.0.0.2.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-04-02 08:20:50.439000
Was present on blacklist at: 2026-03-26 08:20

Spamhaus XBL CBL

155.212.132.245 was recently listed on the Spamhaus XBL CBL blacklist, but currently it is not.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-04-02 08:20:50.439000
Was present on blacklist at: 2026-03-26 08:20

Threat categories

TL	Role	Category	Details
39	src	scan

---

Warden events (23)

2026-03-23

ReconScanning (node.9c1411): 7

2026-03-22

ReconScanning (node.9c1411): 3

2026-03-21

ReconScanning (node.9c1411): 8

2026-03-20

ReconScanning (node.9c1411): 4

2026-03-19

ReconScanning (node.9c1411): 1

DShield reports (IP summary, reports)

2026-03-19

Number of reports: 12

Distinct targets: 4

2026-03-20

Number of reports: 18

Distinct targets: 5

2026-03-23

Number of reports: 15

Distinct targets: 6

2026-03-24

Number of reports: 15

Distinct targets: 6

Origin AS

AS198610 - BEGET-AS

BGP Prefix

155.212.132.0/24

geo

Russia

🕑 Europe/Moscow

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

155.212.0.0 - 155.212.255.255

last_activity

2026-03-23 16:39:00

last_warden_event

2026-03-23 16:39:00

rep

0.0

reserved_range

0

ts_added

2026-03-19 08:20:47.618000

ts_last_update

2026-04-06 08:20:51.875000

Warden event timeline

DShield event timeline

Presence on blacklists