IP address

Search at other sites:

.038209.38.154.221

Shodan(more info)

Passive DNS

IP blacklists

Turris greylist

209.38.154.221 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-12-10 22:15:00.161000
Was present on blacklist at: 2025-11-21 22:15, 2025-12-03 22:15, 2025-12-06 22:15, 2025-12-10 22:15

Warden events (39)

2025-12-17

ReconScanning (node.f90c6b): 1

2025-12-11

ReconScanning (node.f90c6b): 1

2025-12-05

IntrusionUserCompromise (node.cfb4f7): 12

2025-12-03

ReconScanning (node.f90c6b): 13

2025-12-02

ReconScanning (node.f90c6b): 3

ReconScanning (node.86eb21): 2

2025-12-01

ReconScanning (node.f90c6b): 1

2025-11-30

ReconScanning (node.f90c6b): 1

2025-11-27

ReconScanning (node.f90c6b): 1

2025-11-26

ReconScanning (node.f90c6b): 1

2025-11-25

ReconScanning (node.f90c6b): 2

2025-11-23

ReconScanning (node.f90c6b): 1

Origin AS

AS14061 - DIGITALOCEAN-ASN

BGP Prefix

209.38.128.0/19

geo

United States, Santa Clara

🕑 America/Los_Angeles

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

209.38.0.0 - 209.38.255.255

last_activity

2025-12-17 00:18:42

last_warden_event

2025-12-17 00:18:42

rep

0.03809523809523809

reserved_range

0

Shodan's InternetDB

Open ports: 22, 80, 443, 4369, 5672, 15672

Tags: cloud

CPEs: cpe:/a:erlang:erlang%2fotp, cpe:/a:getbootstrap:bootstrap, cpe:/o:debian:debian_linux, cpe:/a:vmware:rabbitmq:4.1.3, cpe:/a:openbsd:openssh:9.2p1, cpe:/a:jquery:jquery:3.5.1, cpe:/a:caddyserver:caddy, cpe:/o:linux:linux_kernel, cpe:/a:golang:go

ts_added

2025-11-21 22:16:04.727000

ts_last_update

2025-12-20 22:16:13.493000

Warden event timeline

DShield event timeline

Presence on blacklists