IP address

Search at other sites:

.00438.165.23.149

Shodan(more info)

Passive DNS

IP blacklists

Blocklist.net.ua

38.165.23.149 is listed on the Blocklist.net.ua blacklist.

Description: BlockList contains IP addresses that perform attacks,<br>send spam or brute force passwords to the blocking list.
Type of feed: primary (feed detail page)

Last checked at: 2025-11-18 15:15:05.921000
Was present on blacklist at: 2025-11-17 19:15, 2025-11-17 23:15, 2025-11-18 03:15, 2025-11-18 07:15, 2025-11-18 11:15, 2025-11-18 15:15

CI Army

38.165.23.149 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-11-27 03:50:01.089000
Was present on blacklist at: 2025-11-26 03:50, 2025-11-27 03:50

Warden events (298)

2025-12-06

AttemptLogin (node.4dc198): 2

2025-12-01

IntrusionUserCompromise (node.40929a): 9

2025-11-22

IntrusionUserCompromise (node.40929a): 9

2025-11-21

AttemptLogin (node.368407): 175

2025-11-20

AttemptLogin (node.368407): 94

2025-11-15

IntrusionUserCompromise (node.40929a): 9

Origin AS

AS967 - VMISS-CA

BGP Prefix

38.165.23.0/24

geo

United States

🕑 America/Chicago

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

38.0.0.0 - 38.255.255.255

last_activity

2025-12-06 11:54:08

last_warden_event

2025-12-06 11:54:08

rep

0.0035714285714285713

reserved_range

0

Shodan's InternetDB

Open ports: 22, 80, 443

Tags: –

CPEs: cpe:/a:f5:nginx, cpe:/a:openbsd:openssh:8.9p1, cpe:/o:canonical:ubuntu_linux

ts_added

2025-11-16 05:00:45.524000

ts_last_update

2025-12-19 05:00:51.523000

Warden event timeline

DShield event timeline

Presence on blacklists