IP address

Search at other sites:

--38.255.61.168

Shodan(more info)

Passive DNS

IP blacklists

CI Army

38.255.61.168 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2026-03-25 03:50:01.092000
Was present on blacklist at: 2026-03-16 03:50, 2026-03-17 03:50, 2026-03-18 03:50, 2026-03-19 03:50, 2026-03-20 03:50, 2026-03-21 03:50, 2026-03-22 03:50, 2026-03-23 03:50, 2026-03-24 03:50, 2026-03-25 03:50

Spamhaus XBL CBL

38.255.61.168 was recently listed on the Spamhaus XBL CBL blacklist, but currently it is not.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-04-06 03:50:51.833000
Was present on blacklist at: 2026-03-16 03:50, 2026-03-23 03:50

Threat categories

TL	Role	Category	Details
50	src	scan
25	src	—

---

DShield reports (IP summary, reports)

2026-03-15

Number of reports: 2111

Distinct targets: 1862

2026-03-16

Number of reports: 2781

Distinct targets: 2277

2026-03-17

Number of reports: 3406

Distinct targets: 2836

2026-03-18

Number of reports: 1070

Distinct targets: 939

2026-03-19

Number of reports: 2034

Distinct targets: 1752

2026-03-20

Number of reports: 3082

Distinct targets: 2464

2026-03-21

Number of reports: 769

Distinct targets: 543

2026-03-22

Number of reports: 1152

Distinct targets: 814

2026-03-23

Number of reports: 334

Distinct targets: 225

2026-03-24

Number of reports: 334

Distinct targets: 225

Origin AS

AS931 - AS-HYONIX-US

BGP Prefix

38.255.61.0/24

geo

Netherlands, Amsterdam

🕑 Europe/Amsterdam

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

38.0.0.0 - 38.255.255.255

reserved_range

0

Shodan's InternetDB

Open ports: 3389

Tags: self-signed

CPEs: –

ts_added

2026-03-16 03:50:43.155000

ts_last_update

2026-04-06 03:50:51.907000

Warden event timeline

DShield event timeline

Presence on blacklists