IP address

Search at other sites:
.00438.49.213.155
Shodan(more info)
Passive DNS
Tags:
IP blacklists
Spamhaus SBL CSS
38.49.213.155 was recently listed on the Spamhaus SBL CSS blacklist, but currently it is not.

Description: The Spamhaus CSS is part of the SBL. CSS listings will have return code 127.0.0.3 to differentiate from regular SBL listings, which have return code 127.0.0.2.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-04-03 07:12:03.676000
Was present on blacklist at: 2026-03-20 07:11, 2026-03-27 07:12
Spamhaus XBL CBL
38.49.213.155 was recently listed on the Spamhaus XBL CBL blacklist, but currently it is not.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-04-03 07:12:03.676000
Was present on blacklist at: 2026-03-20 07:11, 2026-03-27 07:12
UCEPROTECT L1
38.49.213.155 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2026-03-29 00:45:01.202000
Was present on blacklist at: 2026-03-22 08:45, 2026-03-22 16:45, 2026-03-23 00:45, 2026-03-23 08:45, 2026-03-23 16:45, 2026-03-24 00:45, 2026-03-24 08:45, 2026-03-24 16:45, 2026-03-25 00:45, 2026-03-25 08:45, 2026-03-25 16:45, 2026-03-26 00:45, 2026-03-26 08:45, 2026-03-26 16:45, 2026-03-27 00:45, 2026-03-27 08:45, 2026-03-27 16:45, 2026-03-28 00:45, 2026-03-28 08:45, 2026-03-28 16:45, 2026-03-29 00:45

Threat categories

TLRoleCategoryDetails
47 src login protocol: smtp
port: 25
38 src
Warden events (403)
2026-03-24
IntrusionUserCompromise (node.cfb4f7): 4
2026-03-20
IntrusionUserCompromise (node.cfb4f7): 399
Origin AS
AS26832 - RICAWEBSERVICES
BGP Prefix
38.49.208.0/20
geo
Canada, Montreal
🕑 America/Toronto
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
38.0.0.0 - 38.255.255.255
last_activity
2026-03-24 13:18:22
last_warden_event
2026-03-24 13:18:22
rep
0.004464285714285714
reserved_range
0
Shodan's InternetDB
Open ports: 3389, 5357, 5985
Tags:
CPEs:
ts_added
2026-03-20 07:11:54.781000
ts_last_update
2026-04-06 07:12:00.255000

Warden event timeline

DShield event timeline

Presence on blacklists