IP address
Tags:
IP in hostname
Static IP
- IP blacklists
DataPlane TELNET login
128.140.63.41 is listed on the DataPlane TELNET login blacklist.
Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IPs trying<br>an unsolicited login via TELNET password authentication.
Type of feed:
primary (
feed detail page)
Last checked at:
2025-12-19 19:10:03.184000
Was present on blacklist at:
2025-12-13 03:10,
2025-12-13 07:10,
2025-12-13 11:10,
2025-12-13 15:10,
2025-12-13 19:10,
2025-12-13 23:10,
2025-12-14 03:10,
2025-12-14 07:10,
2025-12-14 11:10,
2025-12-14 15:10,
2025-12-14 19:10,
2025-12-14 23:10,
2025-12-15 03:10,
2025-12-15 07:10,
2025-12-15 11:10,
2025-12-15 15:10,
2025-12-15 19:10,
2025-12-15 23:10,
2025-12-16 03:10,
2025-12-16 07:10,
2025-12-16 11:10,
2025-12-16 15:10,
2025-12-16 19:10,
2025-12-16 23:10,
2025-12-17 03:10,
2025-12-17 07:10,
2025-12-17 11:10,
2025-12-17 15:10,
2025-12-17 19:10,
2025-12-17 23:10,
2025-12-18 03:10,
2025-12-18 07:10,
2025-12-18 11:10,
2025-12-18 15:10,
2025-12-18 19:10,
2025-12-18 23:10,
2025-12-19 03:10,
2025-12-19 07:10,
2025-12-19 11:10,
2025-12-19 15:10,
2025-12-19 19:10
Spamhaus XBL CBL
128.140.63.41 is listed on the Spamhaus XBL CBL blacklist.
Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed:
secondary (DNSBL) (
feed detail page)
Last checked at:
2025-12-13 03:53:30.665000
Was present on blacklist at:
2025-12-13 03:53
AbuseIPDB
128.140.63.41 is listed on the AbuseIPDB blacklist.
Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed:
primary (
feed detail page)
Last checked at:
2025-12-15 05:00:00.709000
Was present on blacklist at:
2025-12-14 05:00,
2025-12-15 05:00
Turris greylist
128.140.63.41 is listed on the Turris greylist blacklist.
Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed:
primary (
feed detail page)
Last checked at:
2025-12-15 22:15:00.177000
Was present on blacklist at:
2025-12-14 22:15,
2025-12-15 22:15
- DShield reports (IP summary, reports)
- 2025-12-13
- Number of reports: 28
- Distinct targets: 11
- 2025-12-14
- Number of reports: 64
- Distinct targets: 12
- 2025-12-15
- Number of reports: 10
- Distinct targets: 5
- Origin AS
- AS24940 - HETZNER-AS
- BGP Prefix
- 128.140.0.0/17
- geo
-
Germany, Falkenstein
- 🕑 Europe/Berlin
- hostname
- static.41.63.140.128.clients.your-server.de
- hostname_class
- ['ip_in_hostname', 'static']
- Address block ('inetnum' or 'NetRange' in whois database)
- 128.140.0.0 - 128.140.127.255
- reserved_range
- 0
- Shodan's InternetDB
- Open ports: 22, 3000
- Tags: –
- CPEs: cpe:/o:canonical:ubuntu_linux, cpe:/a:openbsd:openssh:9.6p1
- ts_added
- 2025-12-13 03:53:30.504000
- ts_last_update
- 2025-12-19 19:49:55.173000
Warden event timeline
DShield event timeline
Presence on blacklists
