IP address
Tags:
IP in hostname
Static IP
- IP blacklists
DataPlane TELNET login
66.210.26.242 is listed on the DataPlane TELNET login blacklist.
Description: DataPlane.org is a community-powered Internet data, feeds,<br>and measurement resource for operators, by operators. IPs trying<br>an unsolicited login via TELNET password authentication.
Type of feed:
primary (
feed detail page)
Last checked at:
2026-01-24 23:10:02.990000
Was present on blacklist at:
2026-01-16 23:10,
2026-01-17 03:10,
2026-01-17 07:10,
2026-01-17 11:10,
2026-01-17 15:10,
2026-01-17 19:10,
2026-01-17 23:10,
2026-01-18 03:10,
2026-01-18 07:10,
2026-01-18 11:10,
2026-01-18 15:10,
2026-01-18 19:10,
2026-01-18 23:10,
2026-01-19 03:10,
2026-01-19 07:10,
2026-01-19 11:10,
2026-01-19 15:10,
2026-01-19 19:10,
2026-01-19 23:10,
2026-01-20 03:10,
2026-01-20 07:10,
2026-01-20 11:10,
2026-01-20 15:10,
2026-01-20 19:10,
2026-01-20 23:10,
2026-01-21 03:10,
2026-01-21 07:10,
2026-01-21 11:10,
2026-01-21 15:10,
2026-01-21 19:10,
2026-01-21 23:10,
2026-01-22 03:10,
2026-01-22 07:10,
2026-01-22 11:10,
2026-01-22 15:10,
2026-01-22 19:10,
2026-01-22 23:10,
2026-01-23 03:10,
2026-01-23 07:10,
2026-01-23 11:10,
2026-01-23 15:10,
2026-01-23 19:10,
2026-01-23 23:10,
2026-01-24 03:10,
2026-01-24 07:10,
2026-01-24 11:10,
2026-01-24 15:10,
2026-01-24 19:10,
2026-01-24 23:10
Spamhaus SBL CSS
66.210.26.242 is listed on the Spamhaus SBL CSS blacklist.
Description: The Spamhaus CSS is part of the SBL. CSS listings will have return code 127.0.0.3 to differentiate from regular SBL listings, which have return code 127.0.0.2.
Type of feed:
secondary (DNSBL) (
feed detail page)
Last checked at:
2026-01-23 23:55:23.855000
Was present on blacklist at:
2026-01-16 23:55,
2026-01-23 23:55
Spamhaus XBL CBL
66.210.26.242 is listed on the Spamhaus XBL CBL blacklist.
Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed:
secondary (DNSBL) (
feed detail page)
Last checked at:
2026-01-23 23:55:23.855000
Was present on blacklist at:
2026-01-16 23:55,
2026-01-23 23:55
- Origin AS
- AS22773 - ASN-CXA-ALL-CCI-22773-RDC
- BGP Prefix
- 66.210.24.0/22
- geo
-
United States, Oklahoma City
- 🕑 America/Chicago
- hostname
- COX-66-210-26-242-static.coxinet.net
- hostname_class
- ['ip_in_hostname', 'static']
- Address block ('inetnum' or 'NetRange' in whois database)
- 66.210.0.0 - 66.210.255.255
- reserved_range
- 0
- Shodan's InternetDB
- Open ports: 500, 1701, 9081
- Tags: vpn
- CPEs: cpe:/a:oracle:jre, cpe:/a:eclipse:jetty:9.4.14
- ts_added
- 2026-01-16 23:55:16.860000
- ts_last_update
- 2026-01-24 23:55:21.885000
Warden event timeline
DShield event timeline
Presence on blacklists
