IP address

Search at other sites:
.00071.202.159.134c-71-202-159-134.hsd1.ca.comcast.net
Shodan(more info)
Passive DNS
Tags: IP in hostname
IP blacklists
Spamhaus XBL CBL
71.202.159.134 was recently listed on the Spamhaus XBL CBL blacklist, but currently it is not.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2024-11-05 12:09:50.179000
Was present on blacklist at: 2024-10-22 12:09
Spamhaus PBL ISP
71.202.159.134 is listed on the Spamhaus PBL ISP blacklist.

Description: The Spamhaus PBL is a DNSBL database of end-user IP address ranges which should not be delivering unauthenticated SMTP email to any Internet mail server except those provided for specifically by an ISP for that customer's use.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2024-11-05 12:09:50.179000
Was present on blacklist at: 2024-10-22 12:09, 2024-10-29 12:09, 2024-11-05 12:09
Turris greylist
71.202.159.134 is listed on the Turris greylist blacklist.

Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed: primary (feed detail page)

Last checked at: 2024-10-24 21:15:00.213000
Was present on blacklist at: 2024-10-23 21:15, 2024-10-24 21:15
Warden events (33)
2024-10-22
IntrusionUserCompromise (node.cfb4f7): 33
Origin AS
AS7922 - COMCAST-7922
BGP Prefix
71.192.0.0/12
geo
United States, Fremont
🕑 America/Los_Angeles
hostname
c-71-202-159-134.hsd1.ca.comcast.net
hostname_class
['isp', 'ip_in_hostname']
Address block ('inetnum' or 'NetRange' in whois database)
71.192.0.0 - 71.207.255.255
last_activity
2024-10-22 17:04:50
last_warden_event
2024-10-22 17:04:50
rep
0.0
reserved_range
0
Shodan's InternetDB
Open ports: 21, 80, 443, 2100, 3128, 5001, 6881, 8000, 8001, 8008, 8010, 8080, 8090, 8200, 9800
Tags: self-signed, starttls
CPEs: cpe:/a:apache:http_server, cpe:/a:apache:tomcat, cpe:/a:prototypejs:prototype:1.7, cpe:/a:google:firebase_cloud_messaging:8.1.2, cpe:/a:f5:nginx, cpe:/a:pureftpd:pure-ftpd, cpe:/a:squid-cache:squid:3.5.17, cpe:/a:d3.js_project:d3.js
ts_added
2024-10-22 12:09:49.714000
ts_last_update
2024-11-05 12:09:50.409000

Warden event timeline

DShield event timeline

Presence on blacklists