1.71.102.241 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Shanxi Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-10-28 17:18:15

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.71.102.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.71.102.241.			IN	A

;; AUTHORITY SECTION:
.			290	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102800 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 28 17:18:12 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 241.102.71.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 241.102.71.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.110.179.26	attackspambots	Oct 2 01:04:20 ns41 sshd[13145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.110.179.26	2019-10-02 07:53:47
140.143.170.123	attack	Oct 2 01:54:37 OPSO sshd\[18053\]: Invalid user gustav from 140.143.170.123 port 43392 Oct 2 01:54:37 OPSO sshd\[18053\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.170.123 Oct 2 01:54:40 OPSO sshd\[18053\]: Failed password for invalid user gustav from 140.143.170.123 port 43392 ssh2 Oct 2 01:59:26 OPSO sshd\[19387\]: Invalid user zenon from 140.143.170.123 port 52626 Oct 2 01:59:26 OPSO sshd\[19387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.170.123	2019-10-02 08:05:43
2403:cfc0:1007:100::10	attackspam	xmlrpc attack	2019-10-02 07:55:11
36.69.169.130	attackspambots	Unauthorized connection attempt from IP address 36.69.169.130 on Port 445(SMB)	2019-10-02 08:01:02
82.64.55.234	attackbots	Unauthorized connection attempt from IP address 82.64.55.234 on Port 445(SMB)	2019-10-02 07:54:04
181.48.29.35	attackspambots	Oct 1 22:34:15 *** sshd[19473]: Invalid user marketing from 181.48.29.35	2019-10-02 07:39:30
210.56.27.163	attack	$f2bV_matches_ltvn	2019-10-02 07:37:03
220.85.104.202	attackbots	Oct 2 01:55:43 MK-Soft-Root1 sshd[7714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.85.104.202 Oct 2 01:55:45 MK-Soft-Root1 sshd[7714]: Failed password for invalid user test from 220.85.104.202 port 50549 ssh2 ...	2019-10-02 08:04:12
136.144.142.177	attack	Oct 1 23:48:41 hcbbdb sshd\[10442\]: Invalid user tm from 136.144.142.177 Oct 1 23:48:41 hcbbdb sshd\[10442\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136-144-142-177.colo.transip.net Oct 1 23:48:42 hcbbdb sshd\[10442\]: Failed password for invalid user tm from 136.144.142.177 port 40878 ssh2 Oct 1 23:52:43 hcbbdb sshd\[10874\]: Invalid user administrador from 136.144.142.177 Oct 1 23:52:43 hcbbdb sshd\[10874\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136-144-142-177.colo.transip.net	2019-10-02 08:03:18
198.12.156.154	attack	BadRequests	2019-10-02 07:42:16
195.206.55.154	attackspam	Unauthorized connection attempt from IP address 195.206.55.154 on Port 445(SMB)	2019-10-02 07:52:04
89.36.217.142	attack	Oct 1 23:06:35 mail1 sshd\[1732\]: Invalid user cvsroot from 89.36.217.142 port 42434 Oct 1 23:06:35 mail1 sshd\[1732\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.217.142 Oct 1 23:06:37 mail1 sshd\[1732\]: Failed password for invalid user cvsroot from 89.36.217.142 port 42434 ssh2 Oct 1 23:14:06 mail1 sshd\[5467\]: Invalid user co from 89.36.217.142 port 59230 Oct 1 23:14:06 mail1 sshd\[5467\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.217.142 ...	2019-10-02 07:45:32
216.23.186.213	attackspam	Unauthorized connection attempt from IP address 216.23.186.213 on Port 445(SMB)	2019-10-02 07:41:46
107.6.169.251	attackspam	Port 1723/tcp scan.	2019-10-02 07:34:36
118.69.70.222	attack	Unauthorized connection attempt from IP address 118.69.70.222 on Port 445(SMB)	2019-10-02 08:08:13

Recently Reported IPs

93.74.233.3	68.183.84.213	213.79.125.30	221.227.74.226
149.143.18.137	103.77.204.105	6.239.18.112	113.193.184.26
110.18.0.227	13.234.113.238	191.5.192.215	144.217.7.223
89.40.115.140	217.68.210.163	200.44.71.8	171.229.220.193
152.106.99.150	49.64.220.29	89.233.246.62	233.30.15.77