1.71.139.212 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Shanxi Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	2019-11-02T09:23:32.967880abusebot-7.cloudsearch.cf sshd\[30227\]: Invalid user kiwi from 1.71.139.212 port 57848	2019-11-02 18:20:27

Comments on same subnet:

IP	Type	Details	Datetime
1.71.139.238	attackbotsspam	Jul 15 22:57:55 icinga sshd[18143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.139.238 Jul 15 22:57:57 icinga sshd[18143]: Failed password for invalid user test2 from 1.71.139.238 port 34248 ssh2 ...	2019-07-16 05:54:41
1.71.139.238	attackbots	Jul 10 22:24:18 lnxded63 sshd[30023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.139.238 Jul 10 22:24:20 lnxded63 sshd[30023]: Failed password for invalid user butterer from 1.71.139.238 port 49274 ssh2 Jul 10 22:25:28 lnxded63 sshd[30180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.139.238	2019-07-11 08:17:28

Type

Details

Datetime

1.71.139.238

attackbotsspam

Jul 15 22:57:55 icinga sshd[18143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.139.238
Jul 15 22:57:57 icinga sshd[18143]: Failed password for invalid user test2 from 1.71.139.238 port 34248 ssh2
...

2019-07-16 05:54:41

1.71.139.238

attackbots

Jul 10 22:24:18 lnxded63 sshd[30023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.139.238
Jul 10 22:24:20 lnxded63 sshd[30023]: Failed password for invalid user butterer from 1.71.139.238 port 49274 ssh2
Jul 10 22:25:28 lnxded63 sshd[30180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.139.238

2019-07-11 08:17:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.71.139.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25435
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.71.139.212.			IN	A

;; AUTHORITY SECTION:
.			587	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103101 1800 900 604800 86400

;; Query time: 148 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 01 13:37:41 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 212.139.71.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 212.139.71.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
210.184.2.66	attack	Sep 29 14:29:04 localhost sshd[2289703]: Invalid user ak47 from 210.184.2.66 port 44570 ...	2020-09-29 12:51:46
167.71.127.147	attackspam	Sep 29 04:35:58 onepixel sshd[3405662]: Failed password for invalid user deploy from 167.71.127.147 port 51826 ssh2 Sep 29 04:37:48 onepixel sshd[3405978]: Invalid user db2fenc1 from 167.71.127.147 port 56362 Sep 29 04:37:48 onepixel sshd[3405978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.127.147 Sep 29 04:37:48 onepixel sshd[3405978]: Invalid user db2fenc1 from 167.71.127.147 port 56362 Sep 29 04:37:49 onepixel sshd[3405978]: Failed password for invalid user db2fenc1 from 167.71.127.147 port 56362 ssh2	2020-09-29 12:38:17
117.86.194.210	attackspambots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-29 13:02:44
209.85.166.69	attackbotsspam	Phishing scam	2020-09-29 12:50:39
114.35.119.25	attack	1601325635 - 09/28/2020 22:40:35 Host: 114.35.119.25/114.35.119.25 Port: 81 TCP Blocked ...	2020-09-29 12:48:26
104.131.84.225	attackspam	Sep 29 00:39:32 minden010 sshd[17908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.84.225 Sep 29 00:39:34 minden010 sshd[17908]: Failed password for invalid user siva from 104.131.84.225 port 36318 ssh2 Sep 29 00:43:29 minden010 sshd[18949]: Failed password for root from 104.131.84.225 port 47298 ssh2 ...	2020-09-29 13:01:55
112.85.42.229	attack	2020-09-29T04:16:06.906392abusebot-2.cloudsearch.cf sshd[21575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.229 user=root 2020-09-29T04:16:08.566828abusebot-2.cloudsearch.cf sshd[21575]: Failed password for root from 112.85.42.229 port 38323 ssh2 2020-09-29T04:16:11.111750abusebot-2.cloudsearch.cf sshd[21575]: Failed password for root from 112.85.42.229 port 38323 ssh2 2020-09-29T04:16:06.906392abusebot-2.cloudsearch.cf sshd[21575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.229 user=root 2020-09-29T04:16:08.566828abusebot-2.cloudsearch.cf sshd[21575]: Failed password for root from 112.85.42.229 port 38323 ssh2 2020-09-29T04:16:11.111750abusebot-2.cloudsearch.cf sshd[21575]: Failed password for root from 112.85.42.229 port 38323 ssh2 2020-09-29T04:16:06.906392abusebot-2.cloudsearch.cf sshd[21575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruse ...	2020-09-29 12:28:47
165.232.45.64	attackspam	20 attempts against mh-ssh on star	2020-09-29 12:30:38
117.58.241.69	attack	Sep 29 07:01:11 ns381471 sshd[14216]: Failed password for backup from 117.58.241.69 port 33966 ssh2 Sep 29 07:05:31 ns381471 sshd[15209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.58.241.69	2020-09-29 13:08:30
58.87.114.13	attack	Sep 29 03:36:25 itv-usvr-02 sshd[7821]: Invalid user gpadmin from 58.87.114.13 port 42236 Sep 29 03:36:25 itv-usvr-02 sshd[7821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.114.13 Sep 29 03:36:25 itv-usvr-02 sshd[7821]: Invalid user gpadmin from 58.87.114.13 port 42236 Sep 29 03:36:27 itv-usvr-02 sshd[7821]: Failed password for invalid user gpadmin from 58.87.114.13 port 42236 ssh2 Sep 29 03:40:55 itv-usvr-02 sshd[8086]: Invalid user testuser from 58.87.114.13 port 39014	2020-09-29 12:33:20
217.14.211.216	attack	Sep 28 21:42:53 NPSTNNYC01T sshd[23648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.14.211.216 Sep 28 21:42:55 NPSTNNYC01T sshd[23648]: Failed password for invalid user applmgr from 217.14.211.216 port 40612 ssh2 Sep 28 21:46:55 NPSTNNYC01T sshd[24068]: Failed password for root from 217.14.211.216 port 50726 ssh2 ...	2020-09-29 13:03:14
182.69.177.207	attack	Sep 28 22:16:47 r.ca sshd[5105]: Failed password for invalid user solaris from 182.69.177.207 port 38376 ssh2	2020-09-29 12:33:03
192.241.235.57	attack	port scan and connect, tcp 9200 (elasticsearch)	2020-09-29 12:56:15
103.209.9.2	attack	103.209.9.2 - - [29/Sep/2020:06:21:16 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.209.9.2 - - [29/Sep/2020:06:21:17 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.209.9.2 - - [29/Sep/2020:06:21:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-29 12:31:26
152.136.212.175	attackspam	Sep 28 21:36:50 mockhub sshd[143770]: Invalid user game from 152.136.212.175 port 54718 Sep 28 21:36:52 mockhub sshd[143770]: Failed password for invalid user game from 152.136.212.175 port 54718 ssh2 Sep 28 21:38:57 mockhub sshd[143819]: Invalid user usrlib from 152.136.212.175 port 53244 ...	2020-09-29 12:46:34

Recently Reported IPs

208.13.50.186	25.82.96.28	70.203.186.131	157.124.243.197
113.33.38.9	17.35.242.47	185.36.216.147	20.4.189.126
229.27.135.103	227.16.6.33	177.223.197.243	181.155.102.23
88.99.102.72	173.218.163.61	89.196.232.14	227.64.17.70
177.255.160.106	217.54.138.66	50.43.248.46	121.147.175.60