1.71.248.141 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Shanxi Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	firewall-block, port(s): 1433/tcp	2020-05-31 06:39:36
attackbots	Unauthorized connection attempt from IP address 1.71.248.141 on Port 445(SMB)	2019-08-04 08:05:09

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.71.248.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38804
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.71.248.141.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080301 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 04 08:05:02 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 141.248.71.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 141.248.71.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
102.68.60.30	attackspambots	Invalid user ubuntu from 102.68.60.30 port 47720	2020-01-19 21:55:40
222.186.30.57	attackspam	SSH brutforce	2020-01-19 22:02:55
79.107.167.86	attackbots	Honeypot attack, port: 81, PTR: adsl-86.79.107.167.tellas.gr.	2020-01-19 22:25:49
185.176.27.166	attackbots	Jan 19 14:52:28 debian-2gb-nbg1-2 kernel: \[1701236.806731\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.166 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=34342 PROTO=TCP SPT=43223 DPT=11303 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-19 22:10:15
213.81.148.130	attackspam	Unauthorized connection attempt detected from IP address 213.81.148.130 to port 23 [J]	2020-01-19 22:24:37
40.126.120.73	attackspambots	ssh intrusion attempt	2020-01-19 22:06:05
178.34.186.50	attackbots	Jan 19 13:58:20 debian-2gb-nbg1-2 kernel: \[1697988.486253\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=178.34.186.50 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=16547 DF PROTO=TCP SPT=9602 DPT=23 WINDOW=14600 RES=0x00 SYN URGP=0	2020-01-19 22:23:53
104.199.175.58	attack	Unauthorized connection attempt detected from IP address 104.199.175.58 to port 2220 [J]	2020-01-19 22:00:17
185.111.183.40	attackbots	Jan 19 13:58:36 grey postfix/smtpd\[21538\]: NOQUEUE: reject: RCPT from srv40.ypclistmanager.com\[185.111.183.40\]: 554 5.7.1 Service unavailable\; Client host \[185.111.183.40\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?185.111.183.40\; from=\<16e7c7cf3832b23a5d7b401ed64000df@ypclistmanager.com\> to=\ proto=ESMTP helo=\ ...	2020-01-19 22:11:48
192.99.58.112	attackspambots	WordPress login Brute force / Web App Attack on client site.	2020-01-19 22:08:41
83.28.80.131	attackbots	3x Failed Password	2020-01-19 21:56:22
79.124.62.34	attackspambots	01/19/2020-07:58:46.516517 79.124.62.34 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-01-19 22:05:34
210.77.68.221	attack	SSH/22 MH Probe, BF, Hack -	2020-01-19 21:47:56
82.135.27.20	attackbotsspam	Invalid user mh from 82.135.27.20 port 59678	2020-01-19 21:56:41
123.206.74.50	attack	Invalid user me from 123.206.74.50 port 59142	2020-01-19 21:53:20

Recently Reported IPs

79.107.148.128	193.43.231.136	122.226.124.131	54.159.131.180
92.27.159.112	41.188.120.106	182.44.198.249	72.41.52.154
196.225.228.77	83.209.219.129	37.153.112.5	181.224.144.254
238.204.138.113	181.201.196.80	154.72.166.162	43.125.219.232
130.39.129.115	213.211.132.194	56.56.90.213	152.86.240.225