1.71.248.141 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Shanxi Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	firewall-block, port(s): 1433/tcp	2020-05-31 06:39:36
attackbots	Unauthorized connection attempt from IP address 1.71.248.141 on Port 445(SMB)	2019-08-04 08:05:09

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.71.248.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38804
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.71.248.141.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080301 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 04 08:05:02 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 141.248.71.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 141.248.71.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
121.157.82.202	attack	Sep 5 00:00:09 XXX sshd[54912]: Invalid user ofsaa from 121.157.82.202 port 56816	2019-09-05 11:11:58
222.186.30.165	attackspambots	2019-09-05T03:26:20.066745abusebot-4.cloudsearch.cf sshd\[17019\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.165 user=root	2019-09-05 11:37:27
185.176.27.106	attack	09/04/2019-23:11:48.068295 185.176.27.106 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-05 11:19:35
40.86.179.106	attack	Automatic report - Banned IP Access	2019-09-05 11:18:57
188.215.242.52	attack	Portscan detected	2019-09-05 11:50:30
141.98.9.195	attackbotsspam	Too many connections or unauthorized access detected from Yankee banned ip	2019-09-05 11:29:19
23.129.64.196	attackbots	Sep 5 10:00:51 webhost01 sshd[5749]: Failed password for root from 23.129.64.196 port 23075 ssh2 Sep 5 10:01:05 webhost01 sshd[5749]: error: maximum authentication attempts exceeded for root from 23.129.64.196 port 23075 ssh2 [preauth] ...	2019-09-05 11:20:45
37.187.117.187	attackspam	Sep 4 17:44:35 kapalua sshd\[9879\]: Invalid user admin from 37.187.117.187 Sep 4 17:44:35 kapalua sshd\[9879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns329837.ip-37-187-117.eu Sep 4 17:44:37 kapalua sshd\[9879\]: Failed password for invalid user admin from 37.187.117.187 port 36154 ssh2 Sep 4 17:49:12 kapalua sshd\[10230\]: Invalid user teamspeak from 37.187.117.187 Sep 4 17:49:12 kapalua sshd\[10230\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns329837.ip-37-187-117.eu	2019-09-05 11:54:16
181.48.29.35	attackspam	Fail2Ban Ban Triggered	2019-09-05 11:16:01
68.183.234.12	attack	2019-09-05T03:39:55.647647abusebot-3.cloudsearch.cf sshd\[17680\]: Invalid user web1 from 68.183.234.12 port 44590	2019-09-05 11:47:06
61.19.23.30	attackbots	Sep 4 17:02:30 hpm sshd\[5554\]: Invalid user 1qaz2wsx from 61.19.23.30 Sep 4 17:02:30 hpm sshd\[5554\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.19.23.30 Sep 4 17:02:33 hpm sshd\[5554\]: Failed password for invalid user 1qaz2wsx from 61.19.23.30 port 46472 ssh2 Sep 4 17:07:05 hpm sshd\[5966\]: Invalid user password123 from 61.19.23.30 Sep 4 17:07:05 hpm sshd\[5966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.19.23.30	2019-09-05 11:12:44
181.65.201.164	attackspambots	SpamReport	2019-09-05 11:07:03
87.123.102.106	attack	2019-09-04T22:59:30.925624abusebot-7.cloudsearch.cf sshd\[5017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=i577b666a.versanet.de user=root	2019-09-05 11:33:52
139.59.170.23	attackspam	Sep 5 05:02:24 pornomens sshd\[16649\]: Invalid user mc123 from 139.59.170.23 port 50452 Sep 5 05:02:24 pornomens sshd\[16649\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.170.23 Sep 5 05:02:26 pornomens sshd\[16649\]: Failed password for invalid user mc123 from 139.59.170.23 port 50452 ssh2 ...	2019-09-05 11:16:29
200.194.39.101	attackspambots	Caught in portsentry honeypot	2019-09-05 11:51:58

Recently Reported IPs

79.107.148.128	193.43.231.136	122.226.124.131	54.159.131.180
92.27.159.112	41.188.120.106	182.44.198.249	72.41.52.154
196.225.228.77	83.209.219.129	37.153.112.5	181.224.144.254
238.204.138.113	181.201.196.80	154.72.166.162	43.125.219.232
130.39.129.115	213.211.132.194	56.56.90.213	152.86.240.225