113.141.70.102

Basic Info

City: unknown

Region: Shaanxi

Country: China

Internet Service Provider: ChinaNet Shaanxi Province Network

Hostname: unknown

Organization: SHAANXI province

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 113.141.70.102 to port 445 [T]	2020-05-20 13:01:52
attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-07 01:07:26
attackspam	Port 1433 Scan	2019-12-18 05:04:40
attackbots	19/8/12@08:24:01: FAIL: Alarm-Intrusion address from=113.141.70.102 ...	2019-08-12 22:12:30

Comments on same subnet:

IP	Type	Details	Datetime
113.141.70.131	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-19 03:18:16
113.141.70.131	attackspam	20/9/18@01:12:38: FAIL: Alarm-Network address from=113.141.70.131 ...	2020-09-18 19:20:14
113.141.70.227	attackspam	Port Scan ...	2020-09-02 21:02:22
113.141.70.227	attack	Port Scan ...	2020-09-02 12:57:25
113.141.70.227	attackspam	Port Scan ...	2020-09-02 06:01:21
113.141.70.147	attack	20/8/16@23:54:21: FAIL: Alarm-Network address from=113.141.70.147 ...	2020-08-17 19:53:31
113.141.70.115	attackspam	Port Scan detected! ...	2020-08-15 22:38:09
113.141.70.115	attackspambots	TCP (SYN) 113.141.70.115:41374 -> port 445, len 40	2020-08-13 01:59:19
113.141.70.227	attackbotsspam	Unauthorized connection attempt detected from IP address 113.141.70.227 to port 1433	2020-07-22 21:10:14
113.141.70.199	attackspam	Jul 15 01:08:33 server sshd[12387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.70.199 Jul 15 01:08:35 server sshd[12387]: Failed password for invalid user test from 113.141.70.199 port 38314 ssh2 Jul 15 01:11:38 server sshd[12872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.70.199 ...	2020-07-15 09:30:11
113.141.70.199	attackbotsspam	Invalid user radiusd from 113.141.70.199 port 53634	2020-07-11 07:26:29
113.141.70.199	attackbots	Jul 9 14:04:34 minden010 sshd[31293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.70.199 Jul 9 14:04:37 minden010 sshd[31293]: Failed password for invalid user octopus from 113.141.70.199 port 37852 ssh2 Jul 9 14:08:08 minden010 sshd[32070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.70.199 ...	2020-07-09 22:03:07
113.141.70.199	attack	2020-07-06T00:13:44.943182shield sshd\[5530\]: Invalid user suporte from 113.141.70.199 port 37102 2020-07-06T00:13:44.948756shield sshd\[5530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.70.199 2020-07-06T00:13:46.952839shield sshd\[5530\]: Failed password for invalid user suporte from 113.141.70.199 port 37102 ssh2 2020-07-06T00:17:09.428673shield sshd\[6700\]: Invalid user Minecraft from 113.141.70.199 port 60218 2020-07-06T00:17:09.432274shield sshd\[6700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.70.199	2020-07-06 08:37:55
113.141.70.125	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-07-04 01:20:28
113.141.70.91	attackspam	IP 113.141.70.91 attacked honeypot on port: 1433 at 6/21/2020 8:50:11 PM	2020-06-22 17:02:04

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.141.70.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60570
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.141.70.102.			IN	A

;; AUTHORITY SECTION:
.			2928	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042101 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 22 04:01:27 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 102.70.141.113.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 102.70.141.113.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
166.141.244.84	attackspam	Dec 5 03:31:35 firewall sshd[6697]: Invalid user gunstock from 166.141.244.84 Dec 5 03:31:37 firewall sshd[6697]: Failed password for invalid user gunstock from 166.141.244.84 port 48100 ssh2 Dec 5 03:39:46 firewall sshd[6867]: Invalid user test from 166.141.244.84 ...	2019-12-05 14:41:02
49.234.56.194	attack	Dec 5 07:29:58 meumeu sshd[10391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.56.194 Dec 5 07:30:00 meumeu sshd[10391]: Failed password for invalid user loeke from 49.234.56.194 port 41636 ssh2 Dec 5 07:38:06 meumeu sshd[12419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.56.194 ...	2019-12-05 14:59:54
218.92.0.133	attackbotsspam	Dec 5 07:58:03 host sshd[20996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.133 user=root Dec 5 07:58:05 host sshd[20996]: Failed password for root from 218.92.0.133 port 46531 ssh2 ...	2019-12-05 15:04:00
58.214.255.41	attackbots	Dec 5 07:21:50 mail sshd[6270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.214.255.41 Dec 5 07:21:52 mail sshd[6270]: Failed password for invalid user lin from 58.214.255.41 port 2162 ssh2 Dec 5 07:30:44 mail sshd[8418]: Failed password for mysql from 58.214.255.41 port 41381 ssh2	2019-12-05 14:58:15
146.185.183.65	attack	2019-12-05T06:32:15.607194abusebot-4.cloudsearch.cf sshd\[11542\]: Invalid user baust from 146.185.183.65 port 46660	2019-12-05 14:52:33
80.82.77.139	attackspam	12/05/2019-00:56:45.129244 80.82.77.139 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-05 14:23:41
116.203.203.73	attackbotsspam	Dec 5 07:33:03 vps666546 sshd\[23341\]: Invalid user admin999 from 116.203.203.73 port 34834 Dec 5 07:33:03 vps666546 sshd\[23341\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.203.203.73 Dec 5 07:33:05 vps666546 sshd\[23341\]: Failed password for invalid user admin999 from 116.203.203.73 port 34834 ssh2 Dec 5 07:38:34 vps666546 sshd\[23499\]: Invalid user kamiroot from 116.203.203.73 port 42280 Dec 5 07:38:34 vps666546 sshd\[23499\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.203.203.73 ...	2019-12-05 14:55:35
220.76.107.50	attackspambots	Dec 4 20:41:01 hanapaa sshd\[27713\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.107.50 user=root Dec 4 20:41:02 hanapaa sshd\[27713\]: Failed password for root from 220.76.107.50 port 60004 ssh2 Dec 4 20:48:03 hanapaa sshd\[28388\]: Invalid user admin from 220.76.107.50 Dec 4 20:48:03 hanapaa sshd\[28388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.107.50 Dec 4 20:48:05 hanapaa sshd\[28388\]: Failed password for invalid user admin from 220.76.107.50 port 52400 ssh2	2019-12-05 15:03:01
37.187.181.182	attackbots	Dec 5 01:31:09 linuxvps sshd\[19659\]: Invalid user host from 37.187.181.182 Dec 5 01:31:09 linuxvps sshd\[19659\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.181.182 Dec 5 01:31:11 linuxvps sshd\[19659\]: Failed password for invalid user host from 37.187.181.182 port 49014 ssh2 Dec 5 01:38:47 linuxvps sshd\[24018\]: Invalid user fize from 37.187.181.182 Dec 5 01:38:47 linuxvps sshd\[24018\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.181.182	2019-12-05 14:45:29
222.186.173.238	attackspam	Dec 5 05:02:46 v22018086721571380 sshd[12713]: Failed password for root from 222.186.173.238 port 43840 ssh2 Dec 5 05:02:51 v22018086721571380 sshd[12713]: error: maximum authentication attempts exceeded for root from 222.186.173.238 port 43840 ssh2 [preauth]	2019-12-05 14:27:49
51.38.238.22	attackspam	Dec 5 07:33:09 vmanager6029 sshd\[7511\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.238.22 user=teamspeak3 Dec 5 07:33:11 vmanager6029 sshd\[7511\]: Failed password for teamspeak3 from 51.38.238.22 port 38138 ssh2 Dec 5 07:38:44 vmanager6029 sshd\[7633\]: Invalid user vesanto from 51.38.238.22 port 47846 Dec 5 07:38:44 vmanager6029 sshd\[7633\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.238.22	2019-12-05 14:59:39
112.85.42.175	attackbots	Dec 5 07:43:10 root sshd[12457]: Failed password for root from 112.85.42.175 port 54846 ssh2 Dec 5 07:43:15 root sshd[12457]: Failed password for root from 112.85.42.175 port 54846 ssh2 Dec 5 07:43:18 root sshd[12457]: Failed password for root from 112.85.42.175 port 54846 ssh2 Dec 5 07:43:22 root sshd[12457]: Failed password for root from 112.85.42.175 port 54846 ssh2 ...	2019-12-05 14:56:01
198.108.67.32	attackspam	" "	2019-12-05 14:21:30
150.136.152.237	attackspambots	2019-12-05T05:56:06.950841abusebot-4.cloudsearch.cf sshd\[11294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.152.237	2019-12-05 14:29:01
222.186.169.192	attack	$f2bV_matches	2019-12-05 14:40:08

Recently Reported IPs

218.28.167.187	64.190.104.150	167.24.123.251	83.133.153.164
79.145.214.72	34.204.88.160	60.240.206.104	24.227.75.50
222.111.4.129	77.251.97.247	86.245.148.9	188.190.247.48
192.75.250.57	200.228.201.229	75.126.213.78	107.190.222.52
156.111.254.137	86.106.208.225	3.26.50.223	98.72.37.212