115.71.2.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea (the Republic of)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
115.71.239.208	attackspambots	2020-09-24T22:34:56.585459paragon sshd[379061]: Invalid user xu from 115.71.239.208 port 36016 2020-09-24T22:34:56.589351paragon sshd[379061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208 2020-09-24T22:34:56.585459paragon sshd[379061]: Invalid user xu from 115.71.239.208 port 36016 2020-09-24T22:34:59.014865paragon sshd[379061]: Failed password for invalid user xu from 115.71.239.208 port 36016 ssh2 2020-09-24T22:39:09.520670paragon sshd[379205]: Invalid user ti from 115.71.239.208 port 41614 ...	2020-09-25 03:22:46
115.71.239.208	attackspambots	(sshd) Failed SSH login from 115.71.239.208 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 24 04:30:30 server5 sshd[12549]: Invalid user joan from 115.71.239.208 Sep 24 04:30:30 server5 sshd[12549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208 Sep 24 04:30:32 server5 sshd[12549]: Failed password for invalid user joan from 115.71.239.208 port 48342 ssh2 Sep 24 04:49:44 server5 sshd[20870]: Invalid user premier from 115.71.239.208 Sep 24 04:49:44 server5 sshd[20870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208	2020-09-24 19:07:05
115.71.239.208	attackspam	Sep 10 16:46:17 kim5 sshd[7979]: Failed password for root from 115.71.239.208 port 40230 ssh2 Sep 10 16:54:30 kim5 sshd[8763]: Failed password for root from 115.71.239.208 port 44218 ssh2 Sep 10 17:02:49 kim5 sshd[9871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208 ...	2020-09-10 23:53:12
115.71.239.208	attack	Sep 9 19:18:05 inter-technics sshd[913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208 user=root Sep 9 19:18:07 inter-technics sshd[913]: Failed password for root from 115.71.239.208 port 54662 ssh2 Sep 9 19:19:14 inter-technics sshd[958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208 user=root Sep 9 19:19:16 inter-technics sshd[958]: Failed password for root from 115.71.239.208 port 34140 ssh2 Sep 9 19:20:18 inter-technics sshd[1035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208 user=root Sep 9 19:20:21 inter-technics sshd[1035]: Failed password for root from 115.71.239.208 port 41856 ssh2 ...	2020-09-10 05:54:52
115.71.239.208	attack	Aug 29 22:27:25 vmd17057 sshd[25738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208 Aug 29 22:27:27 vmd17057 sshd[25738]: Failed password for invalid user maria from 115.71.239.208 port 50160 ssh2 ...	2020-08-30 05:28:48
115.71.239.155	attack	Aug 9 22:08:38 vmd26974 sshd[3960]: Failed password for root from 115.71.239.155 port 59065 ssh2 ...	2020-08-10 06:11:48
115.71.239.155	attackspam	Aug 2 14:08:06 web8 sshd\[23098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.155 user=root Aug 2 14:08:08 web8 sshd\[23098\]: Failed password for root from 115.71.239.155 port 39659 ssh2 Aug 2 14:12:29 web8 sshd\[25278\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.155 user=root Aug 2 14:12:31 web8 sshd\[25278\]: Failed password for root from 115.71.239.155 port 40533 ssh2 Aug 2 14:16:55 web8 sshd\[27625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.155 user=root	2020-08-02 23:55:02
115.71.239.155	attack	Jul 28 05:42:16 ovpn sshd\[22892\]: Invalid user zhouli from 115.71.239.155 Jul 28 05:42:16 ovpn sshd\[22892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.155 Jul 28 05:42:18 ovpn sshd\[22892\]: Failed password for invalid user zhouli from 115.71.239.155 port 47306 ssh2 Jul 28 05:51:48 ovpn sshd\[25279\]: Invalid user yuriq from 115.71.239.155 Jul 28 05:51:48 ovpn sshd\[25279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.155	2020-07-28 17:24:20
115.71.239.208	attack	SSH Invalid Login	2020-07-15 06:21:57
115.71.239.208	attack	Failed password for invalid user user4 from 115.71.239.208 port 45780 ssh2	2020-07-12 22:10:39
115.71.239.208	attackspam	2020-07-05T05:50:13.544070ks3355764 sshd[13480]: Invalid user jasper from 115.71.239.208 port 45380 2020-07-05T05:50:15.512153ks3355764 sshd[13480]: Failed password for invalid user jasper from 115.71.239.208 port 45380 ssh2 ...	2020-07-05 18:15:56
115.71.239.208	attackspam	Jun 30 22:03:03 web1 sshd[21021]: Invalid user poc from 115.71.239.208 port 58526 Jun 30 22:03:03 web1 sshd[21021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208 Jun 30 22:03:03 web1 sshd[21021]: Invalid user poc from 115.71.239.208 port 58526 Jun 30 22:03:05 web1 sshd[21021]: Failed password for invalid user poc from 115.71.239.208 port 58526 ssh2 Jun 30 22:20:08 web1 sshd[25296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208 user=root Jun 30 22:20:10 web1 sshd[25296]: Failed password for root from 115.71.239.208 port 40546 ssh2 Jun 30 22:27:54 web1 sshd[27251]: Invalid user elastic from 115.71.239.208 port 40852 Jun 30 22:27:54 web1 sshd[27251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208 Jun 30 22:27:54 web1 sshd[27251]: Invalid user elastic from 115.71.239.208 port 40852 Jun 30 22:27:56 web1 sshd[27251]: Failed ...	2020-07-01 04:15:09
115.71.239.208	attack	detected by Fail2Ban	2020-05-23 21:02:20
115.71.239.208	attack	May 22 22:59:50 lnxmysql61 sshd[21698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208 May 22 22:59:50 lnxmysql61 sshd[21698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.71.239.208	2020-05-23 05:26:48
115.71.233.64	attackbotsspam	Email rejected due to spam filtering	2020-01-25 05:10:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 115.71.2.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25664
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;115.71.2.42.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012200 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 01:30:49 CST 2025
;; MSG SIZE  rcvd: 104

Host info

Host 42.2.71.115.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.2.71.115.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
128.199.175.116	attack	Feb 21 12:15:14 MK-Soft-VM4 sshd[11466]: Failed password for root from 128.199.175.116 port 57058 ssh2 ...	2020-02-21 19:17:33
59.126.53.122	attack	firewall-block, port(s): 9530/tcp	2020-02-21 19:09:34
106.13.119.163	attackbotsspam	Feb 21 05:02:10 firewall sshd[21651]: Invalid user tmpu from 106.13.119.163 Feb 21 05:02:12 firewall sshd[21651]: Failed password for invalid user tmpu from 106.13.119.163 port 48914 ssh2 Feb 21 05:05:35 firewall sshd[21739]: Invalid user zhup from 106.13.119.163 ...	2020-02-21 19:16:47
114.40.195.36	attackspam	Port probing on unauthorized port 26	2020-02-21 19:21:48
86.62.91.138	attackspam	Feb 21 09:08:26 sso sshd[9089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.62.91.138 Feb 21 09:08:27 sso sshd[9089]: Failed password for invalid user energy from 86.62.91.138 port 48530 ssh2 ...	2020-02-21 19:09:58
104.236.226.93	attack	Feb 21 10:37:50 IngegnereFirenze sshd[3881]: Failed password for invalid user tanwei from 104.236.226.93 port 47402 ssh2 ...	2020-02-21 19:35:50
31.19.47.18	attackspambots	Exploit Attempt	2020-02-21 19:27:03
14.236.234.226	attackbotsspam	Unauthorized connection attempt from IP address 14.236.234.226 on Port 445(SMB)	2020-02-21 19:47:04
92.63.194.7	attackbotsspam	SSH Brute Force	2020-02-21 19:39:43
222.186.31.135	attackbots	Feb 21 12:29:37 h2177944 sshd\[22659\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.135 user=root Feb 21 12:29:39 h2177944 sshd\[22659\]: Failed password for root from 222.186.31.135 port 10426 ssh2 Feb 21 12:29:42 h2177944 sshd\[22659\]: Failed password for root from 222.186.31.135 port 10426 ssh2 Feb 21 12:29:45 h2177944 sshd\[22659\]: Failed password for root from 222.186.31.135 port 10426 ssh2 ...	2020-02-21 19:39:04
80.82.77.33	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 68 - port: 7779 proto: TCP cat: Misc Attack	2020-02-21 19:31:58
168.90.88.50	attackspam	Feb 21 08:11:46 localhost sshd\[15732\]: Invalid user rstudio-server from 168.90.88.50 port 53550 Feb 21 08:11:46 localhost sshd\[15732\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.90.88.50 Feb 21 08:11:48 localhost sshd\[15732\]: Failed password for invalid user rstudio-server from 168.90.88.50 port 53550 ssh2 ...	2020-02-21 19:38:32
174.219.27.152	attackspambots	Brute forcing email accounts	2020-02-21 19:25:52
111.91.87.142	attack	Thu Feb 20 21:49:33 2020 - Child process 110599 handling connection Thu Feb 20 21:49:33 2020 - New connection from: 111.91.87.142:58566 Thu Feb 20 21:49:33 2020 - Sending data to client: [Login: ] Thu Feb 20 21:50:05 2020 - Child aborting Thu Feb 20 21:50:05 2020 - Reporting IP address: 111.91.87.142 - mflag: 0	2020-02-21 19:30:42
59.126.200.2	attackspam	Port probing on unauthorized port 23	2020-02-21 19:27:48

Recently Reported IPs

169.25.111.70	37.213.0.250	243.252.204.247	98.0.255.213
17.11.151.208	81.51.152.73	123.74.231.28	96.0.254.187
235.81.180.79	181.116.152.33	70.133.149.66	201.29.209.146
25.22.142.124	246.148.39.125	87.76.246.91	50.37.51.144
38.129.29.190	200.49.141.127	76.153.54.254	19.71.234.167