120.39.3.141 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Fujian Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Jun 15 01:59:37 cosmoit sshd[4726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.39.3.141	2020-06-15 09:20:08

Comments on same subnet:

IP	Type	Details	Datetime
120.39.3.199	attackspam	Invalid user lns from 120.39.3.199 port 54348	2020-05-22 15:04:03
120.39.3.199	attack	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-05-21 18:02:55
120.39.3.62	attack	May 10 14:09:05 vpn01 sshd[6596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.39.3.62 May 10 14:09:07 vpn01 sshd[6596]: Failed password for invalid user audit from 120.39.3.62 port 49778 ssh2 ...	2020-05-11 03:04:19
120.39.3.73	attack	May 2 18:25:04 gw1 sshd[20574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.39.3.73 May 2 18:25:05 gw1 sshd[20574]: Failed password for invalid user scan from 120.39.3.73 port 34878 ssh2 ...	2020-05-02 21:33:26
120.39.3.245	attackspambots	Apr 13 10:54:45 myhostname sshd[21002]: Invalid user testies from 120.39.3.245 Apr 13 10:54:45 myhostname sshd[21002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.39.3.245 Apr 13 10:54:47 myhostname sshd[21002]: Failed password for invalid user testies from 120.39.3.245 port 33484 ssh2 Apr 13 10:54:47 myhostname sshd[21002]: Received disconnect from 120.39.3.245 port 33484:11: Bye Bye [preauth] Apr 13 10:54:47 myhostname sshd[21002]: Disconnected from 120.39.3.245 port 33484 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=120.39.3.245	2020-04-14 19:17:19
120.39.3.215	attackbots	Apr 10 05:03:20 askasleikir sshd[71083]: Failed password for invalid user oracle from 120.39.3.215 port 38384 ssh2 Apr 10 04:59:42 askasleikir sshd[71035]: Failed password for invalid user oracle from 120.39.3.215 port 41648 ssh2 Apr 10 05:06:52 askasleikir sshd[71114]: Failed password for invalid user contact from 120.39.3.215 port 35180 ssh2	2020-04-10 19:28:09
120.39.3.78	attack	Feb 28 10:30:01 nbi-636 sshd[23505]: Invalid user wenbo from 120.39.3.78 port 56026 Feb 28 10:30:01 nbi-636 sshd[23505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.39.3.78 Feb 28 10:30:03 nbi-636 sshd[23505]: Failed password for invalid user wenbo from 120.39.3.78 port 56026 ssh2 Feb 28 10:40:12 nbi-636 sshd[26000]: Invalid user user1 from 120.39.3.78 port 44646 Feb 28 10:40:12 nbi-636 sshd[26000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.39.3.78 Feb 28 10:40:14 nbi-636 sshd[26000]: Failed password for invalid user user1 from 120.39.3.78 port 44646 ssh2 Feb 28 10:40:15 nbi-636 sshd[26000]: Received disconnect from 120.39.3.78 port 44646:11: Bye Bye [preauth] Feb 28 10:40:15 nbi-636 sshd[26000]: Disconnected from invalid user user1 120.39.3.78 port 44646 [preauth] Feb 28 10:43:14 nbi-636 sshd[26667]: Invalid user tmpuser from 120.39.3.78 port 35546 Feb 28 10:43:14 nbi-63........ -------------------------------	2020-02-29 16:04:57
120.39.3.93	attack	Invalid user li from 120.39.3.93 port 34174	2020-02-18 04:54:58
120.39.3.25	attackspam	SSH bruteforce (Triggered fail2ban)	2020-02-14 19:26:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.39.3.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40416
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.39.3.141.			IN	A

;; AUTHORITY SECTION:
.			294	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061401 1800 900 604800 86400

;; Query time: 48 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 15 09:20:03 CST 2020
;; MSG SIZE  rcvd: 116

Host info

141.3.39.120.in-addr.arpa domain name pointer 141.3.39.120.broad.xm.fj.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
141.3.39.120.in-addr.arpa	name = 141.3.39.120.broad.xm.fj.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
208.81.176.31	attackbotsspam	Port Scan: TCP/445	2019-09-14 11:59:10
65.127.249.50	attack	Port Scan: UDP/137	2019-09-14 12:17:34
114.38.39.99	attackbots	Port Scan: TCP/23	2019-09-14 11:38:35
69.92.229.218	attackbots	Port Scan: UDP/137	2019-09-14 11:50:34
76.87.21.205	attackbots	Port Scan: UDP/80	2019-09-14 11:46:31
191.209.96.166	attack	Port Scan: TCP/445	2019-09-14 12:02:19
179.156.31.82	attack	Port Scan: TCP/5358	2019-09-14 11:35:00
81.25.240.3	attackspambots	Port Scan: TCP/88	2019-09-14 11:46:12
220.245.106.159	attack	Port Scan: TCP/88	2019-09-14 11:58:20
92.119.160.146	attack	firewall-block, port(s): 3394/tcp, 3396/tcp, 6666/tcp	2019-09-14 11:42:53
104.153.184.60	attackbotsspam	Port Scan: UDP/137	2019-09-14 12:12:37
146.158.59.141	attack	Port Scan: TCP/445	2019-09-14 12:06:51
12.181.3.82	attackspam	Port Scan: UDP/137	2019-09-14 11:57:05
81.213.177.48	attackbotsspam	Port Scan: TCP/445	2019-09-14 11:45:40
54.159.4.223	attackbots	Port Scan: TCP/8080	2019-09-14 12:20:47

Recently Reported IPs

95.187.93.70	129.226.68.181	81.159.243.54	113.84.125.32
95.190.61.71	186.165.125.246	196.105.212.211	165.18.78.3
204.44.93.212	192.35.169.48	66.249.79.88	198.12.73.127
123.21.9.243	96.114.154.177	216.127.169.102	201.114.255.103
176.52.32.187	212.19.20.87	243.110.223.104	59.94.245.252