148.71.1.22 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Portugal

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
148.71.118.129	attackspambots	Honeypot attack, port: 81, PTR: 129.118.71.148.rev.vodafone.pt.	2020-02-10 18:54:00
148.71.14.87	attack	Unauthorized connection attempt detected from IP address 148.71.14.87 to port 23 [J]	2020-01-19 08:05:15
148.71.186.43	attack	Aug 30 04:07:38 server1 sshd\[7634\]: Invalid user admin from 148.71.186.43 Aug 30 04:07:38 server1 sshd\[7634\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.71.186.43 Aug 30 04:07:39 server1 sshd\[7634\]: Failed password for invalid user admin from 148.71.186.43 port 56804 ssh2 Aug 30 04:08:30 server1 sshd\[7925\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.71.186.43 user=root Aug 30 04:08:32 server1 sshd\[7925\]: Failed password for root from 148.71.186.43 port 46082 ssh2 ...	2019-08-30 18:26:16
148.71.186.43	attackbots	Aug 30 00:45:04 dev0-dcde-rnet sshd[22388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.71.186.43 Aug 30 00:45:06 dev0-dcde-rnet sshd[22388]: Failed password for invalid user admin from 148.71.186.43 port 55380 ssh2 Aug 30 00:50:08 dev0-dcde-rnet sshd[22393]: Failed password for root from 148.71.186.43 port 42734 ssh2	2019-08-30 06:59:35
148.71.186.43	attackspambots	Aug 29 05:49:08 server sshd\[2146\]: Invalid user admin from 148.71.186.43 port 40632 Aug 29 05:49:08 server sshd\[2146\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.71.186.43 Aug 29 05:49:10 server sshd\[2146\]: Failed password for invalid user admin from 148.71.186.43 port 40632 ssh2 Aug 29 05:54:42 server sshd\[30806\]: User root from 148.71.186.43 not allowed because listed in DenyUsers Aug 29 05:54:42 server sshd\[30806\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.71.186.43 user=root	2019-08-29 12:08:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.71.1.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34758
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.71.1.22.			IN	A

;; AUTHORITY SECTION:
.			540	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102901 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 30 06:11:46 CST 2019
;; MSG SIZE  rcvd: 115

Host info

22.1.71.148.in-addr.arpa domain name pointer 22.1.71.148.rev.vodafone.pt.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
22.1.71.148.in-addr.arpa	name = 22.1.71.148.rev.vodafone.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
88.218.17.103	attackbotsspam	SIP/5060 Probe, BF, Hack -	2020-09-23 15:41:38
159.65.181.225	attackspam	ssh brute force	2020-09-23 15:52:53
139.59.87.254	attack	Sep 23 09:22:14 * sshd[16966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.87.254 Sep 23 09:22:16 * sshd[16966]: Failed password for invalid user debian from 139.59.87.254 port 45272 ssh2	2020-09-23 16:11:49
163.172.61.241	attackspambots	Sep 22 17:01:54 ssh2 sshd[20587]: Invalid user admin from 163.172.61.241 port 32936 Sep 22 17:01:54 ssh2 sshd[20587]: Failed password for invalid user admin from 163.172.61.241 port 32936 ssh2 Sep 22 17:01:54 ssh2 sshd[20587]: Connection closed by invalid user admin 163.172.61.241 port 32936 [preauth] ...	2020-09-23 15:54:16
200.66.82.250	attackbots	200.66.82.250 (MX/Mexico/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 23 01:23:44 jbs1 sshd[27751]: Failed password for root from 116.58.172.118 port 33826 ssh2 Sep 23 01:22:43 jbs1 sshd[26745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.66.82.250 user=root Sep 23 01:22:45 jbs1 sshd[26745]: Failed password for root from 200.66.82.250 port 32862 ssh2 Sep 23 01:25:39 jbs1 sshd[29647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.77.154 user=root Sep 23 01:25:41 jbs1 sshd[29647]: Failed password for root from 49.234.77.154 port 59526 ssh2 Sep 23 01:25:45 jbs1 sshd[29739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.236.222 user=root IP Addresses Blocked: 116.58.172.118 (JP/Japan/-)	2020-09-23 16:06:06
168.227.225.175	attack	RDP brute force attack detected by fail2ban	2020-09-23 15:36:12
2.35.150.233	attack	trying to access non-authorized port	2020-09-23 15:58:49
139.186.73.140	attack	Time: Wed Sep 23 06:43:44 2020 +0000 IP: 139.186.73.140 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 23 06:36:42 3 sshd[1818]: Invalid user jim from 139.186.73.140 port 59012 Sep 23 06:36:44 3 sshd[1818]: Failed password for invalid user jim from 139.186.73.140 port 59012 ssh2 Sep 23 06:39:01 3 sshd[7424]: Invalid user dayz from 139.186.73.140 port 40230 Sep 23 06:39:03 3 sshd[7424]: Failed password for invalid user dayz from 139.186.73.140 port 40230 ssh2 Sep 23 06:43:39 3 sshd[18168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.73.140 user=root	2020-09-23 15:34:56
193.106.175.30	attack	2020-09-22 11:53:35.155735-0500 localhost smtpd[92392]: NOQUEUE: reject: RCPT from unknown[193.106.175.30]: 554 5.7.1 Service unavailable; Client host [193.106.175.30] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-09-23 16:09:05
150.158.188.241	attackbots	Brute%20Force%20SSH	2020-09-23 16:10:55
95.226.56.46	attackbotsspam	Unauthorized connection attempt from IP address 95.226.56.46 on Port 445(SMB)	2020-09-23 15:53:24
222.186.175.215	attackbots	Sep 23 09:56:18 vm0 sshd[11420]: Failed password for root from 222.186.175.215 port 65328 ssh2 Sep 23 09:56:30 vm0 sshd[11420]: error: maximum authentication attempts exceeded for root from 222.186.175.215 port 65328 ssh2 [preauth] ...	2020-09-23 16:00:23
120.131.13.186	attackspam	Jul 24 01:19:42 server sshd[7998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.13.186 Jul 24 01:19:44 server sshd[7998]: Failed password for invalid user shannon from 120.131.13.186 port 13472 ssh2 Jul 24 01:30:18 server sshd[8467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.13.186 Jul 24 01:30:20 server sshd[8467]: Failed password for invalid user gita from 120.131.13.186 port 9754 ssh2	2020-09-23 15:40:12
106.13.136.8	attackbots	Sep 23 01:27:43 ip-172-31-42-142 sshd\[24601\]: Invalid user gy from 106.13.136.8\ Sep 23 01:27:45 ip-172-31-42-142 sshd\[24601\]: Failed password for invalid user gy from 106.13.136.8 port 35400 ssh2\ Sep 23 01:33:18 ip-172-31-42-142 sshd\[24630\]: Invalid user smart from 106.13.136.8\ Sep 23 01:33:20 ip-172-31-42-142 sshd\[24630\]: Failed password for invalid user smart from 106.13.136.8 port 59216 ssh2\ Sep 23 01:34:47 ip-172-31-42-142 sshd\[24634\]: Invalid user eva from 106.13.136.8\	2020-09-23 15:41:03
103.142.34.34	attack	Sep 22 20:45:53 hpm sshd\[5575\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.142.34.34 user=root Sep 22 20:45:55 hpm sshd\[5575\]: Failed password for root from 103.142.34.34 port 39192 ssh2 Sep 22 20:47:50 hpm sshd\[5689\]: Invalid user personal from 103.142.34.34 Sep 22 20:47:50 hpm sshd\[5689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.142.34.34 Sep 22 20:47:51 hpm sshd\[5689\]: Failed password for invalid user personal from 103.142.34.34 port 38576 ssh2	2020-09-23 15:50:54

Recently Reported IPs

172.19.223.47	219.81.191.174	177.154.129.33	41.39.1.31
180.131.13.104	247.129.52.205	255.115.47.28	92.19.52.140
121.171.28.173	200.113.248.150	23.216.31.50	221.244.242.55
247.227.10.212	137.239.197.126	204.203.47.59	184.7.212.148
73.21.47.232	168.237.122.110	64.242.247.57	29.21.181.199