49.71.140.157 - IPInfo

Basic Info

City: Taizhou

Region: Jiangsu

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-03 03:53:37

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.71.140.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62659
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.71.140.157.			IN	A

;; AUTHORITY SECTION:
.			461	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020201 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 03:53:31 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 157.140.71.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 157.140.71.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.22.45.115	attack	10/12/2019-04:20:00.612011 81.22.45.115 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-12 17:01:33
94.191.40.166	attackspambots	Oct 12 14:08:12 areeb-Workstation sshd[13731]: Failed password for root from 94.191.40.166 port 58714 ssh2 ...	2019-10-12 16:43:45
94.183.43.176	attackbotsspam	firewall-block, port(s): 34567/tcp	2019-10-12 17:14:26
42.98.147.79	attackbotsspam	firewall-block, port(s): 5555/tcp	2019-10-12 17:27:09
45.82.153.131	attackbotsspam	Fail2Ban - SMTP Bruteforce Attempt	2019-10-12 17:26:04
222.186.42.15	attackspambots	Oct 12 10:59:52 andromeda sshd\[36094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.15 user=root Oct 12 10:59:52 andromeda sshd\[36096\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.15 user=root Oct 12 10:59:54 andromeda sshd\[36094\]: Failed password for root from 222.186.42.15 port 33573 ssh2	2019-10-12 17:00:33
81.22.45.51	attack	10/12/2019-04:53:04.090217 81.22.45.51 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-12 16:59:24
104.244.73.176	attackbots	Received disconnect	2019-10-12 17:13:21
117.159.26.136	attack	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-12 17:11:21
31.154.84.141	attackspam	Automatic report - Port Scan Attack	2019-10-12 17:03:31
3.87.221.26	attackspam	Masquerading as Googlebot: Mozilla/5.0 (compatible; Googlebot/2.1; startmebot/1.0; +https://start.me/bot)	2019-10-12 16:49:19
220.164.2.134	attackbotsspam	Oct 12 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 4 secs\): user=\, method=PLAIN, rip=220.164.2.134, lip=REMOVED, TLS, session=\ Oct 12 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\<REMOVED.dehenrik@REMOVED.de\>, method=PLAIN, rip=220.164.2.134, lip=REMOVED, TLS, session=\ Oct 12 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=220.164.2.134, lip=REMOVED, TLS, session=\<71Z3WrCU06XcpAKG\>	2019-10-12 17:02:25
14.232.214.145	attackspam	Unauthorized connection attempt from IP address 14.232.214.145 on Port 445(SMB)	2019-10-12 17:31:46
112.133.251.124	attackspambots	Unauthorized connection attempt from IP address 112.133.251.124 on Port 445(SMB)	2019-10-12 16:51:04
132.232.112.25	attackspam	Oct 12 08:51:47 venus sshd\[13851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.112.25 user=root Oct 12 08:51:49 venus sshd\[13851\]: Failed password for root from 132.232.112.25 port 58864 ssh2 Oct 12 08:57:38 venus sshd\[13957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.112.25 user=root ...	2019-10-12 17:01:05

Recently Reported IPs

60.7.79.198	193.252.192.149	100.163.218.240	1.228.63.219
113.186.36.83	189.148.226.177	112.118.141.226	191.32.208.79
185.237.139.103	32.239.53.195	175.138.59.176	184.172.62.55
42.240.57.220	193.250.173.12	35.84.134.11	101.249.143.170
93.234.91.134	70.231.112.236	123.190.96.133	173.123.29.160