71.6.142.81 - IPInfo

Basic Info

City: San Diego

Region: California

Country: United States

Internet Service Provider: CARInet Inc.

Hostname: unknown

Organization: CariNet, Inc.

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	UTC: 2019-12-06 port: 53/tcp	2019-12-07 15:24:35
attackbots	[portscan] udp/123 [NTP] *(RWIN=-)(06271037)	2019-06-27 16:34:13

Comments on same subnet:

IP	Type	Details	Datetime
71.6.142.85	attackbots	scans once in preceeding hours on the ports (in chronological order) 8443 resulting in total of 3 scans from 71.6.128.0/17 block.	2020-07-07 01:08:55
71.6.142.86	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 61 - port: 80 proto: TCP cat: Misc Attack	2019-12-11 05:52:18
71.6.142.86	attack	" "	2019-12-05 05:42:03
71.6.142.87	attack	Honeypot hit.	2019-11-27 00:39:25
71.6.142.80	attackspam	Honeypot hit.	2019-11-20 13:16:08
71.6.142.86	attackbotsspam	22/tcp 1900/tcp 3306/tcp... [2019-09-02/10-29]18pkt,7pt.(tcp),3pt.(udp)	2019-10-30 15:17:41
71.6.142.80	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 65 - port: 502 proto: TCP cat: Misc Attack	2019-10-27 07:25:19
71.6.142.83	attack	3389/tcp 21/tcp 9200/tcp... [2019-08-18/10-17]37pkt,15pt.(tcp),3pt.(udp)	2019-10-17 18:02:14
71.6.142.80	attackbots	10/13/2019-22:15:03.475601 71.6.142.80 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 71	2019-10-14 05:48:33
71.6.142.87	attackbotsspam	10/13/2019-22:15:13.009906 71.6.142.87 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputation IP group 71	2019-10-14 05:39:13
71.6.142.83	attackspambots	10/13/2019-05:50:39.117650 71.6.142.83 Protocol: 17 GPL SNMP public access udp	2019-10-13 16:17:07
71.6.142.83	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-10 12:10:53
71.6.142.86	attackbots	Automated reporting of Vulnerability scanning	2019-10-09 01:44:22
71.6.142.86	attackbots	Honeypot attack, port: 445, PTR: debian814286.aspadmin.net.	2019-10-08 00:13:48
71.6.142.87	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-09-01 18:24:30

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 71.6.142.81
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30040
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;71.6.142.81.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019032901 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Mar 30 04:19:21 +08 2019
;; MSG SIZE  rcvd: 115

Host info

81.142.6.71.in-addr.arpa domain name pointer debian814281.aspadmin.net.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
81.142.6.71.in-addr.arpa	name = debian814281.aspadmin.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
64.225.70.21	attackbots	Invalid user coupon from 64.225.70.21 port 45714	2020-05-28 01:41:12
112.217.207.130	attack	May 27 15:23:29 ns3033917 sshd[5107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.207.130 May 27 15:23:29 ns3033917 sshd[5107]: Invalid user calin from 112.217.207.130 port 53104 May 27 15:23:31 ns3033917 sshd[5107]: Failed password for invalid user calin from 112.217.207.130 port 53104 ssh2 ...	2020-05-28 01:43:27
117.242.100.207	attackbotsspam	1590580277 - 05/27/2020 13:51:17 Host: 117.242.100.207/117.242.100.207 Port: 445 TCP Blocked	2020-05-28 01:09:42
112.21.191.54	attackbots	2020-05-26 18:39:50 server sshd[18951]: Failed password for invalid user root from 112.21.191.54 port 44556 ssh2	2020-05-28 01:33:34
167.71.228.227	attack	Invalid user centos from 167.71.228.227 port 48246	2020-05-28 01:31:32
90.189.117.121	attackbots	prod6 ...	2020-05-28 01:39:51
167.114.203.73	attackspam	2020-05-27T15:38:23.756611abusebot-5.cloudsearch.cf sshd[15436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip73.ip-167-114-203.net user=operator 2020-05-27T15:38:25.458420abusebot-5.cloudsearch.cf sshd[15436]: Failed password for operator from 167.114.203.73 port 40226 ssh2 2020-05-27T15:41:44.298895abusebot-5.cloudsearch.cf sshd[15441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip73.ip-167-114-203.net user=root 2020-05-27T15:41:46.595608abusebot-5.cloudsearch.cf sshd[15441]: Failed password for root from 167.114.203.73 port 54720 ssh2 2020-05-27T15:42:50.756130abusebot-5.cloudsearch.cf sshd[15444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip73.ip-167-114-203.net user=root 2020-05-27T15:42:53.111385abusebot-5.cloudsearch.cf sshd[15444]: Failed password for root from 167.114.203.73 port 43996 ssh2 2020-05-27T15:43:57.924195abusebot-5.cloudsearch.c ...	2020-05-28 01:34:33
162.243.170.252	attackspambots	$f2bV_matches	2020-05-28 01:32:58
142.93.232.102	attack	May 27 19:07:31 sso sshd[29542]: Failed password for root from 142.93.232.102 port 40946 ssh2 ...	2020-05-28 01:19:46
222.186.180.130	attackbotsspam	2020-05-27T07:04:47.661917homeassistant sshd[4838]: Failed password for root from 222.186.180.130 port 42995 ssh2 2020-05-27T17:11:25.685156homeassistant sshd[18071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root ...	2020-05-28 01:12:24
201.148.56.221	attackbotsspam	Port probing on unauthorized port 445	2020-05-28 01:16:54
94.137.0.241	attackbotsspam	Unauthorised access (May 27) SRC=94.137.0.241 LEN=52 TTL=117 ID=12028 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-28 01:45:20
199.247.7.251	attack	probing sign-up form	2020-05-28 01:22:31
192.241.185.120	attackspam	May 27 15:01:11 legacy sshd[27331]: Failed password for root from 192.241.185.120 port 59154 ssh2 May 27 15:08:13 legacy sshd[27562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.185.120 May 27 15:08:14 legacy sshd[27562]: Failed password for invalid user admin from 192.241.185.120 port 33920 ssh2 ...	2020-05-28 01:19:14
187.190.50.112	attackbots	Dovecot Invalid User Login Attempt.	2020-05-28 01:48:04

Recently Reported IPs

219.246.191.183	31.40.155.194	200.32.12.87	182.76.21.138
136.255.144.2	37.79.58.178	165.227.166.144	77.247.109.73
77.125.71.221	69.133.10.55	180.66.58.111	164.132.107.245
159.213.95.62	70.35.141.234	69.122.129.217	54.215.201.55
154.48.224.89	139.219.10.63	69.162.127.162	187.189.88.182