81.71.2.14 - IPInfo

Basic Info

City: Guangzhou

Region: Guangdong

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
81.71.24.200	attackspam	Oct 5 11:11:30 host sshd[28009]: User r.r from 81.71.24.200 not allowed because none of user's groups are listed in AllowGroups Oct 5 11:11:31 host sshd[28009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.71.24.200 user=r.r Oct 5 11:11:33 host sshd[28009]: Failed password for invalid user r.r from 81.71.24.200 port 58898 ssh2 Oct 5 11:11:33 host sshd[28009]: Received disconnect from 81.71.24.200 port 58898:11: Bye Bye [preauth] Oct 5 11:11:33 host sshd[28009]: Disconnected from invalid user r.r 81.71.24.200 port 58898 [preauth] Oct 5 11:20:11 host sshd[28182]: User r.r from 81.71.24.200 not allowed because none of user's groups are listed in AllowGroups Oct 5 11:20:11 host sshd[28182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.71.24.200 user=r.r Oct 5 11:20:13 host sshd[28182]: Failed password for invalid user r.r from 81.71.24.200 port 44596 ssh2 Oct 5 11:20:13 ho........ -------------------------------	2020-10-06 12:59:09
81.71.2.230	attack	81.71.2.230 - - [30/Sep/2020:09:09:09 -0300] "GET /TP/public/index.php HTTP/1.1" 302 547 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:12 -0300] "GET /TP/public/index.php HTTP/1.1" 404 3575 "http://52.3.44.226/TP/public/index.php" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:13 -0300] "GET /TP/index.php HTTP/1.1" 302 533 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:15 -0300] "GET /TP/index.php HTTP/1.1" 404 3575 "http://52.3.44.226/TP/index.php" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:15 -0300] "GET /thinkphp/html/public/index.php HTTP/1.1" 302 569 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09 ...	2020-10-01 05:00:16
81.71.2.230	attack	81.71.2.230 - - [30/Sep/2020:09:09:09 -0300] "GET /TP/public/index.php HTTP/1.1" 302 547 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:12 -0300] "GET /TP/public/index.php HTTP/1.1" 404 3575 "http://52.3.44.226/TP/public/index.php" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:13 -0300] "GET /TP/index.php HTTP/1.1" 302 533 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:15 -0300] "GET /TP/index.php HTTP/1.1" 404 3575 "http://52.3.44.226/TP/index.php" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:15 -0300] "GET /thinkphp/html/public/index.php HTTP/1.1" 302 569 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09 ...	2020-09-30 21:15:55
81.71.2.21	attack	Invalid user gretchen from 81.71.2.21 port 53760	2020-09-23 00:29:07
81.71.2.21	attackspam	SSH-BruteForce	2020-09-22 16:29:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.71.2.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40654
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;81.71.2.14.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025032600 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 26 17:51:05 CST 2025
;; MSG SIZE  rcvd: 103

Host info

Host 14.2.71.81.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.2.71.81.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.0.102.40	attackbots	[Fri Aug 14 22:43:48.388291 2020] [authz_core:error] [pid 16570] [client 192.0.102.40:43077] AH01630: client denied by server configuration: /var/www/buchtic.net/blog/index.php [Fri Aug 14 22:43:48.388611 2020] [authz_core:error] [pid 16570] [client 192.0.102.40:43077] AH01630: client denied by server configuration: /var/www/buchtic.net/blog/index.php ...	2020-08-15 05:50:49
85.214.69.173	attack	nginx/honey/a4a6f	2020-08-15 05:29:54
142.93.215.22	attackspambots	Aug 14 22:28:59 ns382633 sshd\[14205\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.22 user=root Aug 14 22:29:01 ns382633 sshd\[14205\]: Failed password for root from 142.93.215.22 port 50172 ssh2 Aug 14 22:39:37 ns382633 sshd\[16168\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.22 user=root Aug 14 22:39:38 ns382633 sshd\[16168\]: Failed password for root from 142.93.215.22 port 43798 ssh2 Aug 14 22:43:48 ns382633 sshd\[16984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.22 user=root	2020-08-15 05:51:44
37.49.224.154	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-15 05:38:39
138.68.253.149	attackbotsspam	Aug 14 22:35:58 myvps sshd[11407]: Failed password for root from 138.68.253.149 port 52616 ssh2 Aug 14 22:44:51 myvps sshd[16915]: Failed password for root from 138.68.253.149 port 37468 ssh2 ...	2020-08-15 05:16:47
13.114.122.76	attackbots	REQUESTED PAGE: /.git/HEAD	2020-08-15 05:36:25
106.12.90.29	attackspambots	Fail2Ban	2020-08-15 05:48:01
1.192.94.61	attackbots	web-1 [ssh] SSH Attack	2020-08-15 05:20:33
193.200.160.20	attackspam	1597437836 - 08/14/2020 22:43:56 Host: 193.200.160.20/193.200.160.20 Port: 23 TCP Blocked ...	2020-08-15 05:44:03
222.186.180.41	attack	Aug 14 23:32:52 melroy-server sshd[1855]: Failed password for root from 222.186.180.41 port 12316 ssh2 Aug 14 23:32:56 melroy-server sshd[1855]: Failed password for root from 222.186.180.41 port 12316 ssh2 ...	2020-08-15 05:36:58
60.167.180.177	attackbots	reported through recidive - multiple failed attempts(SSH)	2020-08-15 05:41:10
52.238.107.27	attackbotsspam	2020-08-15T00:33:00.970187mail.standpoint.com.ua sshd[1185]: Failed password for root from 52.238.107.27 port 60238 ssh2 2020-08-15T00:35:28.054873mail.standpoint.com.ua sshd[1520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.238.107.27 user=root 2020-08-15T00:35:30.033526mail.standpoint.com.ua sshd[1520]: Failed password for root from 52.238.107.27 port 56692 ssh2 2020-08-15T00:37:58.160121mail.standpoint.com.ua sshd[1816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.238.107.27 user=root 2020-08-15T00:38:00.063373mail.standpoint.com.ua sshd[1816]: Failed password for root from 52.238.107.27 port 53150 ssh2 ...	2020-08-15 05:43:18
111.161.74.117	attack	2020-08-14T22:45:06.811492n23.at sshd[1907286]: Failed password for root from 111.161.74.117 port 43506 ssh2 2020-08-14T22:49:15.103233n23.at sshd[1909962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.117 user=root 2020-08-14T22:49:16.731627n23.at sshd[1909962]: Failed password for root from 111.161.74.117 port 48279 ssh2 ...	2020-08-15 05:52:38
175.24.84.19	attack	Aug 13 08:41:41 carla sshd[4485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.84.19 user=r.r Aug 13 08:41:42 carla sshd[4485]: Failed password for r.r from 175.24.84.19 port 57900 ssh2 Aug 13 08:41:42 carla sshd[4486]: Received disconnect from 175.24.84.19: 11: Bye Bye Aug 13 08:55:42 carla sshd[4672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.84.19 user=r.r Aug 13 08:55:43 carla sshd[4672]: Failed password for r.r from 175.24.84.19 port 39476 ssh2 Aug 13 08:55:43 carla sshd[4673]: Received disconnect from 175.24.84.19: 11: Bye Bye Aug 13 08:59:43 carla sshd[4713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.84.19 user=r.r Aug 13 08:59:45 carla sshd[4713]: Failed password for r.r from 175.24.84.19 port 53106 ssh2 Aug 13 08:59:45 carla sshd[4714]: Received disconnect from 175.24.84.19: 11: Bye Bye Aug 13 09:03:48 ca........ -------------------------------	2020-08-15 05:15:49
222.186.42.213	attack	Aug 14 23:03:22 * sshd[7536]: Failed password for root from 222.186.42.213 port 38987 ssh2	2020-08-15 05:18:17

Recently Reported IPs

82.127.42.42	182.206.102.114	219.100.242.209	101.70.26.31
93.250.77.222	48.15.58.233	72.19.144.112	98.142.166.135
86.206.91.125	185.69.228.114	24.96.196.131	67.189.107.239
213.3.87.138	5.225.245.210	188.191.45.161	195.234.10.63
9.72.200.96	19.87.14.27	83.163.50.153	147.5.182.134