81.71.2.14 - IPInfo

Basic Info

City: Guangzhou

Region: Guangdong

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
81.71.24.200	attackspam	Oct 5 11:11:30 host sshd[28009]: User r.r from 81.71.24.200 not allowed because none of user's groups are listed in AllowGroups Oct 5 11:11:31 host sshd[28009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.71.24.200 user=r.r Oct 5 11:11:33 host sshd[28009]: Failed password for invalid user r.r from 81.71.24.200 port 58898 ssh2 Oct 5 11:11:33 host sshd[28009]: Received disconnect from 81.71.24.200 port 58898:11: Bye Bye [preauth] Oct 5 11:11:33 host sshd[28009]: Disconnected from invalid user r.r 81.71.24.200 port 58898 [preauth] Oct 5 11:20:11 host sshd[28182]: User r.r from 81.71.24.200 not allowed because none of user's groups are listed in AllowGroups Oct 5 11:20:11 host sshd[28182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.71.24.200 user=r.r Oct 5 11:20:13 host sshd[28182]: Failed password for invalid user r.r from 81.71.24.200 port 44596 ssh2 Oct 5 11:20:13 ho........ -------------------------------	2020-10-06 12:59:09
81.71.2.230	attack	81.71.2.230 - - [30/Sep/2020:09:09:09 -0300] "GET /TP/public/index.php HTTP/1.1" 302 547 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:12 -0300] "GET /TP/public/index.php HTTP/1.1" 404 3575 "http://52.3.44.226/TP/public/index.php" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:13 -0300] "GET /TP/index.php HTTP/1.1" 302 533 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:15 -0300] "GET /TP/index.php HTTP/1.1" 404 3575 "http://52.3.44.226/TP/index.php" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:15 -0300] "GET /thinkphp/html/public/index.php HTTP/1.1" 302 569 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09 ...	2020-10-01 05:00:16
81.71.2.230	attack	81.71.2.230 - - [30/Sep/2020:09:09:09 -0300] "GET /TP/public/index.php HTTP/1.1" 302 547 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:12 -0300] "GET /TP/public/index.php HTTP/1.1" 404 3575 "http://52.3.44.226/TP/public/index.php" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:13 -0300] "GET /TP/index.php HTTP/1.1" 302 533 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:15 -0300] "GET /TP/index.php HTTP/1.1" 404 3575 "http://52.3.44.226/TP/index.php" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09:15 -0300] "GET /thinkphp/html/public/index.php HTTP/1.1" 302 569 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 81.71.2.230 - - [30/Sep/2020:09:09 ...	2020-09-30 21:15:55
81.71.2.21	attack	Invalid user gretchen from 81.71.2.21 port 53760	2020-09-23 00:29:07
81.71.2.21	attackspam	SSH-BruteForce	2020-09-22 16:29:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.71.2.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40654
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;81.71.2.14.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025032600 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 26 17:51:05 CST 2025
;; MSG SIZE  rcvd: 103

Host info

Host 14.2.71.81.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.2.71.81.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
191.53.199.67	attack	failed_logins	2019-07-08 00:54:27
77.247.110.216	attack	\[2019-07-07 12:03:03\] NOTICE\[13443\] chan_sip.c: Registration from '"306" \' failed for '77.247.110.216:6230' - Wrong password \[2019-07-07 12:03:03\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-07T12:03:03.997-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="306",SessionID="0x7f02f876b078",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.216/6230",Challenge="13efb9a5",ReceivedChallenge="13efb9a5",ReceivedHash="bf7353e34331f8b8e291ede4127fae06" \[2019-07-07 12:03:04\] NOTICE\[13443\] chan_sip.c: Registration from '"306" \' failed for '77.247.110.216:6230' - Wrong password \[2019-07-07 12:03:04\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-07T12:03:04.109-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="306",SessionID="0x7f02f88cef08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U	2019-07-08 00:25:22
221.7.253.18	attackspambots	Jul 7 16:18:24 db sshd\[27673\]: Invalid user cali from 221.7.253.18 Jul 7 16:18:24 db sshd\[27673\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.253.18 Jul 7 16:18:25 db sshd\[27673\]: Failed password for invalid user cali from 221.7.253.18 port 55708 ssh2 Jul 7 16:21:59 db sshd\[27719\]: Invalid user audrey from 221.7.253.18 Jul 7 16:21:59 db sshd\[27719\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.253.18 ...	2019-07-07 23:54:18
46.242.122.6	attackspam	Jul 5 14:13:04 vpxxxxxxx22308 sshd[25873]: Invalid user pi from 46.242.122.6 Jul 5 14:13:04 vpxxxxxxx22308 sshd[25875]: Invalid user pi from 46.242.122.6 Jul 5 14:13:04 vpxxxxxxx22308 sshd[25873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.242.122.6 Jul 5 14:13:04 vpxxxxxxx22308 sshd[25875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.242.122.6 Jul 5 14:13:06 vpxxxxxxx22308 sshd[25873]: Failed password for invalid user pi from 46.242.122.6 port 41586 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=46.242.122.6	2019-07-08 00:05:57
218.24.45.75	attackspam	SCAN: Host Sweep	2019-07-08 00:50:15
94.191.3.81	attack	SSH Brute Force, server-1 sshd[28528]: Failed password for invalid user katrina from 94.191.3.81 port 46208 ssh2	2019-07-08 00:30:52
202.105.18.222	attack	Jul 7 09:55:58 aat-srv002 sshd[9731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.105.18.222 Jul 7 09:56:00 aat-srv002 sshd[9731]: Failed password for invalid user blynk from 202.105.18.222 port 53322 ssh2 Jul 7 10:12:02 aat-srv002 sshd[9962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.105.18.222 Jul 7 10:12:04 aat-srv002 sshd[9962]: Failed password for invalid user instagram from 202.105.18.222 port 63250 ssh2 ...	2019-07-08 00:10:22
174.138.56.93	attackspam	Jul 7 17:12:23 XXX sshd[48803]: Invalid user gabriele from 174.138.56.93 port 60432	2019-07-08 00:57:53
185.36.102.203	attackbots	185.36.102.203 - - [07/Jul/2019:17:47:14 +0200] "POST [munged]wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000	2019-07-08 00:17:46
50.62.176.220	attackbots	xmlrpc attack	2019-07-08 01:00:46
176.31.252.148	attackspambots	$f2bV_matches	2019-07-08 00:23:48
187.217.199.20	attackspam	Jul 7 18:25:26 vps647732 sshd[18214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.217.199.20 Jul 7 18:25:28 vps647732 sshd[18214]: Failed password for invalid user ma from 187.217.199.20 port 55962 ssh2 ...	2019-07-08 00:32:25
190.144.14.170	attackbotsspam	Jul 7 19:31:02 areeb-Workstation sshd\[21488\]: Invalid user gabi from 190.144.14.170 Jul 7 19:31:02 areeb-Workstation sshd\[21488\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.144.14.170 Jul 7 19:31:05 areeb-Workstation sshd\[21488\]: Failed password for invalid user gabi from 190.144.14.170 port 53820 ssh2 ...	2019-07-08 00:11:03
178.46.167.192	attack	Brute force attempt	2019-07-08 00:54:00
70.120.180.176	attackbotsspam	Jul 7 16:19:11 ns341937 sshd[20462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.120.180.176 Jul 7 16:19:11 ns341937 sshd[20460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.120.180.176 Jul 7 16:19:13 ns341937 sshd[20460]: Failed password for invalid user pi from 70.120.180.176 port 50964 ssh2 Jul 7 16:19:13 ns341937 sshd[20462]: Failed password for invalid user pi from 70.120.180.176 port 50966 ssh2 ...	2019-07-08 00:20:27

Recently Reported IPs

82.127.42.42	182.206.102.114	219.100.242.209	101.70.26.31
93.250.77.222	48.15.58.233	72.19.144.112	98.142.166.135
86.206.91.125	185.69.228.114	24.96.196.131	67.189.107.239
213.3.87.138	5.225.245.210	188.191.45.161	195.234.10.63
9.72.200.96	19.87.14.27	83.163.50.153	147.5.182.134