JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 120.71.40.231

120.71.40.231 was found in our database!

This IP was reported 101 times. Confidence of Abuse is 50%: ?

50%

ISP	CHINANET Xinjiang province network
Usage Type	Fixed Line ISP
ASN	AS137695
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Urumqi, Xinjiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 120.71.40.231

Whois 120.71.40.231

IP Abuse Reports for 120.71.40.231:

This IP address has been reported a total of 101 times from 44 distinct sources. 120.71.40.231 was first reported on April 2nd 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-05-31 02:17:36 (1 week ago)	ICS Labs identified 120.71.40.231 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
🇧🇷 ufn.edu.br	2026-05-08 05:08:37 (4 weeks ago)	May 8 02:08:19 wslbvm01 sshd[4058479]: Failed password for root from 120.71.40.231 port 58142 ssh2 ... show more May 8 02:08:19 wslbvm01 sshd[4058479]: Failed password for root from 120.71.40.231 port 58142 ssh2 May 8 02:08:27 wslbvm01 sshd[4058479]: Failed password for root from 120.71.40.231 port 58142 ssh2 May 8 02:08:36 wslbvm01 sshd[4058479]: Failed password for root from 120.71.40.231 port 58142 ssh2 ... show less	Brute-Force SSH
🇬🇧 andypiper	2026-05-01 01:00:18 (1 month ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇨🇭 YF	2026-05-01 00:16:36 (1 month ago)	Pays blacklisté (CN) — refresh	Brute-Force Web App Attack
🇩🇪 genokrad	2026-04-28 14:38:28 (1 month ago)	Unauthorized connection attempt on TCP/6379 (Redis)	Port Scan
🇳🇱 donarev419	2026-04-28 01:41:11 (1 month ago)	Connection to port 6379 with data transfer. Data preview: info server	Port Scan Hacking
Anonymous	2026-04-27 18:29:04 (1 month ago)	2026-04-27T19:29:03.355067+01:00 vps kernel: [39054744.568166] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-04-27T19:29:03.355067+01:00 vps kernel: [39054744.568166] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=120.71.40.231 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=43 ID=38702 DF PROTO=TCP SPT=51848 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇭🇰 PingMeMaybe	2026-04-27 04:09:49 (1 month ago)	Blocked by UFW on hk [6379/tcp] Source port: 41612 TTL: 47 Packet length: 60 TOS: 0x00 This report ... show more Blocked by UFW on hk [6379/tcp] Source port: 41612 TTL: 47 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇮 iamxorum	2026-04-26 21:27:37 (1 month ago)	2026-04-26T21:27:37.283128+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74 ... show more 2026-04-26T21:27:37.283128+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74:7f:6e:37:e3:08:00 SRC=120.71.40.231 DST=46.62.222.43 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=44646 DF PROTO=TCP SPT=47458 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇸🇬 celestialcity	2026-04-26 15:01:14 (1 month ago)	Blocked by UFW on celestialcityas [6379/tcp] \| SPT: 49630 \| TTL: 39 \| LEN: 60 \| TOS: 0x00 • Reported ... show more Blocked by UFW on celestialcityas [6379/tcp] \| SPT: 49630 \| TTL: 39 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 VMHeaven.io	2026-04-26 12:30:24 (1 month ago)	Blocked by UFW [6379/tcp] Source port: 47208 TTL: 44 Packet length: 60	Port Scan
🇺🇸 donarev419	2026-04-26 00:17:28 (1 month ago)	Connection to port 6379 with data transfer. Data preview: *1 $4 info	Port Scan Hacking
🇯🇵 VXG-NET	2026-04-25 08:47:49 (1 month ago)	port=6379, indicator_type=scan	Port Scan
🇫🇮 nNordic	2026-04-25 08:35:41 (1 month ago)	Connection attempt blocked by IDS/IPS from 120.71.40.231/32	Hacking
Anonymous	2026-04-25 07:32:42 (1 month ago)	2026-04-25T08:32:41.618371+01:00 vps kernel: [38842565.076930] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-04-25T08:32:41.618371+01:00 vps kernel: [38842565.076930] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=120.71.40.231 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=43 ID=7992 DF PROTO=TCP SPT=59868 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force

Showing 1 to 15 of 101 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 39.115.195.164

🇬🇧 134.209.189.72

🇧🇩 103.155.185.113

🇭🇰 101.36.117.234

🇭🇰 47.76.189.125

🇨🇭 37.120.213.13

🇮🇳 4.213.99.137

🇺🇸 2620:18c:0:192::e0:202

🇩🇪 213.95.191.47

🇫🇷 163.5.241.35

🇪🇬 154.236.20.61

🇺🇸 154.83.197.96

🇺🇸 142.248.80.222

🇲🇾 124.13.128.163

🇹🇭 110.238.115.146

🇮🇳 103.210.101.116

🇮🇩 103.165.139.145

🇮🇳 72.62.224.195

🇺🇸 64.62.156.110

🇷🇺 62.192.226.83