116.22.30.70 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 116.22.30.70 to port 6656 [T]	2020-01-29 19:47:49

Comments on same subnet:

IP	Type	Details	Datetime
116.22.30.122	attackspam	Unauthorized connection attempt detected from IP address 116.22.30.122 to port 6656 [T]	2020-01-27 04:30:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.22.30.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61594
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.22.30.70.			IN	A

;; AUTHORITY SECTION:
.			546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012900 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 19:47:39 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 70.30.22.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.30.22.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
196.52.43.118	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-17 01:05:12
128.199.184.127	attack	Oct 16 13:11:04 server sshd\[25820\]: Failed password for invalid user admin from 128.199.184.127 port 60082 ssh2 Oct 16 14:12:51 server sshd\[12558\]: Invalid user window from 128.199.184.127 Oct 16 14:12:51 server sshd\[12558\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.184.127 Oct 16 14:12:53 server sshd\[12558\]: Failed password for invalid user window from 128.199.184.127 port 36800 ssh2 Oct 16 14:17:26 server sshd\[14042\]: Invalid user biz from 128.199.184.127 Oct 16 14:17:26 server sshd\[14042\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.184.127 Oct 16 14:17:28 server sshd\[14042\]: Failed password for invalid user biz from 128.199.184.127 port 47240 ssh2 Oct 16 15:21:43 server sshd\[975\]: Invalid user p@ssword from 128.199.184.127 Oct 16 15:21:43 server sshd\[975\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.19 ...	2019-10-17 01:09:47
112.85.42.189	attack	$f2bV_matches	2019-10-17 01:18:35
36.66.156.125	attackspam	2019-10-16T18:39:33.306717centos sshd\[13715\]: Invalid user support from 36.66.156.125 port 37510 2019-10-16T18:39:33.312545centos sshd\[13715\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.156.125 2019-10-16T18:39:34.965370centos sshd\[13715\]: Failed password for invalid user support from 36.66.156.125 port 37510 ssh2	2019-10-17 01:35:38
202.124.204.22	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-17 01:19:25
95.90.142.55	attackbots	Oct 16 17:09:43 server sshd\[1451\]: Invalid user ofsaa from 95.90.142.55 Oct 16 17:09:43 server sshd\[1451\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip5f5a8e37.dynamic.kabel-deutschland.de Oct 16 17:09:46 server sshd\[1451\]: Failed password for invalid user ofsaa from 95.90.142.55 port 50816 ssh2 Oct 16 17:12:35 server sshd\[2512\]: Invalid user ofsaa from 95.90.142.55 Oct 16 17:12:35 server sshd\[2512\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip5f5a8e37.dynamic.kabel-deutschland.de Oct 16 17:12:37 server sshd\[2512\]: Failed password for invalid user ofsaa from 95.90.142.55 port 36812 ssh2 Oct 16 18:14:20 server sshd\[22147\]: Invalid user gq from 95.90.142.55 Oct 16 18:14:20 server sshd\[22147\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip5f5a8e37.dynamic.kabel-deutschland.de Oct 16 18:14:22 server sshd\[22147\]: Failed passwor ...	2019-10-17 01:06:39
141.98.80.87	attackspambots	Oct 16 16:11:32 heicom postfix/smtpd\[18250\]: warning: unknown\[141.98.80.87\]: SASL PLAIN authentication failed: authentication failure Oct 16 16:11:34 heicom postfix/smtpd\[18250\]: warning: unknown\[141.98.80.87\]: SASL PLAIN authentication failed: authentication failure Oct 16 17:05:17 heicom postfix/smtpd\[19018\]: warning: unknown\[141.98.80.87\]: SASL PLAIN authentication failed: authentication failure Oct 16 17:05:21 heicom postfix/smtpd\[18355\]: warning: unknown\[141.98.80.87\]: SASL PLAIN authentication failed: authentication failure Oct 16 17:10:20 heicom postfix/smtpd\[19018\]: warning: unknown\[141.98.80.87\]: SASL PLAIN authentication failed: authentication failure ...	2019-10-17 01:27:03
218.153.253.182	attackbotsspam	ssh brute force	2019-10-17 01:02:58
196.52.43.51	attackspambots	Automatic report - Port Scan Attack	2019-10-17 01:13:14
194.44.36.172	attack	Oct 14 14:39:05 reporting sshd[24377]: User r.r from 194.44.36.172 not allowed because not listed in AllowUsers Oct 14 14:39:05 reporting sshd[24377]: Failed password for invalid user r.r from 194.44.36.172 port 54978 ssh2 Oct 14 14:55:04 reporting sshd[1830]: User r.r from 194.44.36.172 not allowed because not listed in AllowUsers Oct 14 14:55:04 reporting sshd[1830]: Failed password for invalid user r.r from 194.44.36.172 port 44634 ssh2 Oct 14 14:59:16 reporting sshd[4619]: User r.r from 194.44.36.172 not allowed because not listed in AllowUsers Oct 14 14:59:16 reporting sshd[4619]: Failed password for invalid user r.r from 194.44.36.172 port 57798 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=194.44.36.172	2019-10-17 01:38:48
92.222.216.71	attackbots	Automatic report - Banned IP Access	2019-10-17 00:59:37
176.31.172.40	attackspam	2019-10-16T17:30:20.706090homeassistant sshd[8810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.172.40 user=root 2019-10-16T17:30:22.659613homeassistant sshd[8810]: Failed password for root from 176.31.172.40 port 38520 ssh2 ...	2019-10-17 01:39:49
37.59.158.100	attackspam	2019-10-16T16:55:25.205535abusebot-5.cloudsearch.cf sshd\[24723\]: Invalid user forum from 37.59.158.100 port 34856	2019-10-17 01:04:37
196.52.43.57	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-17 01:21:43
51.255.171.51	attackbots	SSH Brute Force, server-1 sshd[5790]: Failed password for root from 51.255.171.51 port 49902 ssh2	2019-10-17 01:35:18

Recently Reported IPs

26.84.29.126	54.20.160.34	114.103.136.199	151.109.6.232
114.101.253.31	111.90.241.233	201.55.17.187	114.98.31.204
6.179.229.220	121.161.91.32	161.103.190.0	113.229.75.65
113.7.236.157	106.125.236.227	94.200.124.64	60.188.49.245
59.62.214.158	42.116.225.117	42.113.24.40	15.164.95.194