122.204.139.210

Basic Info

City: Wuhan

Region: Hubei

Country: China

Internet Service Provider: Central China Normal University

Hostname: unknown

Organization: CERNET2 IX at Huazhong University of Science and Technology

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized access to SSH at 6/Aug/2019:11:16:17 +0000.	2019-08-07 02:15:59

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.204.139.210
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14369
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.204.139.210.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080601 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 07 02:15:51 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 210.139.204.122.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 210.139.204.122.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.68.230.54	attackbotsspam	Invalid user test01 from 51.68.230.54 port 56146	2019-08-29 20:00:30
178.62.117.82	attackbotsspam	Aug 29 06:30:25 mailman sshd[21102]: Invalid user test from 178.62.117.82 Aug 29 06:30:25 mailman sshd[21102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.117.82 Aug 29 06:30:27 mailman sshd[21102]: Failed password for invalid user test from 178.62.117.82 port 55418 ssh2	2019-08-29 19:30:44
193.32.160.144	attack	2019-08-29 13:01:06 H=\(\[193.32.160.139\]\) \[193.32.160.144\] F=\<1phss84shy43s@zeppelin.am\> rejected RCPT \: Unrouteable address 2019-08-29 13:01:06 H=\(\[193.32.160.139\]\) \[193.32.160.144\] F=\<1phss84shy43s@zeppelin.am\> rejected RCPT \: Unrouteable address 2019-08-29 13:01:06 H=\(\[193.32.160.139\]\) \[193.32.160.144\] F=\<1phss84shy43s@zeppelin.am\> rejected RCPT \: Unrouteable address 2019-08-29 13:01:06 H=\(\[193.32.160.139\]\) \[193.32.160.144\] F=\<1phss84shy43s@zeppelin.am\> rejected RCPT \: Unrouteable address 2019-08-29 13:01:06 H=\(\[193.32.160.139\]\) \[193.32.160.144\] F=\<1phss84shy43s@zeppelin.am\> rejected RCPT \: Unrouteable address 2019-08-29 13:01:06 H=\(\[193.32.160.139\]\) \[193.32.160.144\] F=\<1phss84shy43s@zeppelin.am\> rejected RCPT \: Unrouteable address 2019-08-29 13:01:06 H=\(\[193.32.160.139\]\) \[193.32.160.144\] F=\<1phss84shy43s@zeppelin.am\> rejected RCPT \: Unrouteab	2019-08-29 19:38:34
37.21.74.180	attackbotsspam	Automatic report - Port Scan Attack	2019-08-29 20:15:37
95.58.194.141	attackspambots	SSH Bruteforce	2019-08-29 19:27:02
114.39.54.59	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-29 19:54:18
52.80.41.234	attackbots	port scan and connect, tcp 80 (http)	2019-08-29 19:51:25
211.93.7.46	attackbots	2019-08-29T11:25:12.326389abusebot-7.cloudsearch.cf sshd\[25027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.93.7.46 user=root	2019-08-29 19:36:15
81.135.62.129	attackspambots	NAME : BT-CENTRAL-PLUS + e-mail abuse : abuse@bt.com CIDR : 81.135.0.0/17 SYN Flood DDoS Attack GB - block certain countries :) IP: 81.135.62.129 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-08-29 19:50:15
114.26.42.54	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-29 19:41:18
190.210.42.83	attackbots	Aug 29 02:01:18 hcbb sshd\[24207\]: Invalid user jessey from 190.210.42.83 Aug 29 02:01:18 hcbb sshd\[24207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.210.42.83 Aug 29 02:01:20 hcbb sshd\[24207\]: Failed password for invalid user jessey from 190.210.42.83 port 36320 ssh2 Aug 29 02:06:20 hcbb sshd\[24674\]: Invalid user xrms from 190.210.42.83 Aug 29 02:06:20 hcbb sshd\[24674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.210.42.83	2019-08-29 20:11:52
114.24.110.192	attack	23/tcp [2019-08-29]1pkt	2019-08-29 19:32:16
5.54.178.15	attackspambots	Telnet Server BruteForce Attack	2019-08-29 20:09:27
174.138.19.114	attackspam	Aug 29 11:36:02 MK-Soft-VM4 sshd\[6717\]: Invalid user tommy from 174.138.19.114 port 37292 Aug 29 11:36:02 MK-Soft-VM4 sshd\[6717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.19.114 Aug 29 11:36:03 MK-Soft-VM4 sshd\[6717\]: Failed password for invalid user tommy from 174.138.19.114 port 37292 ssh2 ...	2019-08-29 20:17:39
122.116.216.17	attackspambots	xmlrpc attack	2019-08-29 19:26:07

Recently Reported IPs

188.241.205.11	1.44.114.60	98.191.55.0	190.76.138.186
221.211.53.26	80.130.89.149	165.22.126.233	35.207.234.209
39.100.82.249	52.33.43.62	171.236.177.23	84.244.164.162
209.124.30.115	118.135.26.224	42.55.48.205	52.207.240.234
191.80.207.229	195.215.214.235	4.112.123.154	174.3.226.49