221.229.204.139

Basic Info

City: unknown

Region: Jiangsu

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: No.31,Jin-rong Street

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
221.229.204.27	attackspam	2020-05-09T22:30:22.175878 sshd[18559]: Invalid user daniel from 221.229.204.27 port 65032 2020-05-09T22:30:22.190376 sshd[18559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.229.204.27 2020-05-09T22:30:22.175878 sshd[18559]: Invalid user daniel from 221.229.204.27 port 65032 2020-05-09T22:30:24.068378 sshd[18559]: Failed password for invalid user daniel from 221.229.204.27 port 65032 ssh2 ...	2020-05-10 05:16:12
221.229.204.27	attackspam	SSH Invalid Login	2020-05-09 08:41:59
221.229.204.27	attackspam	May 6 02:58:35 XXX sshd[932]: Invalid user daniel from 221.229.204.27 port 53257	2020-05-07 08:40:18
221.229.204.27	attackbots	May 6 21:22:19 l03 sshd[349]: Invalid user debian from 221.229.204.27 port 55366 ...	2020-05-07 05:31:31
221.229.204.12	attackbots	19/8/13@14:15:15: FAIL: Alarm-Intrusion address from=221.229.204.12 ...	2019-08-14 10:13:31
221.229.204.71	attackbots	/admin/index.php?c=uploadify&m=include&a=doupfile&lang=cn&metinfonow=qipwtxm&html_filename=test.php	2019-08-02 13:40:12
221.229.204.71	attackbotsspam	Bad bot requested remote resources	2019-07-22 06:25:52
221.229.204.12	attackbots	Port scan: Attack repeated for 24 hours	2019-07-01 18:33:32

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.229.204.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48801
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;221.229.204.139.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed May 01 19:29:55 +08 2019
;; MSG SIZE  rcvd: 119

Host info

Host 139.204.229.221.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 139.204.229.221.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.76.56.69	attackspam	Nov 24 15:49:15 XXX sshd[31710]: Invalid user tru from 180.76.56.69 port 56280	2019-11-25 02:10:05
177.201.223.146	attackbots	The sender claims that he/she installed on my PC malicious code and has screenshots presenting, me visiting pornography homepages. He/she demands for paying in bitcoins.	2019-11-25 02:32:28
140.143.22.200	attackbots	Nov 24 17:53:15 localhost sshd\[42625\]: Invalid user portia from 140.143.22.200 port 54974 Nov 24 17:53:15 localhost sshd\[42625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.22.200 Nov 24 17:53:17 localhost sshd\[42625\]: Failed password for invalid user portia from 140.143.22.200 port 54974 ssh2 Nov 24 17:59:40 localhost sshd\[42851\]: Invalid user icecast from 140.143.22.200 port 57658 Nov 24 17:59:40 localhost sshd\[42851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.22.200 ...	2019-11-25 02:16:11
190.96.172.101	attackbots	Nov 24 19:12:03 vpn01 sshd[22628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.96.172.101 Nov 24 19:12:05 vpn01 sshd[22628]: Failed password for invalid user ching from 190.96.172.101 port 54046 ssh2 ...	2019-11-25 02:13:09
70.132.52.86	attackspam	Automatic report generated by Wazuh	2019-11-25 02:15:02
5.196.7.123	attackbotsspam	Nov 24 13:02:21 ny01 sshd[30520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.7.123 Nov 24 13:02:23 ny01 sshd[30520]: Failed password for invalid user enstone from 5.196.7.123 port 46920 ssh2 Nov 24 13:08:30 ny01 sshd[31071]: Failed password for root from 5.196.7.123 port 54834 ssh2	2019-11-25 02:15:55
122.227.26.90	attackspam	2019-11-24 19:05:22,948 fail2ban.actions: WARNING [ssh] Ban 122.227.26.90	2019-11-25 02:26:21
148.72.65.10	attackspam	Nov 24 14:36:51 ws19vmsma01 sshd[241075]: Failed password for lp from 148.72.65.10 port 34942 ssh2 Nov 24 14:56:37 ws19vmsma01 sshd[51471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.65.10 ...	2019-11-25 02:11:46
80.211.116.102	attackspam	Nov 24 10:42:55 linuxvps sshd\[55358\]: Invalid user mysql from 80.211.116.102 Nov 24 10:42:55 linuxvps sshd\[55358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.116.102 Nov 24 10:42:57 linuxvps sshd\[55358\]: Failed password for invalid user mysql from 80.211.116.102 port 48723 ssh2 Nov 24 10:49:20 linuxvps sshd\[59376\]: Invalid user ligammare from 80.211.116.102 Nov 24 10:49:20 linuxvps sshd\[59376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.116.102	2019-11-25 02:27:45
95.172.58.97	attack	11/24/2019-09:50:51.395357 95.172.58.97 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-25 02:24:37
208.113.200.5	attack	Nov 24 15:50:06 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=208.113.200.5, lip=176.9.177.164, session=\<1PwnwxiY6dvQccgF\> Nov 24 15:50:12 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=208.113.200.5, lip=176.9.177.164, session=\ Nov 24 15:50:22 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 10 secs\): user=\, method=PLAIN, rip=208.113.200.5, lip=176.9.177.164, session=\<1BqowxiYqd/QccgF\> Nov 24 15:50:24 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 10 secs\): user=\, method=PLAIN, rip=208.113.200.5, lip=176.9.177.164, session=\ Nov 24 15:50:32 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 10 secs\): user=\, method=PLAIN, rip=208.113.200.5, lip=1 ...	2019-11-25 02:33:11
139.162.123.29	attackbots	Portscan or hack attempt detected by psad/fwsnort	2019-11-25 02:37:14
190.144.45.108	attackspambots	Nov 24 18:34:34 vpn01 sshd[21907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.144.45.108 Nov 24 18:34:36 vpn01 sshd[21907]: Failed password for invalid user pwcadmin from 190.144.45.108 port 49815 ssh2 ...	2019-11-25 02:38:51
150.242.255.147	attackspam	" "	2019-11-25 02:35:05
159.203.201.21	attackbots	11/24/2019-15:50:27.944502 159.203.201.21 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-25 02:36:44

Recently Reported IPs

54.192.182.63	181.112.50.30	176.221.31.152	180.191.235.225
197.120.49.133	171.60.197.138	51.38.48.186	129.240.165.228
119.236.77.53	146.129.133.67	125.128.218.31	91.107.122.233
120.168.5.239	192.185.179.30	71.116.211.11	192.15.38.62
180.76.15.135	178.84.41.231	113.97.31.171	147.67.83.203