222.137.2.159 - IPInfo

Basic Info

City: Shanghai

Region: Henan

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
222.137.236.248	attack	GPON Home Routers Remote Code Execution Vulnerability	2020-10-11 02:57:05
222.137.236.248	attackbotsspam	GPON Home Routers Remote Code Execution Vulnerability	2020-10-10 18:45:49
222.137.220.137	attackspambots	SP-Scan 35426:8080 detected 2020.09.01 01:04:38 blocked until 2020.10.20 18:07:25	2020-09-03 02:19:39
222.137.220.137	attackspam	SP-Scan 35426:8080 detected 2020.09.01 01:04:38 blocked until 2020.10.20 18:07:25	2020-09-02 17:51:14
222.137.21.255	attackspam	SpamScore above: 10.0	2020-05-29 02:41:59
222.137.26.106	attackspambots	firewall-block, port(s): 23/tcp	2019-09-24 06:10:44
222.137.20.227	attackspam	" "	2019-09-08 09:59:57
222.137.221.253	attackbots	Unauthorised access (Aug 31) SRC=222.137.221.253 LEN=40 TTL=49 ID=12299 TCP DPT=8080 WINDOW=10206 SYN	2019-08-31 15:51:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.137.2.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55615
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.137.2.159.			IN	A

;; AUTHORITY SECTION:
.			200	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072501 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 26 07:08:28 CST 2020
;; MSG SIZE  rcvd: 117

Host info

159.2.137.222.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
159.2.137.222.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.60.255.90	attack	Aug 17 09:08:07 web9 sshd\[24860\]: Invalid user teste from 119.60.255.90 Aug 17 09:08:07 web9 sshd\[24860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.60.255.90 Aug 17 09:08:09 web9 sshd\[24860\]: Failed password for invalid user teste from 119.60.255.90 port 39458 ssh2 Aug 17 09:12:50 web9 sshd\[25742\]: Invalid user price from 119.60.255.90 Aug 17 09:12:50 web9 sshd\[25742\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.60.255.90	2019-08-18 03:20:02
149.56.23.154	attack	Aug 17 19:50:58 mail sshd\[18828\]: Failed password for invalid user omcuser from 149.56.23.154 port 41372 ssh2 Aug 17 20:06:49 mail sshd\[19123\]: Invalid user teamspeak3 from 149.56.23.154 port 54048 ...	2019-08-18 03:15:41
142.93.122.185	attackspambots	Aug 17 21:22:54 dedicated sshd[18197]: Invalid user vasile from 142.93.122.185 port 42918	2019-08-18 03:46:43
185.153.198.196	attackspam	08/17/2019-14:34:31.532172 185.153.198.196 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-08-18 03:33:23
117.40.128.235	attackspambots	Unauthorised access (Aug 17) SRC=117.40.128.235 LEN=40 TTL=238 ID=45027 TCP DPT=445 WINDOW=1024 SYN	2019-08-18 03:09:53
93.152.159.11	attack	Aug 17 08:48:10 eddieflores sshd\[31631\]: Invalid user flower from 93.152.159.11 Aug 17 08:48:11 eddieflores sshd\[31631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.152.159.11 Aug 17 08:48:13 eddieflores sshd\[31631\]: Failed password for invalid user flower from 93.152.159.11 port 48820 ssh2 Aug 17 08:52:40 eddieflores sshd\[32024\]: Invalid user bird from 93.152.159.11 Aug 17 08:52:40 eddieflores sshd\[32024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.152.159.11	2019-08-18 03:09:04
35.201.243.170	attackbots	SSH invalid-user multiple login try	2019-08-18 03:10:53
77.247.181.162	attackbots	SSH Brute Force, server-1 sshd[4570]: Failed password for invalid user admin from 77.247.181.162 port 44026 ssh2	2019-08-18 03:36:48
182.61.136.23	attackspambots	Automated report - ssh fail2ban: Aug 17 20:37:22 wrong password, user=september, port=40844, ssh2 Aug 17 21:11:23 authentication failure Aug 17 21:11:25 wrong password, user=ftpuser, port=51252, ssh2	2019-08-18 03:11:40
167.71.166.233	attackspam	Aug 17 21:12:22 SilenceServices sshd[16973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.166.233 Aug 17 21:12:24 SilenceServices sshd[16973]: Failed password for invalid user usuario from 167.71.166.233 port 54698 ssh2 Aug 17 21:16:35 SilenceServices sshd[20337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.166.233	2019-08-18 03:19:47
52.55.244.91	attackbots	52.55.244.91 has been banned from MailServer for Abuse ...	2019-08-18 03:22:00
138.68.7.176	attack	Aug 17 21:05:15 vps691689 sshd[31687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.7.176 Aug 17 21:05:17 vps691689 sshd[31687]: Failed password for invalid user ellie from 138.68.7.176 port 56578 ssh2 Aug 17 21:09:39 vps691689 sshd[31824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.7.176 ...	2019-08-18 03:26:57
74.82.47.194	attackbots	Automatic report - Banned IP Access	2019-08-18 03:35:27
49.88.112.78	attackspam	Aug 17 21:19:43 piServer sshd\[22803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.78 user=root Aug 17 21:19:45 piServer sshd\[22803\]: Failed password for root from 49.88.112.78 port 20872 ssh2 Aug 17 21:19:48 piServer sshd\[22803\]: Failed password for root from 49.88.112.78 port 20872 ssh2 Aug 17 21:19:50 piServer sshd\[22803\]: Failed password for root from 49.88.112.78 port 20872 ssh2 Aug 17 21:19:53 piServer sshd\[22828\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.78 user=root ...	2019-08-18 03:20:25
151.69.229.18	attack	2019-08-18T01:54:24.241375enmeeting.mahidol.ac.th sshd\[14820\]: Invalid user mui3 from 151.69.229.18 port 55672 2019-08-18T01:54:24.256011enmeeting.mahidol.ac.th sshd\[14820\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.69.229.18 2019-08-18T01:54:26.086096enmeeting.mahidol.ac.th sshd\[14820\]: Failed password for invalid user mui3 from 151.69.229.18 port 55672 ssh2 ...	2019-08-18 03:08:19

Recently Reported IPs

143.238.123.78	150.177.9.3	97.199.186.180	118.104.83.230
206.114.105.137	184.236.127.165	78.151.124.222	156.22.61.219
79.166.111.137	213.61.140.102	100.255.28.115	111.58.250.243
106.177.175.1	70.23.221.79	82.254.90.63	78.250.60.122
201.63.182.24	221.40.35.131	75.190.240.97	65.73.99.65