222.139.16.17 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Henan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Telnet/23 MH Probe, BF, Hack -	2019-11-15 21:46:50

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.139.16.17
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63539
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.139.16.17.			IN	A

;; AUTHORITY SECTION:
.			580	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111500 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 15 21:46:46 CST 2019
;; MSG SIZE  rcvd: 117

Host info

17.16.139.222.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
17.16.139.222.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.29.15.60	attackbots	09/27/2019-09:53:42.140522 193.29.15.60 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-28 00:12:55
112.13.91.29	attackbots	Sep 27 17:30:31 nextcloud sshd\[23504\]: Invalid user rosa from 112.13.91.29 Sep 27 17:30:31 nextcloud sshd\[23504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.13.91.29 Sep 27 17:30:33 nextcloud sshd\[23504\]: Failed password for invalid user rosa from 112.13.91.29 port 3548 ssh2 ...	2019-09-28 00:08:38
182.55.34.233	attackbots	firewall-block, port(s): 84/tcp	2019-09-28 00:52:36
58.59.97.242	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:10:34.	2019-09-28 00:48:43
191.205.123.200	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-28 00:15:21
45.136.109.227	attack	DDOS attacks on TCP high ports	2019-09-28 00:36:21
121.130.88.44	attackbots	Sep 27 04:44:35 hpm sshd\[10151\]: Invalid user ud from 121.130.88.44 Sep 27 04:44:35 hpm sshd\[10151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.130.88.44 Sep 27 04:44:37 hpm sshd\[10151\]: Failed password for invalid user ud from 121.130.88.44 port 59644 ssh2 Sep 27 04:49:37 hpm sshd\[10559\]: Invalid user ivan from 121.130.88.44 Sep 27 04:49:37 hpm sshd\[10559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.130.88.44	2019-09-28 00:14:49
27.210.234.25	attack	(Sep 27) LEN=40 TTL=49 ID=44604 TCP DPT=8080 WINDOW=60126 SYN (Sep 27) LEN=40 TTL=49 ID=57699 TCP DPT=8080 WINDOW=40272 SYN (Sep 27) LEN=40 TTL=49 ID=41605 TCP DPT=8080 WINDOW=16520 SYN (Sep 26) LEN=40 TTL=49 ID=22459 TCP DPT=8080 WINDOW=40272 SYN (Sep 26) LEN=40 TTL=49 ID=36272 TCP DPT=8080 WINDOW=40272 SYN (Sep 25) LEN=40 TTL=49 ID=7572 TCP DPT=8080 WINDOW=60126 SYN (Sep 25) LEN=40 TTL=49 ID=34099 TCP DPT=8080 WINDOW=60126 SYN (Sep 25) LEN=40 TTL=49 ID=16170 TCP DPT=8080 WINDOW=60126 SYN (Sep 25) LEN=40 TTL=49 ID=52711 TCP DPT=8080 WINDOW=16520 SYN (Sep 25) LEN=40 TTL=49 ID=33615 TCP DPT=8080 WINDOW=16520 SYN	2019-09-28 00:12:32
103.247.90.164	attackspam	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-28 00:46:56
46.242.61.189	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:10:29.	2019-09-28 00:57:08
49.206.196.229	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:10:32.	2019-09-28 00:51:13
83.240.250.147	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:10:41.	2019-09-28 00:33:35
49.207.110.253	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:10:33.	2019-09-28 00:50:26
96.44.186.54	attack	Sep 27 14:52:03 xeon cyrus/imap[43893]: badlogin: 96.44.186.54.static.quadranet.com [96.44.186.54] plain [SASL(-13): authentication failure: Password verification failed]	2019-09-28 00:10:40
82.207.74.22	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:10:39.	2019-09-28 00:37:34

Recently Reported IPs

112.93.40.155	125.125.210.100	190.79.236.181	193.56.28.152
151.45.64.230	204.12.192.85	94.12.87.10	95.167.68.202
31.171.0.251	176.8.251.103	115.72.130.235	218.56.164.57
62.183.66.198	161.78.107.35	116.108.109.194	234.165.211.118
227.243.248.25	180.243.86.40	253.65.8.10	15.69.51.40