222.82.156.139

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Xinjiang Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	GPON Home Routers Remote Code Execution Vulnerability CVE 2018-10562, PTR: PTR record not found	2020-02-12 14:26:32

Comments on same subnet:

IP	Type	Details	Datetime
222.82.156.20	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-11-03 03:23:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.82.156.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21554
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.82.156.139.			IN	A

;; AUTHORITY SECTION:
.			429	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021200 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 14:26:29 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 139.156.82.222.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.156.82.222.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.42.137	attackspambots	Apr 2 19:30:54 debian64 sshd[23486]: Failed password for root from 222.186.42.137 port 43307 ssh2 Apr 2 19:30:57 debian64 sshd[23486]: Failed password for root from 222.186.42.137 port 43307 ssh2 ...	2020-04-03 01:44:16
49.72.210.105	attackspam	Apr 2 16:26:45 nextcloud sshd\[14679\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.210.105 user=root Apr 2 16:26:48 nextcloud sshd\[14679\]: Failed password for root from 49.72.210.105 port 45222 ssh2 Apr 2 16:31:22 nextcloud sshd\[22707\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.210.105 user=root	2020-04-03 01:18:19
113.141.70.199	attackbots	$f2bV_matches	2020-04-03 01:18:01
14.249.200.56	attackbotsspam	1585831446 - 04/02/2020 14:44:06 Host: 14.249.200.56/14.249.200.56 Port: 445 TCP Blocked	2020-04-03 01:54:47
187.58.65.21	attackspam	Apr 2 17:54:06 plex sshd[23553]: Failed password for root from 187.58.65.21 port 61119 ssh2 Apr 2 17:55:03 plex sshd[23580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.58.65.21 user=root Apr 2 17:55:05 plex sshd[23580]: Failed password for root from 187.58.65.21 port 16160 ssh2 Apr 2 17:55:03 plex sshd[23580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.58.65.21 user=root Apr 2 17:55:05 plex sshd[23580]: Failed password for root from 187.58.65.21 port 16160 ssh2	2020-04-03 01:44:38
140.143.127.179	attackbots	Apr 2 17:54:26 lukav-desktop sshd\[28075\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.179 user=root Apr 2 17:54:28 lukav-desktop sshd\[28075\]: Failed password for root from 140.143.127.179 port 48066 ssh2 Apr 2 18:00:41 lukav-desktop sshd\[28309\]: Invalid user sunbaochen from 140.143.127.179 Apr 2 18:00:41 lukav-desktop sshd\[28309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.179 Apr 2 18:00:43 lukav-desktop sshd\[28309\]: Failed password for invalid user sunbaochen from 140.143.127.179 port 48222 ssh2	2020-04-03 01:14:09
51.75.208.179	attackbotsspam	5x Failed Password	2020-04-03 01:39:29
37.59.98.64	attack	Apr 2 21:56:11 gw1 sshd[32284]: Failed password for root from 37.59.98.64 port 43892 ssh2 ...	2020-04-03 01:13:44
66.115.173.146	attack	66.115.173.146 was recorded 5 times by 2 hosts attempting to connect to the following ports: 6690,5160,6680. Incident counter (4h, 24h, all-time): 5, 8, 9	2020-04-03 01:16:26
192.95.6.110	attackspam	5x Failed Password	2020-04-03 01:19:38
123.19.175.131	attackbotsspam	20/4/2@08:45:04: FAIL: Alarm-Network address from=123.19.175.131 ...	2020-04-03 01:07:28
89.100.21.40	attack	fail2ban	2020-04-03 01:40:51
14.161.43.49	attackspambots	Automatic report - Port Scan Attack	2020-04-03 01:23:25
46.38.145.6	attack	Apr 2 19:30:39 v22019058497090703 postfix/smtpd[9999]: warning: unknown[46.38.145.6]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 2 19:31:56 v22019058497090703 postfix/smtpd[9999]: warning: unknown[46.38.145.6]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 2 19:33:10 v22019058497090703 postfix/smtpd[9999]: warning: unknown[46.38.145.6]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-03 01:36:01
118.89.219.116	attackbots	" "	2020-04-03 01:23:58

Recently Reported IPs

123.56.23.112	110.164.75.38	187.188.206.106	121.227.31.13
14.162.30.29	120.227.166.14	97.10.117.38	195.231.70.154
19.81.123.175	125.20.183.17	10.84.143.214	79.46.236.107
246.121.148.222	64.48.232.47	117.51.142.196	125.70.45.87
165.43.184.109	78.164.124.241	243.65.18.104	126.227.125.81