222.89.85.68 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
222.89.85.45	attack	Unauthorized connection attempt from IP address 222.89.85.45 on Port 445(SMB)	2019-06-26 17:23:17

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '222.88.0.0 - 222.89.255.255'

% Abuse contact for '222.88.0.0 - 222.89.255.255' is 'anti-spam@chinatelecom.cn'

inetnum:        222.88.0.0 - 222.89.255.255
netname:        CHINANET-HA
descr:          CHINANET henan province network
descr:          China Telecom
descr:          No.31,jingrong street
descr:          Beijing 100032
country:        CN
admin-c:        HZ149-AP
tech-c:         CH93-AP
abuse-c:        AC1573-AP
status:         ALLOCATED PORTABLE
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CHINANET-HA
mnt-routes:     MAINT-CHINANET-HA
mnt-irt:        IRT-CHINANET-CN
last-modified:  2021-06-15T08:04:49Z
source:         APNIC

irt:            IRT-CHINANET-CN
address:        No.31 ,jingrong street,beijing
address:        100032
e-mail:         anti-spam@chinatelecom.cn
abuse-mailbox:  anti-spam@chinatelecom.cn
admin-c:        CH93-AP
tech-c:         CH93-AP
auth:           # Filtered
remarks:        anti-spam@chinatelecom.cn was validated on 2025-11-13
mnt-by:         MAINT-CHINANET
last-modified:  2026-03-13T07:12:20Z
source:         APNIC

role:           ABUSE CHINANETCN
country:        ZZ
address:        No.31 ,jingrong street,beijing
address:        100032
phone:          +000000000
e-mail:         anti-spam@chinatelecom.cn
admin-c:        CH93-AP
tech-c:         CH93-AP
nic-hdl:        AC1573-AP
remarks:        Generated from irt object IRT-CHINANET-CN
remarks:        anti-spam@chinatelecom.cn was validated on 2025-11-13
abuse-mailbox:  anti-spam@chinatelecom.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-11-13T14:15:15Z
source:         APNIC

person:         Chinanet Hostmaster
nic-hdl:        CH93-AP
e-mail:         anti-spam@chinatelecom.cn
address:        No.31 ,jingrong street,beijing
address:        100032
phone:          +86-10-58501724
fax-no:         +86-10-58501724
country:        CN
mnt-by:         MAINT-CHINANET
last-modified:  2022-02-28T06:53:44Z
source:         APNIC

person:         Hongbiao Zhang
nic-hdl:        HZ149-AP
e-mail:         ip@hntele.com
address:        97# Zhongyuan Street, Zhengzhou City, China
phone:          +86 371 65310018
fax-no:         +86 371 65310015
country:        CN
mnt-by:         MAINT-CHINANET-HA
last-modified:  2008-09-04T07:29:40Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.89.85.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65386
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;222.89.85.68.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026041301 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 14 10:48:33 CST 2026
;; MSG SIZE  rcvd: 105

Host info

Host 68.85.89.222.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.85.89.222.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.22.45.48	attackspambots	2019-11-13T01:20:20.940193+01:00 lumpi kernel: [3426797.310229] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.48 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=50219 PROTO=TCP SPT=40318 DPT=3345 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-13 08:22:13
83.97.20.179	attack	11/13/2019-01:08:35.555566 83.97.20.179 Protocol: 17 ET DROP Dshield Block Listed Source group 1	2019-11-13 08:30:23
163.172.36.72	attackspam	Nov 13 01:04:02 vmanager6029 sshd\[32163\]: Invalid user tomcat from 163.172.36.72 port 45022 Nov 13 01:04:02 vmanager6029 sshd\[32163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.36.72 Nov 13 01:04:05 vmanager6029 sshd\[32163\]: Failed password for invalid user tomcat from 163.172.36.72 port 45022 ssh2	2019-11-13 08:55:22
5.202.77.53	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-11-13 08:22:35
171.237.165.109	attackbots	f2b trigger Multiple SASL failures	2019-11-13 08:27:08
185.175.93.22	attack	185.175.93.22 was recorded 5 times by 3 hosts attempting to connect to the following ports: 3449,3559,3669. Incident counter (4h, 24h, all-time): 5, 23, 302	2019-11-13 08:23:31
14.248.64.254	attackbotsspam	Nov 12 22:33:47 *** sshd[23296]: Did not receive identification string from 14.248.64.254	2019-11-13 08:43:23
207.6.1.11	attackspambots	Nov 12 14:12:42 php1 sshd\[23775\]: Invalid user coord from 207.6.1.11 Nov 12 14:12:42 php1 sshd\[23775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.6.1.11 Nov 12 14:12:44 php1 sshd\[23775\]: Failed password for invalid user coord from 207.6.1.11 port 40167 ssh2 Nov 12 14:16:04 php1 sshd\[24082\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.6.1.11 user=root Nov 12 14:16:06 php1 sshd\[24082\]: Failed password for root from 207.6.1.11 port 58392 ssh2	2019-11-13 08:40:39
222.141.89.160	attackspam	Telnet/23 MH Probe, BF, Hack -	2019-11-13 08:59:37
201.55.199.143	attackbotsspam	Nov 12 12:50:24 hpm sshd\[30056\]: Invalid user hlobil from 201.55.199.143 Nov 12 12:50:24 hpm sshd\[30056\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.55.199.143 Nov 12 12:50:26 hpm sshd\[30056\]: Failed password for invalid user hlobil from 201.55.199.143 port 52662 ssh2 Nov 12 12:58:49 hpm sshd\[30749\]: Invalid user pressley from 201.55.199.143 Nov 12 12:58:49 hpm sshd\[30749\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.55.199.143	2019-11-13 08:54:21
185.176.27.178	attack	Nov 13 01:17:24 mc1 kernel: \[4890521.555943\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=41334 PROTO=TCP SPT=52776 DPT=11918 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 13 01:19:01 mc1 kernel: \[4890618.170617\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=27886 PROTO=TCP SPT=52776 DPT=52349 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 13 01:19:43 mc1 kernel: \[4890660.681793\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=53220 PROTO=TCP SPT=52776 DPT=53910 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-13 08:26:40
185.117.118.187	attackbots	\[2019-11-12 19:14:58\] NOTICE\[2601\] chan_sip.c: Registration from '\' failed for '185.117.118.187:49195' - Wrong password \[2019-11-12 19:14:58\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-12T19:14:58.355-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="38098",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.117.118.187/49195",Challenge="66356612",ReceivedChallenge="66356612",ReceivedHash="10493ab2d975f349845e8ec351f9f08e" \[2019-11-12 19:16:35\] NOTICE\[2601\] chan_sip.c: Registration from '\' failed for '185.117.118.187:50404' - Wrong password \[2019-11-12 19:16:35\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-12T19:16:35.154-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="30619",SessionID="0x7fdf2c797b18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP	2019-11-13 08:29:39
222.186.180.147	attackspam	[ssh] SSH attack	2019-11-13 08:32:27
118.89.191.145	attackspambots	Nov 12 23:29:16 meumeu sshd[14428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.191.145 Nov 12 23:29:19 meumeu sshd[14428]: Failed password for invalid user sondra from 118.89.191.145 port 46640 ssh2 Nov 12 23:33:26 meumeu sshd[15399]: Failed password for backup from 118.89.191.145 port 54298 ssh2 ...	2019-11-13 08:52:26
89.34.27.22	attackbots	Nov 12 21:20:26 XXX sshd[46990]: Invalid user ubnt from 89.34.27.22 port 34664	2019-11-13 08:44:26

Recently Reported IPs

182.237.78.54	2606:4700:10::ac43:2074	2606:4700:10::6814:5331	2606:4700:10::6816:3269
60.211.203.6	60.211.251.226	155.229.50.163	212.47.78.118
122.193.247.93	2606:4700:10::6816:2424	2606:4700:10::6814:5438	2606:4700:10::6814:7387
2606:4700:10::6814:8638	2606:4700:10::6814:8504	2606:4700:10::6814:5728	2606:4700:10::6816:4884
2606:4700:10::6814:5396	108.162.198.37	51.223.8.96	2606:4700:10::6814:7003