222.211.72.57 Threat Intelligence and Host Information

Sep 02, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 222.211.72.57 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • Country: China
  • Network:
  • Noticed: times
  • Protocols Attacked: mssql
  • Passive DNS Results: www.i2t.cn i2t.cn vip.ymcx.shop jifei.ymcx.shop v.ymcx.shop www.cloudhai.cn cloudhai.cn dm.ymcx.shop jx.ymcx.shop

Malware Detected on Host

Count: 9 a7b2ef7413d7da6859f5593075b0b5cbf55c239077c4dd1327b4f307d7f3f4b5 9d8f3343e90f0f0a9e8625d0eb0aff6ffbb999a0eaaafafe041a6dc3f47fce69 f84dbcf4e8c783b8f7f907af08f7b1e20e84ff575ae41a9216c0495fef03eb0a ae3a221b015d95eb16aca3aaa3ba54865bf176f7cf0f5e179903ac8cbba7e348 0af3f5b781febe27311f84457e35dec0eaffeba929558263bff312942a94296d ab8ce0a3f681f09f71fc97889135de136c81f3d984db3ee41716f4b134ddc648 84e6c9280dce64631193f2949c06fa525ca651c61c6e4b4f72c28cbe108ad362 894038058f885aefdca80f02a9e14f9e38c81e1460ceff9c8f26a6c2b7656e38 44a61652865049a7e24c846ca146e7770938ac93d3ce5dd8063374e29686567c

Map

Whois Information

  • inetnum: 222.208.0.0 - 222.215.255.255
  • netname: CHINANET-SC
  • descr: CHINANET Sichuan province network
  • descr: China Telecom
  • descr: A12,Xin-Jie-Kou-Wai Street
  • descr: Beijing 100088
  • country: CN
  • admin-c: CH93-AP
  • tech-c: CS408-AP
  • abuse-c: AC1573-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-CHINANET-SC
  • mnt-routes: MAINT-CHINANET-SC
  • mnt-irt: IRT-CHINANET-CN
  • last-modified: 2021-06-15T08:06:39Z
  • irt: IRT-CHINANET-CN
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • e-mail: anti-spam@chinatelecom.cn
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • mnt-by: MAINT-CHINANET
  • last-modified: 2025-04-24T03:21:26Z
  • role: ABUSE CHINANETCN
  • country: ZZ
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • phone: +000000000
  • e-mail: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • nic-hdl: AC1573-AP
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-04-24T03:21:54Z
  • role: CHINANET SICHUAN
  • address: No.72,Wen Miao Qian Str Chengdu SiChuan PR China
  • country: CN
  • phone: +86-28-86190657
  • fax-no: +86-25-86190641
  • e-mail: scipadmin2013@189.cn
  • admin-c: YZ43-AP
  • tech-c: RL357-AP
  • tech-c: XS16-AP
  • nic-hdl: CS408-AP
  • notify: scipadmin2013@189.cn
  • mnt-by: MAINT-CHINANET-SC
  • last-modified: 2013-12-26T03:05:02Z
  • person: Chinanet Hostmaster
  • nic-hdl: CH93-AP
  • e-mail: anti-spam@chinatelecom.cn
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • phone: +86-10-58501724
  • fax-no: +86-10-58501724
  • country: CN
  • mnt-by: MAINT-CHINANET
  • last-modified: 2022-02-28T06:53:44Z

Links to attack logs

dobengaluru-mssql-bruteforce-ip-list-2022-08-09 ****** dobengaluru-mssql-bruteforce-ip-list-2022-10-04 vultrwarsaw-mssql-bruteforce-ip-list-2022-10-05 nmap-scanning-list-2022-09-03 ****** vultrwarsaw-mssql-bruteforce-ip-list-2022-11-04 ******

Share on: