122.199.152.114

Basic Info

City: unknown

Region: unknown

Country: South Korea

Internet Service Provider: NexG Co. Ltd

Hostname: unknown

Organization: NexG Co., LTD

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	(sshd) Failed SSH login from 122.199.152.114 (KR/South Korea/static.122-199-152-114.nexg.net): 5 in the last 3600 secs	2020-05-27 18:55:44
attackbots	May 21 22:58:49 abendstille sshd\[1413\]: Invalid user zhangchunxu2 from 122.199.152.114 May 21 22:58:49 abendstille sshd\[1413\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 May 21 22:58:52 abendstille sshd\[1413\]: Failed password for invalid user zhangchunxu2 from 122.199.152.114 port 62888 ssh2 May 21 23:02:45 abendstille sshd\[4933\]: Invalid user htjcadd from 122.199.152.114 May 21 23:02:45 abendstille sshd\[4933\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 ...	2020-05-22 05:13:45
attackspam	Mar 13 08:07:58 haigwepa sshd[19376]: Failed password for root from 122.199.152.114 port 37970 ssh2 ...	2020-03-13 15:23:46
attackspambots	Feb 25 14:07:49 hpm sshd\[17300\]: Invalid user Ronald from 122.199.152.114 Feb 25 14:07:49 hpm sshd\[17300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Feb 25 14:07:51 hpm sshd\[17300\]: Failed password for invalid user Ronald from 122.199.152.114 port 31336 ssh2 Feb 25 14:17:41 hpm sshd\[18042\]: Invalid user support from 122.199.152.114 Feb 25 14:17:41 hpm sshd\[18042\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114	2020-02-26 08:37:25
attackspambots	ssh brute force	2020-02-25 13:46:49
attackspam	Feb 18 18:46:16 MK-Soft-VM4 sshd[23815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Feb 18 18:46:18 MK-Soft-VM4 sshd[23815]: Failed password for invalid user o2 from 122.199.152.114 port 35079 ssh2 ...	2020-02-19 04:33:38
attack	Port scan on 1 port(s): 22	2020-02-17 18:46:55
attackbotsspam	Feb 14 14:50:57 cp sshd[12791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114	2020-02-14 23:16:43
attackbots	Feb 11 14:29:08 web1 sshd\[14468\]: Invalid user eds from 122.199.152.114 Feb 11 14:29:08 web1 sshd\[14468\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Feb 11 14:29:10 web1 sshd\[14468\]: Failed password for invalid user eds from 122.199.152.114 port 48447 ssh2 Feb 11 14:34:13 web1 sshd\[14930\]: Invalid user hpsmh from 122.199.152.114 Feb 11 14:34:13 web1 sshd\[14930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114	2020-02-12 08:50:48
attackspam	Automatic report - Banned IP Access	2019-12-26 22:44:00
attack	SSH Brute Force	2019-12-22 21:08:31
attack	Dec 21 17:32:28 hcbbdb sshd\[388\]: Invalid user gitolite2 from 122.199.152.114 Dec 21 17:32:28 hcbbdb sshd\[388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Dec 21 17:32:30 hcbbdb sshd\[388\]: Failed password for invalid user gitolite2 from 122.199.152.114 port 34343 ssh2 Dec 21 17:39:35 hcbbdb sshd\[1231\]: Invalid user murgallis from 122.199.152.114 Dec 21 17:39:35 hcbbdb sshd\[1231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114	2019-12-22 01:58:11
attack	IP blocked	2019-12-01 23:00:23
attack	Automatic report - Banned IP Access	2019-11-11 15:13:33
attack	2019-11-08T17:21:09.886802abusebot-4.cloudsearch.cf sshd\[7266\]: Invalid user hitler from 122.199.152.114 port 23941	2019-11-09 01:39:00
attackspambots	$f2bV_matches	2019-11-04 21:15:08
attackbotsspam	Oct 29 13:46:34 localhost sshd\[5457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 user=root Oct 29 13:46:37 localhost sshd\[5457\]: Failed password for root from 122.199.152.114 port 22248 ssh2 Oct 29 13:51:03 localhost sshd\[5719\]: Invalid user trendimsa1.0 from 122.199.152.114 Oct 29 13:51:03 localhost sshd\[5719\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Oct 29 13:51:05 localhost sshd\[5719\]: Failed password for invalid user trendimsa1.0 from 122.199.152.114 port 40978 ssh2 ...	2019-10-29 22:55:21
attackbots	2019-10-27T08:36:13.662496abusebot-2.cloudsearch.cf sshd\[26238\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 user=root	2019-10-27 16:36:43
attackspam	$f2bV_matches	2019-10-21 04:29:31
attackbotsspam	Invalid user helio from 122.199.152.114 port 22080	2019-10-20 13:51:39
attack	Oct 14 06:53:21 MK-Soft-VM4 sshd[13787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Oct 14 06:53:22 MK-Soft-VM4 sshd[13787]: Failed password for invalid user Cookie@123 from 122.199.152.114 port 49245 ssh2 ...	2019-10-14 15:54:30
attack	$f2bV_matches	2019-10-08 02:08:58
attackbotsspam	2019-10-06T08:26:12.712356tmaserv sshd\[27482\]: Failed password for invalid user 2019@Admin from 122.199.152.114 port 11379 ssh2 2019-10-06T08:43:23.403804tmaserv sshd\[28196\]: Invalid user 321Ewq from 122.199.152.114 port 31634 2019-10-06T08:43:23.409622tmaserv sshd\[28196\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 2019-10-06T08:43:25.095965tmaserv sshd\[28196\]: Failed password for invalid user 321Ewq from 122.199.152.114 port 31634 ssh2 2019-10-06T08:47:39.324985tmaserv sshd\[28383\]: Invalid user Pierre2016 from 122.199.152.114 port 50820 2019-10-06T08:47:39.327809tmaserv sshd\[28383\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 ...	2019-10-06 19:19:50
attack	$f2bV_matches	2019-09-29 12:50:50
attackspam	Sep 22 17:46:55 meumeu sshd[8316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Sep 22 17:46:57 meumeu sshd[8316]: Failed password for invalid user yarosh from 122.199.152.114 port 15575 ssh2 Sep 22 17:51:38 meumeu sshd[8973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 ...	2019-09-23 00:00:18
attack	Sep 19 16:12:28 lcprod sshd\[15996\]: Invalid user distcache from 122.199.152.114 Sep 19 16:12:28 lcprod sshd\[15996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Sep 19 16:12:30 lcprod sshd\[15996\]: Failed password for invalid user distcache from 122.199.152.114 port 51144 ssh2 Sep 19 16:17:01 lcprod sshd\[16384\]: Invalid user polycom from 122.199.152.114 Sep 19 16:17:01 lcprod sshd\[16384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114	2019-09-20 10:30:32
attack	Sep 16 10:41:15 web8 sshd\[17736\]: Invalid user ftpuser1 from 122.199.152.114 Sep 16 10:41:15 web8 sshd\[17736\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Sep 16 10:41:16 web8 sshd\[17736\]: Failed password for invalid user ftpuser1 from 122.199.152.114 port 9408 ssh2 Sep 16 10:45:45 web8 sshd\[19932\]: Invalid user chase from 122.199.152.114 Sep 16 10:45:45 web8 sshd\[19932\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114	2019-09-17 01:14:37
attack	$f2bV_matches	2019-09-12 07:51:38
attackspambots	Sep 6 16:30:13 hpm sshd\[5694\]: Invalid user teste from 122.199.152.114 Sep 6 16:30:13 hpm sshd\[5694\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Sep 6 16:30:15 hpm sshd\[5694\]: Failed password for invalid user teste from 122.199.152.114 port 11917 ssh2 Sep 6 16:35:11 hpm sshd\[6092\]: Invalid user ts3 from 122.199.152.114 Sep 6 16:35:11 hpm sshd\[6092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114	2019-09-07 11:14:31
attackspam	Sep 5 12:38:28 eddieflores sshd\[30296\]: Invalid user alex from 122.199.152.114 Sep 5 12:38:28 eddieflores sshd\[30296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114 Sep 5 12:38:30 eddieflores sshd\[30296\]: Failed password for invalid user alex from 122.199.152.114 port 50573 ssh2 Sep 5 12:42:59 eddieflores sshd\[30912\]: Invalid user guest1 from 122.199.152.114 Sep 5 12:42:59 eddieflores sshd\[30912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.114	2019-09-06 09:40:34

Comments on same subnet:

IP	Type	Details	Datetime
122.199.152.61	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-24T06:07:15Z and 2020-09-24T06:15:43Z	2020-09-24 20:55:13
122.199.152.61	attackbotsspam	s2.hscode.pl - SSH Attack	2020-09-24 12:51:30
122.199.152.61	attack	21 attempts against mh-ssh on river	2020-09-24 04:20:11
122.199.152.157	attack	SSH Brute-Forcing (server2)	2019-12-14 04:55:23
122.199.152.157	attackbotsspam	Dec 12 08:41:10 ns381471 sshd[21560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 Dec 12 08:41:13 ns381471 sshd[21560]: Failed password for invalid user emowilliams from 122.199.152.157 port 63116 ssh2	2019-12-12 16:00:47
122.199.152.157	attackspambots	Dec 11 10:11:07 plusreed sshd[24608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 user=root Dec 11 10:11:09 plusreed sshd[24608]: Failed password for root from 122.199.152.157 port 59294 ssh2 ...	2019-12-11 23:23:16
122.199.152.157	attackbots	Dec 8 19:12:53 plusreed sshd[29468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 user=root Dec 8 19:12:55 plusreed sshd[29468]: Failed password for root from 122.199.152.157 port 39235 ssh2 ...	2019-12-09 08:18:55
122.199.152.157	attackspambots	Dec 8 21:07:05 dev0-dcde-rnet sshd[5397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 Dec 8 21:07:08 dev0-dcde-rnet sshd[5397]: Failed password for invalid user admin from 122.199.152.157 port 36520 ssh2 Dec 8 21:16:04 dev0-dcde-rnet sshd[5514]: Failed password for root from 122.199.152.157 port 56115 ssh2	2019-12-09 04:26:16
122.199.152.157	attackspam	Dec 7 05:00:40 sachi sshd\[26523\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 user=root Dec 7 05:00:41 sachi sshd\[26523\]: Failed password for root from 122.199.152.157 port 48048 ssh2 Dec 7 05:08:46 sachi sshd\[27301\]: Invalid user apache from 122.199.152.157 Dec 7 05:08:46 sachi sshd\[27301\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 Dec 7 05:08:48 sachi sshd\[27301\]: Failed password for invalid user apache from 122.199.152.157 port 26913 ssh2	2019-12-07 23:11:05
122.199.152.157	attack	Dec 7 09:03:46 zeus sshd[21622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 Dec 7 09:03:48 zeus sshd[21622]: Failed password for invalid user silence from 122.199.152.157 port 14222 ssh2 Dec 7 09:10:08 zeus sshd[21874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 Dec 7 09:10:10 zeus sshd[21874]: Failed password for invalid user tullius from 122.199.152.157 port 22593 ssh2	2019-12-07 17:26:23
122.199.152.157	attack	Triggered by Fail2Ban at Vostok web server	2019-12-06 15:42:32
122.199.152.157	attackbots	$f2bV_matches	2019-12-05 22:23:22
122.199.152.157	attackbots	Dec 2 07:30:19 vmanager6029 sshd\[14318\]: Invalid user szoke from 122.199.152.157 port 14247 Dec 2 07:30:19 vmanager6029 sshd\[14318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 Dec 2 07:30:21 vmanager6029 sshd\[14318\]: Failed password for invalid user szoke from 122.199.152.157 port 14247 ssh2	2019-12-02 15:13:23
122.199.152.157	attackbotsspam	Nov 29 22:50:04 web9 sshd\[16950\]: Invalid user otsuki from 122.199.152.157 Nov 29 22:50:04 web9 sshd\[16950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 Nov 29 22:50:05 web9 sshd\[16950\]: Failed password for invalid user otsuki from 122.199.152.157 port 27881 ssh2 Nov 29 22:53:35 web9 sshd\[17444\]: Invalid user olivia from 122.199.152.157 Nov 29 22:53:35 web9 sshd\[17444\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157	2019-11-30 18:18:33
122.199.152.157	attackspambots	Automatic report - Banned IP Access	2019-11-24 03:08:42

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.199.152.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14021
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.199.152.114.		IN	A

;; AUTHORITY SECTION:
.			3395	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019033000 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Mar 30 22:32:34 +08 2019
;; MSG SIZE  rcvd: 119

Host info

114.152.199.122.in-addr.arpa domain name pointer static.122-199-152-114.nexg.net.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
114.152.199.122.in-addr.arpa	name = static.122-199-152-114.nexg.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.26.120.142	attackspam	Jan 19 06:05:24 lnxweb62 sshd[1073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.120.142	2020-01-19 13:11:55
106.13.45.131	attackspam	Unauthorized connection attempt detected from IP address 106.13.45.131 to port 2220 [J]	2020-01-19 08:50:55
49.88.112.55	attack	Jan 19 05:59:01 h2779839 sshd[18380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.55 user=root Jan 19 05:59:03 h2779839 sshd[18380]: Failed password for root from 49.88.112.55 port 19983 ssh2 Jan 19 05:59:16 h2779839 sshd[18380]: error: maximum authentication attempts exceeded for root from 49.88.112.55 port 19983 ssh2 [preauth] Jan 19 05:59:01 h2779839 sshd[18380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.55 user=root Jan 19 05:59:03 h2779839 sshd[18380]: Failed password for root from 49.88.112.55 port 19983 ssh2 Jan 19 05:59:16 h2779839 sshd[18380]: error: maximum authentication attempts exceeded for root from 49.88.112.55 port 19983 ssh2 [preauth] Jan 19 05:59:23 h2779839 sshd[18383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.55 user=root Jan 19 05:59:24 h2779839 sshd[18383]: Failed password for root from 49.88.112. ...	2020-01-19 13:04:42
190.94.136.32	attackbots	Unauthorized connection attempt detected from IP address 190.94.136.32 to port 2004 [J]	2020-01-19 09:04:30
189.142.72.81	attackspambots	Unauthorized connection attempt detected from IP address 189.142.72.81 to port 23 [J]	2020-01-19 09:04:42
51.79.62.45	attack	Unauthorized connection attempt detected from IP address 51.79.62.45 to port 1433 [J]	2020-01-19 08:57:06
185.234.219.105	attackbotsspam	Jan 19 04:58:52 l02a postfix/smtpd[30094]: lost connection after AUTH from unknown[185.234.219.105] Jan 19 04:58:52 l02a postfix/smtpd[30094]: lost connection after AUTH from unknown[185.234.219.105] Jan 19 04:58:52 l02a postfix/smtpd[30094]: lost connection after AUTH from unknown[185.234.219.105] Jan 19 04:58:52 l02a postfix/smtpd[30094]: lost connection after AUTH from unknown[185.234.219.105] Jan 19 04:58:52 l02a postfix/smtpd[30094]: lost connection after AUTH from unknown[185.234.219.105] Jan 19 04:58:53 l02a postfix/smtpd[30094]: lost connection after AUTH from unknown[185.234.219.105] Jan 19 04:58:53 l02a postfix/smtpd[30094]: lost connection after AUTH from unknown[185.234.219.105] Jan 19 04:58:53 l02a postfix/smtpd[30094]: lost connection after AUTH from unknown[185.234.219.105] Jan 19 04:58:53 l02a postfix/smtpd[30094]: lost connection after AUTH from unknown[185.234.219.105] Jan 19 04:58:53 l02a postfix/smtpd[30094]: lost connection after AUTH from unknown[185.234.219.105]	2020-01-19 13:06:07
190.98.96.210	attackbots	Unauthorized connection attempt detected from IP address 190.98.96.210 to port 4567 [J]	2020-01-19 08:42:06
52.166.239.180	attackspam	Unauthorized connection attempt detected from IP address 52.166.239.180 to port 2220 [J]	2020-01-19 08:55:38
41.80.35.20	attackbots	Unauthorized connection attempt detected from IP address 41.80.35.20 to port 2220 [J]	2020-01-19 08:58:38
100.36.130.197	attack	Unauthorized connection attempt detected from IP address 100.36.130.197 to port 2220 [J]	2020-01-19 08:51:57
178.62.118.53	attack	Unauthorized connection attempt detected from IP address 178.62.118.53 to port 2220 [J]	2020-01-19 08:45:29
177.136.66.22	attackspambots	Unauthorized connection attempt detected from IP address 177.136.66.22 to port 81 [J]	2020-01-19 08:45:48
117.114.161.11	attackbots	Unauthorized connection attempt detected from IP address 117.114.161.11 to port 1433 [J]	2020-01-19 08:50:30
182.61.182.50	attackspam	Unauthorized connection attempt detected from IP address 182.61.182.50 to port 2220 [J]	2020-01-19 09:05:47

Recently Reported IPs

54.38.4.192	86.34.201.1	103.5.16.231	159.89.194.103
188.131.134.157	96.85.229.50	185.56.97.204	3.90.164.96
198.108.67.103	91.191.158.181	162.243.144.89	78.108.177.54
5.39.77.117	45.33.69.103	151.27.40.163	111.230.227.17
187.28.50.230	189.100.156.207	176.118.29.224	121.122.109.141