122.252.239.166

Basic Info

City: Khergam

Region: Gujarat

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:46:52
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:46:32
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:46:24
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:45:55
122.252.239.5	attack	Repeated brute force against a port	2020-10-10 04:24:18
122.252.239.5	attackbots	2020-10-09T15:00:24.888338paragon sshd[791574]: Failed password for invalid user rpm from 122.252.239.5 port 45906 ssh2 2020-10-09T15:04:44.725484paragon sshd[791650]: Invalid user ghost4 from 122.252.239.5 port 50138 2020-10-09T15:04:44.729385paragon sshd[791650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 2020-10-09T15:04:44.725484paragon sshd[791650]: Invalid user ghost4 from 122.252.239.5 port 50138 2020-10-09T15:04:46.438154paragon sshd[791650]: Failed password for invalid user ghost4 from 122.252.239.5 port 50138 ssh2 ...	2020-10-09 20:22:07
122.252.239.5	attackbotsspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-10-09 12:09:40
122.252.239.5	attackbots	$f2bV_matches	2020-09-23 20:59:40
122.252.239.5	attackspambots	Sep 22 22:25:39 * sshd[12526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 Sep 22 22:25:42 * sshd[12526]: Failed password for invalid user frappe from 122.252.239.5 port 44364 ssh2	2020-09-23 05:07:39
122.252.239.5	attackspam	Aug 30 16:00:21 electroncash sshd[33527]: Failed password for invalid user zyc from 122.252.239.5 port 40904 ssh2 Aug 30 16:05:17 electroncash sshd[36095]: Invalid user cop from 122.252.239.5 port 45210 Aug 30 16:05:17 electroncash sshd[36095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 Aug 30 16:05:17 electroncash sshd[36095]: Invalid user cop from 122.252.239.5 port 45210 Aug 30 16:05:18 electroncash sshd[36095]: Failed password for invalid user cop from 122.252.239.5 port 45210 ssh2 ...	2020-08-31 01:22:00
122.252.239.5	attack	Aug 24 16:17:50 sachi sshd\[16491\]: Failed password for invalid user yanglin from 122.252.239.5 port 42834 ssh2 Aug 24 16:20:43 sachi sshd\[18263\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 user=root Aug 24 16:20:44 sachi sshd\[18263\]: Failed password for root from 122.252.239.5 port 48178 ssh2 Aug 24 16:23:43 sachi sshd\[20092\]: Invalid user zyy from 122.252.239.5 Aug 24 16:23:43 sachi sshd\[20092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5	2020-08-25 14:04:33
122.252.239.5	attackbotsspam	Aug 22 18:06:42 l02a sshd[936]: Invalid user swapnil from 122.252.239.5 Aug 22 18:06:42 l02a sshd[936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 Aug 22 18:06:42 l02a sshd[936]: Invalid user swapnil from 122.252.239.5 Aug 22 18:06:44 l02a sshd[936]: Failed password for invalid user swapnil from 122.252.239.5 port 38060 ssh2	2020-08-23 03:52:09
122.252.239.5	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-17 01:22:08
122.252.239.5	attackbotsspam	Aug 10 21:30:33 gospond sshd[21095]: Failed password for root from 122.252.239.5 port 51554 ssh2 Aug 10 21:30:32 gospond sshd[21095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 user=root Aug 10 21:30:33 gospond sshd[21095]: Failed password for root from 122.252.239.5 port 51554 ssh2 ...	2020-08-11 05:59:59
122.252.239.5	attackspambots	DATE:2020-08-09 21:49:27,IP:122.252.239.5,MATCHES:10,PORT:ssh	2020-08-10 03:58:53

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.252.239.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34835
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.252.239.166.		IN	A

;; AUTHORITY SECTION:
.			206	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020122600 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 26 18:50:01 CST 2020
;; MSG SIZE  rcvd: 119

Host info

166.239.252.122.in-addr.arpa domain name pointer ws166-239-252-122.rcil.gov.in.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.239.252.122.in-addr.arpa	name = ws166-239-252-122.rcil.gov.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
1.32.249.100	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2019-06-30 01:15:45
51.254.164.230	attackspambots	Jun 29 18:46:52 SilenceServices sshd[1360]: Failed password for root from 51.254.164.230 port 52582 ssh2 Jun 29 18:47:40 SilenceServices sshd[1798]: Failed password for root from 51.254.164.230 port 51236 ssh2	2019-06-30 00:53:00
58.65.128.197	attackbotsspam	Unauthorised access (Jun 29) SRC=58.65.128.197 LEN=40 TTL=238 ID=25721 TCP DPT=445 WINDOW=1024 SYN	2019-06-30 00:51:07
189.103.79.87	attackbots	Jun 24 15:51:15 em3 sshd[9571]: Invalid user node from 189.103.79.87 Jun 24 15:51:15 em3 sshd[9571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.103.79.87 Jun 24 15:51:17 em3 sshd[9571]: Failed password for invalid user node from 189.103.79.87 port 35364 ssh2 Jun 24 15:54:07 em3 sshd[9624]: Invalid user ftpuser from 189.103.79.87 Jun 24 15:54:07 em3 sshd[9624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.103.79.87 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=189.103.79.87	2019-06-30 00:47:47
177.10.100.115	attackbots	Automatic report - Web App Attack	2019-06-30 01:06:39
92.253.76.107	attackbots	TCP port 23 (Telnet) attempt blocked by firewall. [2019-06-29 10:24:47]	2019-06-30 01:36:42
149.202.204.141	attackbots	Jun 29 15:10:24 amit sshd\[16334\]: Invalid user QCC from 149.202.204.141 Jun 29 15:10:24 amit sshd\[16334\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.204.141 Jun 29 15:10:26 amit sshd\[16334\]: Failed password for invalid user QCC from 149.202.204.141 port 57954 ssh2 ...	2019-06-30 00:50:36
112.85.42.187	attack	Jun 29 14:05:41 vmi181237 sshd\[25915\]: refused connect from 112.85.42.187 $112.85.42.187$ Jun 29 14:07:06 vmi181237 sshd\[25928\]: refused connect from 112.85.42.187 $112.85.42.187$ Jun 29 14:10:11 vmi181237 sshd\[26015\]: refused connect from 112.85.42.187 $112.85.42.187$ Jun 29 14:11:44 vmi181237 sshd\[26036\]: refused connect from 112.85.42.187 $112.85.42.187$ Jun 29 14:13:27 vmi181237 sshd\[26052\]: refused connect from 112.85.42.187 $112.85.42.187$	2019-06-30 01:02:59
115.59.242.217	attack	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-06-30 01:22:55
95.85.62.139	attackspam	detected by Fail2Ban	2019-06-30 01:21:35
114.130.55.166	attackbotsspam	Jun 29 15:15:36 XXX sshd[62079]: Invalid user qhsupport from 114.130.55.166 port 54712	2019-06-30 01:06:05
119.118.102.56	attackbotsspam	Unauthorised access (Jun 29) SRC=119.118.102.56 LEN=40 TTL=49 ID=26275 TCP DPT=23 WINDOW=19009 SYN	2019-06-30 01:09:56
61.158.140.152	attackspambots	$f2bV_matches	2019-06-30 00:46:16
87.27.223.155	attackbots	Jun 28 03:32:12 mail sshd[7413]: Invalid user ug from 87.27.223.155 Jun 28 03:32:12 mail sshd[7413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.27.223.155 Jun 28 03:32:12 mail sshd[7413]: Invalid user ug from 87.27.223.155 Jun 28 03:32:14 mail sshd[7413]: Failed password for invalid user ug from 87.27.223.155 port 55129 ssh2 Jun 28 03:34:49 mail sshd[11274]: Invalid user nh from 87.27.223.155 ...	2019-06-30 01:37:17
5.148.3.212	attack	Jun 29 16:29:19 MainVPS sshd[3874]: Invalid user ryan from 5.148.3.212 port 47171 Jun 29 16:29:19 MainVPS sshd[3874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 Jun 29 16:29:19 MainVPS sshd[3874]: Invalid user ryan from 5.148.3.212 port 47171 Jun 29 16:29:20 MainVPS sshd[3874]: Failed password for invalid user ryan from 5.148.3.212 port 47171 ssh2 Jun 29 16:32:27 MainVPS sshd[4083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 user=news Jun 29 16:32:29 MainVPS sshd[4083]: Failed password for news from 5.148.3.212 port 36766 ssh2 ...	2019-06-30 01:04:02

Recently Reported IPs

97.119.173.172	185.228.133.205	197.235.205.151	218.155.106.91
134.209.123.146	125.66.140.201	218.2.211.212	101.243.156.86
139.180.135.89	83.6.195.200	37.47.47.44	183.161.227.71
91.13.208.226	113.185.70.129	103.73.100.138	172.104.33.102
185.63.153.228	31.185.10.223	111.90.50.75	41.157.14.211