122.252.239.252

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:46:52
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:46:32
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:46:24
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:45:55
122.252.239.5	attack	Repeated brute force against a port	2020-10-10 04:24:18
122.252.239.5	attackbots	2020-10-09T15:00:24.888338paragon sshd[791574]: Failed password for invalid user rpm from 122.252.239.5 port 45906 ssh2 2020-10-09T15:04:44.725484paragon sshd[791650]: Invalid user ghost4 from 122.252.239.5 port 50138 2020-10-09T15:04:44.729385paragon sshd[791650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 2020-10-09T15:04:44.725484paragon sshd[791650]: Invalid user ghost4 from 122.252.239.5 port 50138 2020-10-09T15:04:46.438154paragon sshd[791650]: Failed password for invalid user ghost4 from 122.252.239.5 port 50138 ssh2 ...	2020-10-09 20:22:07
122.252.239.5	attackbotsspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-10-09 12:09:40
122.252.239.5	attackbots	$f2bV_matches	2020-09-23 20:59:40
122.252.239.5	attackspambots	Sep 22 22:25:39 * sshd[12526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 Sep 22 22:25:42 * sshd[12526]: Failed password for invalid user frappe from 122.252.239.5 port 44364 ssh2	2020-09-23 05:07:39
122.252.239.5	attackspam	Aug 30 16:00:21 electroncash sshd[33527]: Failed password for invalid user zyc from 122.252.239.5 port 40904 ssh2 Aug 30 16:05:17 electroncash sshd[36095]: Invalid user cop from 122.252.239.5 port 45210 Aug 30 16:05:17 electroncash sshd[36095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 Aug 30 16:05:17 electroncash sshd[36095]: Invalid user cop from 122.252.239.5 port 45210 Aug 30 16:05:18 electroncash sshd[36095]: Failed password for invalid user cop from 122.252.239.5 port 45210 ssh2 ...	2020-08-31 01:22:00
122.252.239.5	attack	Aug 24 16:17:50 sachi sshd\[16491\]: Failed password for invalid user yanglin from 122.252.239.5 port 42834 ssh2 Aug 24 16:20:43 sachi sshd\[18263\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 user=root Aug 24 16:20:44 sachi sshd\[18263\]: Failed password for root from 122.252.239.5 port 48178 ssh2 Aug 24 16:23:43 sachi sshd\[20092\]: Invalid user zyy from 122.252.239.5 Aug 24 16:23:43 sachi sshd\[20092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5	2020-08-25 14:04:33
122.252.239.5	attackbotsspam	Aug 22 18:06:42 l02a sshd[936]: Invalid user swapnil from 122.252.239.5 Aug 22 18:06:42 l02a sshd[936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 Aug 22 18:06:42 l02a sshd[936]: Invalid user swapnil from 122.252.239.5 Aug 22 18:06:44 l02a sshd[936]: Failed password for invalid user swapnil from 122.252.239.5 port 38060 ssh2	2020-08-23 03:52:09
122.252.239.5	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-17 01:22:08
122.252.239.5	attackbotsspam	Aug 10 21:30:33 gospond sshd[21095]: Failed password for root from 122.252.239.5 port 51554 ssh2 Aug 10 21:30:32 gospond sshd[21095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 user=root Aug 10 21:30:33 gospond sshd[21095]: Failed password for root from 122.252.239.5 port 51554 ssh2 ...	2020-08-11 05:59:59
122.252.239.5	attackspambots	DATE:2020-08-09 21:49:27,IP:122.252.239.5,MATCHES:10,PORT:ssh	2020-08-10 03:58:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.252.239.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34829
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;122.252.239.252.		IN	A

;; AUTHORITY SECTION:
.			366	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010702 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 08 10:45:03 CST 2022
;; MSG SIZE  rcvd: 108

Host info

252.239.252.122.in-addr.arpa domain name pointer ws252-239-252-122.rcil.gov.in.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
252.239.252.122.in-addr.arpa	name = ws252-239-252-122.rcil.gov.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
70.185.48.228	attackspam	Forbidden directory scan :: 2019/10/07 14:41:35 [error] 1085#1085: *54734 access forbidden by rule, client: 70.185.48.228, server: [censored_2], request: "GET //bak.sql HTTP/1.1", host: "[censored_2]", referrer: "http://[censored_2]:80//bak.sql"	2019-10-07 19:46:58
222.186.30.152	attackbotsspam	2019-10-07T12:05:53.512635abusebot-3.cloudsearch.cf sshd\[5732\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.152 user=root	2019-10-07 20:08:16
51.159.30.31	attackspambots	Automated report (2019-10-07T11:48:32+00:00). Faked user agent detected.	2019-10-07 20:13:27
104.236.55.217	attackspambots	Lines containing failures of 104.236.55.217 Oct 5 19:30:37 kopano sshd[3110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.55.217 user=r.r Oct 5 19:30:39 kopano sshd[3110]: Failed password for r.r from 104.236.55.217 port 42758 ssh2 Oct 5 19:30:39 kopano sshd[3110]: Received disconnect from 104.236.55.217 port 42758:11: Bye Bye [preauth] Oct 5 19:30:39 kopano sshd[3110]: Disconnected from authenticating user r.r 104.236.55.217 port 42758 [preauth] Oct 5 19:37:07 kopano sshd[3287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.55.217 user=r.r Oct 5 19:37:09 kopano sshd[3287]: Failed password for r.r from 104.236.55.217 port 50624 ssh2 Oct 5 19:37:09 kopano sshd[3287]: Received disconnect from 104.236.55.217 port 50624:11: Bye Bye [preauth] Oct 5 19:37:09 kopano sshd[3287]: Disconnected from authenticating user r.r 104.236.55.217 port 50624 [preauth] Oct 5 19:40:........ ------------------------------	2019-10-07 20:13:11
218.249.24.98	attackspambots	Oct 7 13:47:56 andromeda postfix/smtpd\[2709\]: warning: unknown\[218.249.24.98\]: SASL LOGIN authentication failed: authentication failure Oct 7 13:47:59 andromeda postfix/smtpd\[54925\]: warning: unknown\[218.249.24.98\]: SASL LOGIN authentication failed: authentication failure Oct 7 13:48:15 andromeda postfix/smtpd\[2695\]: warning: unknown\[218.249.24.98\]: SASL LOGIN authentication failed: authentication failure Oct 7 13:48:21 andromeda postfix/smtpd\[24572\]: warning: unknown\[218.249.24.98\]: SASL LOGIN authentication failed: authentication failure Oct 7 13:48:42 andromeda postfix/smtpd\[2514\]: warning: unknown\[218.249.24.98\]: SASL LOGIN authentication failed: authentication failure	2019-10-07 20:07:17
192.99.32.86	attackbotsspam	Oct 7 13:45:01 v22019058497090703 sshd[16708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.32.86 Oct 7 13:45:03 v22019058497090703 sshd[16708]: Failed password for invalid user P4SS2020 from 192.99.32.86 port 54972 ssh2 Oct 7 13:48:51 v22019058497090703 sshd[16990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.32.86 ...	2019-10-07 20:03:20
139.59.79.56	attackbots	Oct 7 07:59:36 core sshd[15150]: Invalid user jboss from 139.59.79.56 port 56686 Oct 7 07:59:37 core sshd[15150]: Failed password for invalid user jboss from 139.59.79.56 port 56686 ssh2 ...	2019-10-07 19:42:46
188.254.0.113	attack	Oct 7 11:48:41 thevastnessof sshd[15611]: Failed password for root from 188.254.0.113 port 60564 ssh2 ...	2019-10-07 20:09:12
103.251.112.174	attack	Oct 7 12:57:10 MainVPS sshd[6940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.251.112.174 user=root Oct 7 12:57:12 MainVPS sshd[6940]: Failed password for root from 103.251.112.174 port 57104 ssh2 Oct 7 13:01:31 MainVPS sshd[7299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.251.112.174 user=root Oct 7 13:01:33 MainVPS sshd[7299]: Failed password for root from 103.251.112.174 port 43768 ssh2 Oct 7 13:06:03 MainVPS sshd[7631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.251.112.174 user=root Oct 7 13:06:04 MainVPS sshd[7631]: Failed password for root from 103.251.112.174 port 58686 ssh2 ...	2019-10-07 19:40:21
220.166.78.25	attackbots	Oct 7 13:40:12 v22019058497090703 sshd[16379]: Failed password for root from 220.166.78.25 port 56663 ssh2 Oct 7 13:44:22 v22019058497090703 sshd[16648]: Failed password for root from 220.166.78.25 port 44496 ssh2 ...	2019-10-07 20:10:40
222.186.175.147	attack	Oct 7 07:40:38 xtremcommunity sshd\[274259\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.147 user=root Oct 7 07:40:41 xtremcommunity sshd\[274259\]: Failed password for root from 222.186.175.147 port 65304 ssh2 Oct 7 07:40:46 xtremcommunity sshd\[274259\]: Failed password for root from 222.186.175.147 port 65304 ssh2 Oct 7 07:40:50 xtremcommunity sshd\[274259\]: Failed password for root from 222.186.175.147 port 65304 ssh2 Oct 7 07:40:54 xtremcommunity sshd\[274259\]: Failed password for root from 222.186.175.147 port 65304 ssh2 ...	2019-10-07 19:41:37
111.230.229.106	attackspambots	Oct 7 14:48:59 sauna sshd[225702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.229.106 Oct 7 14:49:01 sauna sshd[225702]: Failed password for invalid user 123@asd from 111.230.229.106 port 45546 ssh2 ...	2019-10-07 19:58:06
106.12.38.84	attackspambots	Oct 7 13:39:25 markkoudstaal sshd[11394]: Failed password for root from 106.12.38.84 port 53964 ssh2 Oct 7 13:44:04 markkoudstaal sshd[11788]: Failed password for root from 106.12.38.84 port 33016 ssh2	2019-10-07 20:05:12
222.247.209.101	attackbotsspam	Port 1433 Scan	2019-10-07 19:41:19
94.125.61.251	attack	Port scan	2019-10-07 20:17:36

Recently Reported IPs

30.26.196.166	146.123.58.27	242.76.247.200	148.52.255.162
4.136.155.47	22.210.223.73	156.8.205.212	248.232.42.61
74.84.75.183	156.206.189.193	218.88.188.126	210.51.16.128
80.242.137.13	206.210.39.204	20.19.163.84	119.71.83.90
158.229.42.132	151.102.55.246	9.46.15.5	4.23.176.156