122.252.239.67

Basic Info

City: Haridwar

Region: Uttarakhand

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:46:52
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:46:32
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:46:24
122.252.239.167	spambotsattackproxynormal	122.252.239.167	2021-10-17 21:45:55
122.252.239.5	attack	Repeated brute force against a port	2020-10-10 04:24:18
122.252.239.5	attackbots	2020-10-09T15:00:24.888338paragon sshd[791574]: Failed password for invalid user rpm from 122.252.239.5 port 45906 ssh2 2020-10-09T15:04:44.725484paragon sshd[791650]: Invalid user ghost4 from 122.252.239.5 port 50138 2020-10-09T15:04:44.729385paragon sshd[791650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 2020-10-09T15:04:44.725484paragon sshd[791650]: Invalid user ghost4 from 122.252.239.5 port 50138 2020-10-09T15:04:46.438154paragon sshd[791650]: Failed password for invalid user ghost4 from 122.252.239.5 port 50138 ssh2 ...	2020-10-09 20:22:07
122.252.239.5	attackbotsspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-10-09 12:09:40
122.252.239.5	attackbots	$f2bV_matches	2020-09-23 20:59:40
122.252.239.5	attackspambots	Sep 22 22:25:39 * sshd[12526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 Sep 22 22:25:42 * sshd[12526]: Failed password for invalid user frappe from 122.252.239.5 port 44364 ssh2	2020-09-23 05:07:39
122.252.239.5	attackspam	Aug 30 16:00:21 electroncash sshd[33527]: Failed password for invalid user zyc from 122.252.239.5 port 40904 ssh2 Aug 30 16:05:17 electroncash sshd[36095]: Invalid user cop from 122.252.239.5 port 45210 Aug 30 16:05:17 electroncash sshd[36095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 Aug 30 16:05:17 electroncash sshd[36095]: Invalid user cop from 122.252.239.5 port 45210 Aug 30 16:05:18 electroncash sshd[36095]: Failed password for invalid user cop from 122.252.239.5 port 45210 ssh2 ...	2020-08-31 01:22:00
122.252.239.5	attack	Aug 24 16:17:50 sachi sshd\[16491\]: Failed password for invalid user yanglin from 122.252.239.5 port 42834 ssh2 Aug 24 16:20:43 sachi sshd\[18263\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 user=root Aug 24 16:20:44 sachi sshd\[18263\]: Failed password for root from 122.252.239.5 port 48178 ssh2 Aug 24 16:23:43 sachi sshd\[20092\]: Invalid user zyy from 122.252.239.5 Aug 24 16:23:43 sachi sshd\[20092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5	2020-08-25 14:04:33
122.252.239.5	attackbotsspam	Aug 22 18:06:42 l02a sshd[936]: Invalid user swapnil from 122.252.239.5 Aug 22 18:06:42 l02a sshd[936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 Aug 22 18:06:42 l02a sshd[936]: Invalid user swapnil from 122.252.239.5 Aug 22 18:06:44 l02a sshd[936]: Failed password for invalid user swapnil from 122.252.239.5 port 38060 ssh2	2020-08-23 03:52:09
122.252.239.5	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-17 01:22:08
122.252.239.5	attackbotsspam	Aug 10 21:30:33 gospond sshd[21095]: Failed password for root from 122.252.239.5 port 51554 ssh2 Aug 10 21:30:32 gospond sshd[21095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.252.239.5 user=root Aug 10 21:30:33 gospond sshd[21095]: Failed password for root from 122.252.239.5 port 51554 ssh2 ...	2020-08-11 05:59:59
122.252.239.5	attackspambots	DATE:2020-08-09 21:49:27,IP:122.252.239.5,MATCHES:10,PORT:ssh	2020-08-10 03:58:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.252.239.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5998
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;122.252.239.67.			IN	A

;; AUTHORITY SECTION:
.			301	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022012200 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 22 15:55:17 CST 2022
;; MSG SIZE  rcvd: 107

Host info

67.239.252.122.in-addr.arpa domain name pointer ws67-239-252-122.rcil.gov.in.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
67.239.252.122.in-addr.arpa	name = ws67-239-252-122.rcil.gov.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.128.113.230	attackspam	Jul 18 18:20:46 vpn01 sshd[4436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.128.113.230 Jul 18 18:20:48 vpn01 sshd[4436]: Failed password for invalid user admin from 78.128.113.230 port 53170 ssh2 ...	2020-07-19 00:42:54
162.247.74.217	attackbots	2020/07/18 15:51:41 [error] 20617#20617: 9427212 open() "/usr/share/nginx/html/cgi-bin/php4-cgi" failed (2: No such file or directory), client: 162.247.74.217, server: _, request: "POST /cgi-bin/php4-cgi?%2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E HTTP/1.1", host: "forest-bathing-deutschland.com" 2020/07/18 15:51:41 [error] 20617#20617: 9427212 open() "/usr/share/nginx/html/cgi-bin/php5-cgi" failed (2: No such file or directory), client: 162.247.74.217, server: _, request: "POST /cgi-bin/php5-c	2020-07-19 01:07:01
175.106.17.235	attackspambots	Invalid user smart from 175.106.17.235 port 35972	2020-07-19 00:27:48
116.110.29.202	attack	Invalid user guest from 116.110.29.202 port 38300	2020-07-19 00:36:17
191.162.214.172	attackspam	Invalid user admin from 191.162.214.172 port 54298	2020-07-19 01:00:00
128.199.95.161	attack	Jul 18 18:16:06 vm1 sshd[16282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.95.161 Jul 18 18:16:08 vm1 sshd[16282]: Failed password for invalid user vboxadmin from 128.199.95.161 port 46478 ssh2 ...	2020-07-19 00:33:11
176.31.182.79	attackbotsspam	" "	2020-07-19 00:27:15
178.128.144.14	attack	Bruteforce detected by fail2ban	2020-07-19 00:26:14
145.239.252.197	attackspambots	Invalid user admin from 145.239.252.197 port 32986	2020-07-19 01:07:32
192.81.209.72	attack	Invalid user seb from 192.81.209.72 port 58570	2020-07-19 00:59:02
77.245.108.226	attackbotsspam	Invalid user george from 77.245.108.226 port 55736	2020-07-19 00:43:52
128.199.253.146	attackbotsspam	Jul 18 16:11:18 ns3033917 sshd[8522]: Invalid user qa from 128.199.253.146 port 36097 Jul 18 16:11:20 ns3033917 sshd[8522]: Failed password for invalid user qa from 128.199.253.146 port 36097 ssh2 Jul 18 16:25:44 ns3033917 sshd[8674]: Invalid user lg from 128.199.253.146 port 34934 ...	2020-07-19 00:32:53
182.254.172.63	attackbotsspam	Invalid user 22 from 182.254.172.63 port 46392	2020-07-19 01:03:18
46.101.33.198	attack	TCP (SYN) 46.101.33.198:51849 -> port 6608, len 44	2020-07-19 00:48:38
122.152.220.161	attackbotsspam	2020-07-18T10:35:29.646613morrigan.ad5gb.com sshd[1310088]: Invalid user c from 122.152.220.161 port 40522 2020-07-18T10:35:31.651274morrigan.ad5gb.com sshd[1310088]: Failed password for invalid user c from 122.152.220.161 port 40522 ssh2	2020-07-19 00:34:09

Recently Reported IPs

103.80.246.2	197.132.141.22	158.63.200.248	100.76.64.147
100.76.64.114	34.63.66.13	100.76.64.99	186.141.136.248
25.20.133.67	33.30.61.211	194.110.64.240	27.30.14.39
54.66.93.208	237.231.59.137	244.65.128.165	183.63.253.173
219.78.238.49	130.202.207.94	69.110.48.118	238.192.231.203