222.252.21.138

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Hanoi Post and Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Attempt to attack host OS, exploiting network vulnerabilities, on 07-10-2019 04:50:23.	2019-10-07 14:56:19

Comments on same subnet:

IP	Type	Details	Datetime
222.252.21.30	attackbotsspam	2020-09-01T14:28:35.346338galaxy.wi.uni-potsdam.de sshd[20970]: Invalid user andres from 222.252.21.30 port 65237 2020-09-01T14:28:35.350960galaxy.wi.uni-potsdam.de sshd[20970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.21.30 2020-09-01T14:28:35.346338galaxy.wi.uni-potsdam.de sshd[20970]: Invalid user andres from 222.252.21.30 port 65237 2020-09-01T14:28:37.549820galaxy.wi.uni-potsdam.de sshd[20970]: Failed password for invalid user andres from 222.252.21.30 port 65237 ssh2 2020-09-01T14:31:07.603941galaxy.wi.uni-potsdam.de sshd[21265]: Invalid user anurag from 222.252.21.30 port 33467 2020-09-01T14:31:07.606392galaxy.wi.uni-potsdam.de sshd[21265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.21.30 2020-09-01T14:31:07.603941galaxy.wi.uni-potsdam.de sshd[21265]: Invalid user anurag from 222.252.21.30 port 33467 2020-09-01T14:31:09.338507galaxy.wi.uni-potsdam.de sshd[21265]: Failed pa ...	2020-09-02 00:41:49
222.252.21.30	attackbots	2020-08-28T09:08:54.761832vps751288.ovh.net sshd\[17608\]: Invalid user tp from 222.252.21.30 port 37797 2020-08-28T09:08:54.771337vps751288.ovh.net sshd\[17608\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.21.30 2020-08-28T09:08:56.558451vps751288.ovh.net sshd\[17608\]: Failed password for invalid user tp from 222.252.21.30 port 37797 ssh2 2020-08-28T09:13:59.427333vps751288.ovh.net sshd\[17651\]: Invalid user tw from 222.252.21.30 port 43665 2020-08-28T09:13:59.433284vps751288.ovh.net sshd\[17651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.21.30	2020-08-28 15:53:32
222.252.21.30	attackspam	Aug 15 08:29:58 ip106 sshd[10681]: Failed password for root from 222.252.21.30 port 44865 ssh2 ...	2020-08-15 14:35:31
222.252.21.30	attackbotsspam	Aug 10 14:04:28 haigwepa sshd[3581]: Failed password for root from 222.252.21.30 port 57989 ssh2 ...	2020-08-10 22:43:33
222.252.21.30	attackbotsspam	SSH Brute Force	2020-07-30 15:26:11
222.252.21.30	attackspam	Jul 29 22:25:18 electroncash sshd[24323]: Invalid user cui from 222.252.21.30 port 63583 Jul 29 22:25:18 electroncash sshd[24323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.21.30 Jul 29 22:25:18 electroncash sshd[24323]: Invalid user cui from 222.252.21.30 port 63583 Jul 29 22:25:20 electroncash sshd[24323]: Failed password for invalid user cui from 222.252.21.30 port 63583 ssh2 Jul 29 22:28:21 electroncash sshd[25107]: Invalid user lavaadmin from 222.252.21.30 port 52329 ...	2020-07-30 05:05:08
222.252.21.30	attackspam	Jul 29 01:24:53 ny01 sshd[31890]: Failed password for root from 222.252.21.30 port 49023 ssh2 Jul 29 01:27:26 ny01 sshd[32554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.21.30 Jul 29 01:27:29 ny01 sshd[32554]: Failed password for invalid user zhuowang from 222.252.21.30 port 47781 ssh2	2020-07-29 13:47:30
222.252.21.40	attackbotsspam	Unauthorized connection attempt from IP address 222.252.21.40 on Port 445(SMB)	2020-07-25 01:02:33
222.252.21.30	attackbotsspam	Invalid user 10 from 222.252.21.30 port 40657	2020-07-11 18:41:59
222.252.21.30	attack	$f2bV_matches	2020-06-23 00:38:49
222.252.21.30	attack	Jun 4 05:43:56 vlre-nyc-1 sshd\[3924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.21.30 user=root Jun 4 05:43:58 vlre-nyc-1 sshd\[3924\]: Failed password for root from 222.252.21.30 port 40301 ssh2 Jun 4 05:49:45 vlre-nyc-1 sshd\[4089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.21.30 user=root Jun 4 05:49:47 vlre-nyc-1 sshd\[4089\]: Failed password for root from 222.252.21.30 port 61867 ssh2 Jun 4 05:52:44 vlre-nyc-1 sshd\[4191\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.21.30 user=root ...	2020-06-04 16:53:02
222.252.21.124	attackspambots	failed_logins	2020-06-03 04:24:52
222.252.21.30	attack	$f2bV_matches	2020-05-30 13:39:58
222.252.21.46	attackspam	Unauthorized connection attempt from IP address 222.252.21.46 on Port 445(SMB)	2020-05-26 18:39:31
222.252.214.211	attackbots	Unauthorized connection attempt from IP address 222.252.214.211 on Port 445(SMB)	2020-05-26 00:52:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.252.21.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7776
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.252.21.138.			IN	A

;; AUTHORITY SECTION:
.			513	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100700 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 07 14:56:14 CST 2019
;; MSG SIZE  rcvd: 118

Host info

138.21.252.222.in-addr.arpa domain name pointer static.vnpt-hanoi.com.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.21.252.222.in-addr.arpa	name = static.vnpt-hanoi.com.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.62.79.227	attackbotsspam	Invalid user user from 178.62.79.227 port 49794	2020-07-26 14:52:07
36.156.157.227	attackspam	Jul 26 07:16:43 havingfunrightnow sshd[9020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.157.227 Jul 26 07:16:45 havingfunrightnow sshd[9020]: Failed password for invalid user arno from 36.156.157.227 port 53197 ssh2 Jul 26 07:24:12 havingfunrightnow sshd[9161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.157.227 ...	2020-07-26 14:45:11
222.186.180.8	attackbots	Jul 26 08:19:58 srv-ubuntu-dev3 sshd[57072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Jul 26 08:20:00 srv-ubuntu-dev3 sshd[57072]: Failed password for root from 222.186.180.8 port 11712 ssh2 Jul 26 08:20:03 srv-ubuntu-dev3 sshd[57072]: Failed password for root from 222.186.180.8 port 11712 ssh2 Jul 26 08:19:58 srv-ubuntu-dev3 sshd[57072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Jul 26 08:20:00 srv-ubuntu-dev3 sshd[57072]: Failed password for root from 222.186.180.8 port 11712 ssh2 Jul 26 08:20:03 srv-ubuntu-dev3 sshd[57072]: Failed password for root from 222.186.180.8 port 11712 ssh2 Jul 26 08:19:58 srv-ubuntu-dev3 sshd[57072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Jul 26 08:20:00 srv-ubuntu-dev3 sshd[57072]: Failed password for root from 222.186.180.8 port 11712 ssh2 J ...	2020-07-26 14:24:53
40.83.100.166	attackspam	Port Scan detected from 40.83.100.166 (HK/Hong Kong/-). 5 hits in the last 0 seconds	2020-07-26 14:54:42
104.236.228.230	attackbots	2020-07-26T07:03:10.612319vps773228.ovh.net sshd[28746]: Invalid user smkim from 104.236.228.230 port 39600 2020-07-26T07:03:10.628224vps773228.ovh.net sshd[28746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.228.230 2020-07-26T07:03:10.612319vps773228.ovh.net sshd[28746]: Invalid user smkim from 104.236.228.230 port 39600 2020-07-26T07:03:12.655218vps773228.ovh.net sshd[28746]: Failed password for invalid user smkim from 104.236.228.230 port 39600 ssh2 2020-07-26T07:07:18.717191vps773228.ovh.net sshd[28807]: Invalid user hadoop from 104.236.228.230 port 52284 ...	2020-07-26 14:47:10
162.243.128.251	attackbots	Fail2Ban Ban Triggered	2020-07-26 14:28:20
176.138.138.230	attackspambots	Attempts against non-existent wp-login	2020-07-26 14:22:58
138.255.222.190	attack	IP 138.255.222.190 attacked honeypot on port: 23 at 7/25/2020 8:56:37 PM	2020-07-26 14:22:09
216.244.66.196	attack	20 attempts against mh-misbehave-ban on twig	2020-07-26 14:25:54
138.68.81.162	attack	Jul 26 08:06:54 minden010 sshd[20318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.81.162 Jul 26 08:06:57 minden010 sshd[20318]: Failed password for invalid user user2 from 138.68.81.162 port 46644 ssh2 Jul 26 08:12:10 minden010 sshd[21832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.81.162 ...	2020-07-26 14:29:17
51.254.222.108	attackspam	Jul 26 08:09:40 meumeu sshd[157442]: Invalid user ran from 51.254.222.108 port 45702 Jul 26 08:09:40 meumeu sshd[157442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.222.108 Jul 26 08:09:40 meumeu sshd[157442]: Invalid user ran from 51.254.222.108 port 45702 Jul 26 08:09:42 meumeu sshd[157442]: Failed password for invalid user ran from 51.254.222.108 port 45702 ssh2 Jul 26 08:13:59 meumeu sshd[157663]: Invalid user qswang from 51.254.222.108 port 58854 Jul 26 08:13:59 meumeu sshd[157663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.222.108 Jul 26 08:13:59 meumeu sshd[157663]: Invalid user qswang from 51.254.222.108 port 58854 Jul 26 08:14:01 meumeu sshd[157663]: Failed password for invalid user qswang from 51.254.222.108 port 58854 ssh2 Jul 26 08:18:24 meumeu sshd[157756]: Invalid user martin from 51.254.222.108 port 43774 ...	2020-07-26 14:40:08
180.101.248.148	attackspam	Jul 26 00:26:26 ny01 sshd[31093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.101.248.148 Jul 26 00:26:28 ny01 sshd[31093]: Failed password for invalid user telefonica from 180.101.248.148 port 48006 ssh2 Jul 26 00:32:21 ny01 sshd[31817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.101.248.148	2020-07-26 14:26:21
134.17.94.214	attack	Jul 26 07:47:33 vserver sshd\[31892\]: Invalid user amanda from 134.17.94.214Jul 26 07:47:36 vserver sshd\[31892\]: Failed password for invalid user amanda from 134.17.94.214 port 7281 ssh2Jul 26 07:51:27 vserver sshd\[31935\]: Invalid user lss from 134.17.94.214Jul 26 07:51:30 vserver sshd\[31935\]: Failed password for invalid user lss from 134.17.94.214 port 7282 ssh2 ...	2020-07-26 14:19:42
141.98.9.137	attackspambots	Jul 26 08:39:22 zooi sshd[11467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.137 Jul 26 08:39:24 zooi sshd[11467]: Failed password for invalid user operator from 141.98.9.137 port 53678 ssh2 ...	2020-07-26 14:40:27
192.236.146.218	attack	Unauthorised access (Jul 26) SRC=192.236.146.218 LEN=40 TTL=240 ID=948 TCP DPT=3389 WINDOW=1024 SYN	2020-07-26 14:27:05

Recently Reported IPs

142.211.87.229	88.147.17.89	186.157.151.20	223.36.10.148
189.50.44.234	180.251.191.173	178.45.219.60	50.225.152.178
172.25.48.201	185.13.32.112	93.175.220.21	178.185.51.92
162.62.135.126	177.159.9.109	149.34.28.19	14.248.80.18
14.185.80.214	128.71.137.99	14.162.31.76	178.37.174.198