222.252.42.123

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
222.252.42.147	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 01-04-2020 13:30:20.	2020-04-02 02:39:17
222.252.42.66	attackspam	Jul 26 11:53:00 srv-4 sshd\[20770\]: Invalid user admin from 222.252.42.66 Jul 26 11:53:00 srv-4 sshd\[20770\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.42.66 Jul 26 11:53:02 srv-4 sshd\[20770\]: Failed password for invalid user admin from 222.252.42.66 port 60148 ssh2 ...	2019-07-27 03:19:40
222.252.42.126	attackspambots	445/tcp 445/tcp [2019-06-26/27]2pkt	2019-06-28 16:23:06

Type

Details

Datetime

222.252.42.147

attackbots

Attempt to attack host OS, exploiting network vulnerabilities, on 01-04-2020 13:30:20.

2020-04-02 02:39:17

222.252.42.66

attackspam

Jul 26 11:53:00 srv-4 sshd\[20770\]: Invalid user admin from 222.252.42.66
Jul 26 11:53:00 srv-4 sshd\[20770\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.42.66
Jul 26 11:53:02 srv-4 sshd\[20770\]: Failed password for invalid user admin from 222.252.42.66 port 60148 ssh2
...

2019-07-27 03:19:40

222.252.42.126

attackspambots

445/tcp 445/tcp
[2019-06-26/27]2pkt

2019-06-28 16:23:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.252.42.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57610
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;222.252.42.123.			IN	A

;; AUTHORITY SECTION:
.			498	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 18:42:13 CST 2022
;; MSG SIZE  rcvd: 107

Host info

b'123.42.252.222.in-addr.arpa domain name pointer static.vnpt.vn.
'

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
123.42.252.222.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.89.115.126	attackspam	$lgm	2020-09-21 22:27:51
160.124.103.55	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-21 22:11:41
196.179.230.124	attack	Unauthorized connection attempt from IP address 196.179.230.124 on Port 445(SMB)	2020-09-21 22:36:17
89.187.187.148	attackspam	[2020-09-20 12:51:57] NOTICE[1239][C-00005a9d] chan_sip.c: Call from '' (89.187.187.148:52501) to extension '000000000000972592277524' rejected because extension not found in context 'public'. [2020-09-20 12:51:57] SECURITY[1264] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-20T12:51:57.556-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="000000000000972592277524",SessionID="0x7f4d48965da8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/89.187.187.148/52501",ACLName="no_extension_match" [2020-09-20 13:01:56] NOTICE[1239][C-00005aa7] chan_sip.c: Call from '' (89.187.187.148:52855) to extension '1011972595375946' rejected because extension not found in context 'public'. [2020-09-20 13:01:56] SECURITY[1264] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-20T13:01:56.401-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="1011972595375946",SessionID="0x7f4d4844faa8",LocalAddress="IPV4/UDP/192.168.244.6/5060",R ...	2020-09-21 22:36:31
168.70.124.50	attackbotsspam	Sep 20 19:00:11 scw-focused-cartwright sshd[25222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.70.124.50 Sep 20 19:00:12 scw-focused-cartwright sshd[25222]: Failed password for invalid user pi from 168.70.124.50 port 38525 ssh2	2020-09-21 22:17:17
191.185.43.221	attack	Automatic report - Port Scan Attack	2020-09-21 22:16:33
120.88.46.226	attack	fail2ban -- 120.88.46.226 ...	2020-09-21 22:32:28
183.108.100.33	attack	Sep 20 20:01:59 root sshd[6784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.108.100.33 user=root Sep 20 20:02:00 root sshd[6784]: Failed password for root from 183.108.100.33 port 12840 ssh2 ...	2020-09-21 22:34:12
103.133.105.65	attackbotsspam	Sep 21 15:53:12 mx postfix/postscreen\[18646\]: PREGREET 11 after 0.35 from \[103.133.105.65\]:47013: EHLO User ...	2020-09-21 22:23:30
181.30.8.146	attack	Sep 21 13:18:50 xeon sshd[12396]: Failed password for root from 181.30.8.146 port 41878 ssh2	2020-09-21 22:38:20
188.166.248.209	attackspam	Attempt to hack Wordpress Login, XMLRPC or other login	2020-09-21 22:11:26
58.153.67.99	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-21 22:27:34
188.170.13.225	attackbots	detected by Fail2Ban	2020-09-21 22:30:00
27.206.133.198	attack	Attempted Administrator Privilege Gain	2020-09-21 22:26:21
131.193.192.52	attackspam	s3.hscode.pl - SSH Attack	2020-09-21 22:18:20

Recently Reported IPs

196.245.219.229	213.108.116.237	101.95.182.26	43.243.140.194
201.49.232.190	113.59.163.72	51.158.126.227	13.80.134.157
120.211.142.16	60.222.244.89	121.43.128.131	103.161.164.109
142.129.163.253	178.72.68.247	87.250.224.170	104.237.240.174
73.219.128.78	213.14.136.71	110.77.145.159	187.19.127.179