222.254.5.244 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
222.254.58.102	attackbotsspam	1597031358 - 08/10/2020 05:49:18 Host: 222.254.58.102/222.254.58.102 Port: 445 TCP Blocked ...	2020-08-10 18:28:29
222.254.53.57	attack	Failed RDP login	2020-07-23 07:26:04
222.254.5.58	attackspam	Unauthorised access (Jun 21) SRC=222.254.5.58 LEN=60 TTL=112 ID=11802 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-21 17:27:40
222.254.57.4	attackbotsspam	20/6/8@00:30:49: FAIL: Alarm-Network address from=222.254.57.4 20/6/8@00:30:49: FAIL: Alarm-Network address from=222.254.57.4 ...	2020-06-08 18:51:47
222.254.58.107	attackbots	Jun 2 15:26:17 mailman postfix/smtpd[29143]: warning: unknown[222.254.58.107]: SASL PLAIN authentication failed: authentication failure	2020-06-03 06:21:00
222.254.59.140	attackspam	1583297874 - 03/04/2020 05:57:54 Host: 222.254.59.140/222.254.59.140 Port: 445 TCP Blocked	2020-03-04 15:27:44
222.254.5.216	attackspambots	Automatic report - Banned IP Access	2019-11-22 01:48:27
222.254.54.220	attackbots	Unauthorized connection attempt from IP address 222.254.54.220 on Port 445(SMB)	2019-11-10 04:04:10
222.254.5.28	attackspam	2019-09-19T11:50:46.025190+01:00 suse sshd[19277]: Invalid user telecomadmin from 222.254.5.28 port 58231 2019-09-19T11:50:49.183617+01:00 suse sshd[19277]: error: PAM: User not known to the underlying authentication module for illegal user telecomadmin from 222.254.5.28 2019-09-19T11:50:46.025190+01:00 suse sshd[19277]: Invalid user telecomadmin from 222.254.5.28 port 58231 2019-09-19T11:50:49.183617+01:00 suse sshd[19277]: error: PAM: User not known to the underlying authentication module for illegal user telecomadmin from 222.254.5.28 2019-09-19T11:50:46.025190+01:00 suse sshd[19277]: Invalid user telecomadmin from 222.254.5.28 port 58231 2019-09-19T11:50:49.183617+01:00 suse sshd[19277]: error: PAM: User not known to the underlying authentication module for illegal user telecomadmin from 222.254.5.28 2019-09-19T11:50:49.187318+01:00 suse sshd[19277]: Failed keyboard-interactive/pam for invalid user telecomadmin from 222.254.5.28 port 58231 ssh2 ...	2019-09-20 00:39:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.254.5.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46448
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;222.254.5.244.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012800 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 28 20:51:14 CST 2025
;; MSG SIZE  rcvd: 106

Host info

244.5.254.222.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
244.5.254.222.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
140.143.149.71	attackbots	SSH / Telnet Brute Force Attempts on Honeypot	2020-06-16 08:17:23
122.51.150.134	attackspambots	Jun 15 20:39:41 onepixel sshd[1240937]: Invalid user ec2-user from 122.51.150.134 port 47540 Jun 15 20:39:41 onepixel sshd[1240937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.150.134 Jun 15 20:39:41 onepixel sshd[1240937]: Invalid user ec2-user from 122.51.150.134 port 47540 Jun 15 20:39:43 onepixel sshd[1240937]: Failed password for invalid user ec2-user from 122.51.150.134 port 47540 ssh2 Jun 15 20:41:13 onepixel sshd[1241084]: Invalid user don from 122.51.150.134 port 37038	2020-06-16 08:14:20
59.127.152.203	attackbotsspam	Invalid user version from 59.127.152.203 port 58270	2020-06-16 08:02:02
175.24.139.99	attack	2020-06-15T23:16:02+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-06-16 07:51:42
139.59.69.76	attackbots	Jun 15 14:31:48 server1 sshd\[32206\]: Invalid user wc from 139.59.69.76 Jun 15 14:31:48 server1 sshd\[32206\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.69.76 Jun 15 14:31:51 server1 sshd\[32206\]: Failed password for invalid user wc from 139.59.69.76 port 38710 ssh2 Jun 15 14:35:33 server1 sshd\[2226\]: Invalid user b from 139.59.69.76 Jun 15 14:35:33 server1 sshd\[2226\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.69.76 Jun 15 14:35:35 server1 sshd\[2226\]: Failed password for invalid user b from 139.59.69.76 port 38476 ssh2 ...	2020-06-16 08:16:22
223.85.222.251	attackbotsspam	Ssh brute force	2020-06-16 08:23:20
93.39.116.254	attackbots	1061. On Jun 15 2020 experienced a Brute Force SSH login attempt -> 3 unique times by 93.39.116.254.	2020-06-16 07:49:14
118.45.130.170	attack	Jun 15 16:43:29 dignus sshd[6929]: Failed password for invalid user postgres from 118.45.130.170 port 33701 ssh2 Jun 15 16:45:43 dignus sshd[7147]: Invalid user rudi from 118.45.130.170 port 45623 Jun 15 16:45:43 dignus sshd[7147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.45.130.170 Jun 15 16:45:46 dignus sshd[7147]: Failed password for invalid user rudi from 118.45.130.170 port 45623 ssh2 Jun 15 16:46:17 dignus sshd[7189]: Invalid user administrador from 118.45.130.170 port 49071 ...	2020-06-16 08:04:56
80.145.172.58	attack	Jun 15 22:40:53 debian-2gb-nbg1-2 kernel: \[14512359.159335\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.145.172.58 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=34390 PROTO=TCP SPT=36218 DPT=23 WINDOW=29082 RES=0x00 SYN URGP=0	2020-06-16 08:28:11
61.155.233.234	attack	Jun 15 21:21:39 CT721 sshd[28242]: Invalid user lever from 61.155.233.234 port 43341 Jun 15 21:21:39 CT721 sshd[28242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.155.233.234 Jun 15 21:21:42 CT721 sshd[28242]: Failed password for invalid user lever from 61.155.233.234 port 43341 ssh2 Jun 15 21:21:42 CT721 sshd[28242]: Received disconnect from 61.155.233.234 port 43341:11: Bye Bye [preauth] Jun 15 21:21:42 CT721 sshd[28242]: Disconnected from 61.155.233.234 port 43341 [preauth] Jun 15 21:35:48 CT721 sshd[28494]: Invalid user edwin123 from 61.155.233.234 port 1292 Jun 15 21:35:48 CT721 sshd[28494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.155.233.234 Jun 15 21:35:50 CT721 sshd[28494]: Failed password for invalid user edwin123 from 61.155.233.234 port 1292 ssh2 Jun 15 21:35:50 CT721 sshd[28494]: Received disconnect from 61.155.233.234 port 1292:11: Bye Bye [preauth] Jun 15 21:........ -------------------------------	2020-06-16 08:19:46
123.58.33.5	attack	Jun 15 16:37:14 ACSRAD auth.info sshd[4143]: Invalid user user1 from 123.58.33.5 port 6784 Jun 15 16:37:14 ACSRAD auth.info sshd[4143]: Failed password for invalid user user1 from 123.58.33.5 port 6784 ssh2 Jun 15 16:37:14 ACSRAD auth.info sshd[4143]: Received disconnect from 123.58.33.5 port 6784:11: Normal Shutdown, Thank you for playing [preauth] Jun 15 16:37:14 ACSRAD auth.info sshd[4143]: Disconnected from 123.58.33.5 port 6784 [preauth] Jun 15 16:37:15 ACSRAD auth.notice sshguard[5450]: Attack from "123.58.33.5" on service 100 whostnameh danger 10. Jun 15 16:37:15 ACSRAD auth.notice sshguard[5450]: Attack from "123.58.33.5" on service 100 whostnameh danger 10. Jun 15 16:37:15 ACSRAD auth.notice sshguard[5450]: Attack from "123.58.33.5" on service 100 whostnameh danger 10. Jun 15 16:37:15 ACSRAD auth.warn sshguard[5450]: Blocking "123.58.33.5/32" forever (3 attacks in 0 secs, after 2 abuses over 462 secs.) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip	2020-06-16 08:22:07
191.30.88.212	attack	20/6/15@16:41:20: FAIL: Alarm-Network address from=191.30.88.212 20/6/15@16:41:20: FAIL: Alarm-Network address from=191.30.88.212 ...	2020-06-16 08:03:57
206.189.222.181	attack	2020-06-16T00:42:14.840546 sshd[9314]: Invalid user web from 206.189.222.181 port 60300 2020-06-16T00:42:14.854711 sshd[9314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.222.181 2020-06-16T00:42:14.840546 sshd[9314]: Invalid user web from 206.189.222.181 port 60300 2020-06-16T00:42:16.876841 sshd[9314]: Failed password for invalid user web from 206.189.222.181 port 60300 ssh2 ...	2020-06-16 07:50:12
188.81.40.115	attack	...	2020-06-16 08:02:30
106.54.253.41	attackspambots	SSH / Telnet Brute Force Attempts on Honeypot	2020-06-16 08:26:16

Recently Reported IPs

144.204.55.121	28.22.82.79	153.41.55.183	213.174.202.172
144.51.66.130	166.240.116.38	176.29.233.1	30.138.165.215
216.216.86.117	47.95.90.238	231.248.26.36	51.126.82.52
207.230.63.194	90.226.62.217	189.199.170.13	73.38.180.48
5.208.82.99	58.235.95.224	108.194.33.116	5.48.241.159