JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.252.251.158

122.252.251.158 was found in our database!

This IP was reported 49 times. Confidence of Abuse is 63%: ?

63%

ISP	HO: 403404, Madhava, Plot No.C-4,Bandra -Kurla Complex, Bandra East Mumbai
Usage Type	Fixed Line ISP
ASN	AS24186
Domain Name	railtelindia.com
Country	🇮🇳 India
City	Agra, Uttar Pradesh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.252.251.158

Whois 122.252.251.158

IP Abuse Reports for 122.252.251.158:

This IP address has been reported a total of 49 times from 23 distinct sources. 122.252.251.158 was first reported on April 25th 2022, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 bellovacorp	2026-06-28 00:16:50 (6 hours ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇫🇷 Entalpi.net	2026-06-25 05:41:06 (3 days ago)	Tried to hit sensible closed port commonly used in attacks	Port Scan Hacking
🇬🇧 Birdo	2026-06-24 16:50:09 (3 days ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇫🇷 bellovacorp	2026-06-24 00:08:01 (4 days ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇫🇷 bellovacorp	2026-06-21 00:56:38 (1 week ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇫🇷 bellovacorp	2026-06-20 00:29:31 (1 week ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇫🇷 bellovacorp	2026-06-19 00:17:17 (1 week ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇫🇷 sthoyer.de	2026-06-18 02:09:22 (1 week ago)	Jun 18 04:09:20 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 18 04:09:20 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=122.252.251.158 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=43 ID=4031 DF PROTO=TCP SPT=65460 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 Little Iguana	2026-06-18 02:08:10 (1 week ago)	trying to access non-authorized port	Port Scan
🇫🇷 sthoyer.de	2026-06-17 20:00:31 (1 week ago)	Jun 17 22:00:29 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 17 22:00:29 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=122.252.251.158 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=43 ID=27297 DF PROTO=TCP SPT=64494 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇦🇺 dyln	2026-06-15 07:02:53 (1 week ago)	Dyls honeypot brute-force: SMB (4 total hits)	Brute-Force
🇩🇪 Luhte	2026-06-14 18:04:03 (1 week ago)	Unsolicited TCP connection from 122.252.251.158 to port 0 at 2026-06-14T18:04:03Z. Source IP complet ... show more Unsolicited TCP connection from 122.252.251.158 to port 0 at 2026-06-14T18:04:03Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
🇫🇷 geeek	2026-06-13 01:03:17 (2 weeks ago)	Port scanning: 445 TCP Blocked	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-12 13:31:41 (2 weeks ago)	Honeypot hit: SMB traffic on port 445	IoT Targeted
🇹🇼 kk_it_man	2026-06-12 13:20:03 (2 weeks ago)	honey catch	Port Scan

Showing 1 to 15 of 49 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 59.26.193.177

🇫🇷 20.74.81.131

🇵🇱 194.180.49.220

🇵🇪 190.117.96.174

🇨🇳 81.71.138.131

🇳🇱 45.148.10.141

🇩🇪 45.135.193.193

🇷🇴 2.57.121.112

🇮🇳 223.185.22.140

🇨🇳 218.64.60.239

🇳🇱 193.25.217.247

🇺🇸 162.216.150.64

🇺🇸 154.92.22.13

🇺🇸 64.62.197.166

🇬🇧 35.203.211.118

🇺🇸 20.169.105.51

🇨🇳 8.137.106.77

🇷🇴 2.57.121.25

🇺🇸 172.233.221.115

🇸🇬 161.118.218.103