This IP address has been reported a total of
89
times from
58 distinct
sources.
222.133.52.246 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
SSH brute-force attack detected via Cowrie SSH honeypot. Tried 1 credential combination(s) including ...
show moreSSH brute-force attack detected via Cowrie SSH honeypot. Tried 1 credential combination(s) including username="root". Automated report from Olympus SOC.
show less
2026-07-15T00:46:43.014680+00:00 polaris2 sshd-session[3928759]: Failed password for root from 222.1 ...
show more2026-07-15T00:46:43.014680+00:00 polaris2 sshd-session[3928759]: Failed password for root from 222.133.52.246 port 49899 ssh2
2026-07-15T12:00:03.054057+00:00 polaris2 sshd-session[41599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.133.52.246 user=root
2026-07-15T12:00:05.261489+00:00 polaris2 sshd-session[41599]: Failed password for root from 222.133.52.246 port 53472 ssh2
...
show less
2026-07-15T00:55:16.510021+02:00 adycoaduanas sshd[2087645]: User root from 222.133.52.246 not allow ...
show more2026-07-15T00:55:16.510021+02:00 adycoaduanas sshd[2087645]: User root from 222.133.52.246 not allowed because not listed in AllowUsers
2026-07-15T00:55:16.785581+02:00 adycoaduanas sshd[2087645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.133.52.246 user=root
2026-07-15T00:55:18.899487+02:00 adycoaduanas sshd[2087645]: Failed password for invalid user root from 222.133.52.246 port 33319 ssh2
...
show less
2026-07-15T00:51:38.895652+02:00 vm1386.de.snk.wtf sshd[99822]: Failed password for root from 222.13 ...
show more2026-07-15T00:51:38.895652+02:00 vm1386.de.snk.wtf sshd[99822]: Failed password for root from 222.133.52.246 port 54155 ssh2
2026-07-15T00:51:40.742199+02:00 vm1386.de.snk.wtf sshd[99822]: Connection closed by authenticating user root 222.133.52.246 port 54155 [preauth]
...
show less
Brute-Force
SSH
Showing 1 to
15
of 89 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ