161.142.208.198

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
161.142.208.31	attack	Unauthorized connection attempt detected from IP address 161.142.208.31 to port 5555 [J]	2020-01-07 19:19:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 161.142.208.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62289
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;161.142.208.198.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 14:56:57 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 198.208.142.161.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 198.208.142.161.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.99.10.122	attackspam	11/03/2019-05:23:21.887582 192.99.10.122 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-03 18:31:43
213.32.18.189	attackspam	Nov 3 06:46:20 bouncer sshd\[23436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.18.189 user=root Nov 3 06:46:23 bouncer sshd\[23436\]: Failed password for root from 213.32.18.189 port 58192 ssh2 Nov 3 06:49:59 bouncer sshd\[23498\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.18.189 user=root ...	2019-11-03 18:50:15
153.214.188.144	attackbots	8080/tcp [2019-11-03]1pkt	2019-11-03 18:30:05
80.78.240.76	attackbots	Nov 3 05:45:10 localhost sshd[14674]: Failed password for root from 80.78.240.76 port 59538 ssh2 Nov 3 05:48:55 localhost sshd[14812]: Invalid user hadoop from 80.78.240.76 port 50443 Nov 3 05:48:55 localhost sshd[14812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.78.240.76 Nov 3 05:48:55 localhost sshd[14812]: Invalid user hadoop from 80.78.240.76 port 50443 Nov 3 05:48:57 localhost sshd[14812]: Failed password for invalid user hadoop from 80.78.240.76 port 50443 ssh2	2019-11-03 18:52:54
45.136.109.95	attackbotsspam	11/03/2019-11:55:51.453575 45.136.109.95 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 42	2019-11-03 18:59:57
45.125.63.46	attack	postfix (unknown user, SPF fail or relay access denied)	2019-11-03 18:57:30
36.248.168.111	attack	23/tcp [2019-11-03]1pkt	2019-11-03 18:45:56
213.92.186.31	attackbots	Nov 3 11:57:21 dcd-gentoo sshd[1967]: Invalid user ftpuser from 213.92.186.31 port 38482 Nov 3 11:57:24 dcd-gentoo sshd[1967]: error: PAM: Authentication failure for illegal user ftpuser from 213.92.186.31 Nov 3 11:57:21 dcd-gentoo sshd[1967]: Invalid user ftpuser from 213.92.186.31 port 38482 Nov 3 11:57:24 dcd-gentoo sshd[1967]: error: PAM: Authentication failure for illegal user ftpuser from 213.92.186.31 Nov 3 11:57:21 dcd-gentoo sshd[1967]: Invalid user ftpuser from 213.92.186.31 port 38482 Nov 3 11:57:24 dcd-gentoo sshd[1967]: error: PAM: Authentication failure for illegal user ftpuser from 213.92.186.31 Nov 3 11:57:24 dcd-gentoo sshd[1967]: Failed keyboard-interactive/pam for invalid user ftpuser from 213.92.186.31 port 38482 ssh2 ...	2019-11-03 19:04:14
112.133.237.7	attack	Unauthorised access (Nov 3) SRC=112.133.237.7 LEN=52 TTL=108 ID=25505 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-03 18:32:47
103.28.57.86	attackspam	Nov 3 11:32:35 nextcloud sshd\[22711\]: Invalid user admin from 103.28.57.86 Nov 3 11:32:35 nextcloud sshd\[22711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.57.86 Nov 3 11:32:37 nextcloud sshd\[22711\]: Failed password for invalid user admin from 103.28.57.86 port 64279 ssh2 ...	2019-11-03 18:50:36
106.12.130.171	attackspam	8088/tcp 1433/tcp 9200/tcp... [2019-11-03]17pkt,9pt.(tcp)	2019-11-03 18:59:16
186.185.206.28	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 03-11-2019 05:50:21.	2019-11-03 18:26:01
209.97.128.119	attack	SMTP/25/465/587 Probe, BadAuth, SPAM, Hack -	2019-11-03 18:47:44
85.93.20.84	attackbots	191103 8:53:09 \[Warning\] Access denied for user 'root'@'85.93.20.84' \(using password: YES\) 191103 8:58:17 \[Warning\] Access denied for user 'root'@'85.93.20.84' \(using password: YES\) 191103 9:03:26 \[Warning\] Access denied for user 'root'@'85.93.20.84' \(using password: YES\) ...	2019-11-03 18:55:19
187.113.170.73	attackspam	23/tcp [2019-11-03]1pkt	2019-11-03 18:54:44

Recently Reported IPs

161.142.249.167	161.142.167.250	161.132.239.92	161.18.207.80
161.18.49.105	161.18.218.219	161.189.86.57	161.22.22.108
161.199.88.103	161.35.102.139	161.22.34.86	161.22.33.170
161.35.106.58	161.22.29.236	161.22.0.65	161.230.17.57
161.232.15.3	161.35.123.46	161.35.121.221	161.35.128.190