196.220.67.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Nigeria

Internet Service Provider: Ahmadu Bello University Zaria Nigeria

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	$f2bV_matches	2020-08-24 18:21:27
attackspam	$f2bV_matches	2020-07-17 19:32:42
attack	$f2bV_matches	2020-07-12 01:02:34
attackbots	Jun 9 08:37:54 ns382633 sshd\[16394\]: Invalid user eng from 196.220.67.2 port 37915 Jun 9 08:37:54 ns382633 sshd\[16394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Jun 9 08:37:56 ns382633 sshd\[16394\]: Failed password for invalid user eng from 196.220.67.2 port 37915 ssh2 Jun 9 08:49:20 ns382633 sshd\[18477\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 user=root Jun 9 08:49:22 ns382633 sshd\[18477\]: Failed password for root from 196.220.67.2 port 38581 ssh2	2020-06-09 15:02:43
attackbots	<6 unauthorized SSH connections	2020-06-03 16:05:54
attack	SSH Brute Force	2020-04-23 18:18:05
attack	Invalid user john from 196.220.67.2 port 52517	2020-04-17 14:19:15
attack	Apr 13 07:36:01 host01 sshd[18787]: Failed password for root from 196.220.67.2 port 34852 ssh2 Apr 13 07:41:15 host01 sshd[19849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Apr 13 07:41:17 host01 sshd[19849]: Failed password for invalid user sprocket from 196.220.67.2 port 59991 ssh2 ...	2020-04-13 13:43:27
attackspam	Apr 12 22:41:39 ks10 sshd[4063243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Apr 12 22:41:41 ks10 sshd[4063243]: Failed password for invalid user lian from 196.220.67.2 port 55580 ssh2 ...	2020-04-13 04:59:10
attackbotsspam	(sshd) Failed SSH login from 196.220.67.2 (NG/Nigeria/-): 5 in the last 3600 secs	2020-03-28 14:38:25
attackbots	Mar 12 08:52:51 ns41 sshd[30479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2	2020-03-12 17:01:39
attack	Mar 11 03:40:23 sd-53420 sshd\[12469\]: User root from 196.220.67.2 not allowed because none of user's groups are listed in AllowGroups Mar 11 03:40:23 sd-53420 sshd\[12469\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 user=root Mar 11 03:40:25 sd-53420 sshd\[12469\]: Failed password for invalid user root from 196.220.67.2 port 60855 ssh2 Mar 11 03:46:20 sd-53420 sshd\[13170\]: User root from 196.220.67.2 not allowed because none of user's groups are listed in AllowGroups Mar 11 03:46:20 sd-53420 sshd\[13170\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 user=root ...	2020-03-11 16:17:21
attackspambots	Feb 25 01:09:10 zeus sshd[4123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Feb 25 01:09:12 zeus sshd[4123]: Failed password for invalid user email from 196.220.67.2 port 58852 ssh2 Feb 25 01:15:21 zeus sshd[4272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Feb 25 01:15:23 zeus sshd[4272]: Failed password for invalid user magda from 196.220.67.2 port 59646 ssh2	2020-02-25 09:29:44
attackspam	Feb 18 14:54:42 legacy sshd[15882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Feb 18 14:54:44 legacy sshd[15882]: Failed password for invalid user phrae from 196.220.67.2 port 40441 ssh2 Feb 18 14:58:41 legacy sshd[16084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 ...	2020-02-18 22:00:54
attackspambots	Unauthorized connection attempt detected from IP address 196.220.67.2 to port 2220 [J]	2020-01-16 03:22:16
attackbotsspam	Jan 8 06:16:51 localhost sshd\[18944\]: Invalid user bot from 196.220.67.2 port 43726 Jan 8 06:16:51 localhost sshd\[18944\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Jan 8 06:16:53 localhost sshd\[18944\]: Failed password for invalid user bot from 196.220.67.2 port 43726 ssh2	2020-01-08 13:39:50
attackbotsspam	Jan 1 18:56:26 web9 sshd\[23311\]: Invalid user cepeda from 196.220.67.2 Jan 1 18:56:26 web9 sshd\[23311\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Jan 1 18:56:28 web9 sshd\[23311\]: Failed password for invalid user cepeda from 196.220.67.2 port 52999 ssh2 Jan 1 18:59:17 web9 sshd\[23731\]: Invalid user harizan from 196.220.67.2 Jan 1 18:59:17 web9 sshd\[23731\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2	2020-01-02 13:20:08
attack	"SSH brute force auth login attempt."	2019-12-25 04:50:24
attackspambots	Aug 18 08:02:00 mail sshd\[32051\]: Invalid user 777 from 196.220.67.2 port 48485 Aug 18 08:02:00 mail sshd\[32051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 ...	2019-08-18 20:00:49

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.220.67.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25132
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;196.220.67.2.			IN	A

;; AUTHORITY SECTION:
.			2647	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052701 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue May 28 10:27:21 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 2.67.220.196.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 2.67.220.196.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.180	attackbotsspam	Aug 7 00:51:47 dedicated sshd[1361]: Failed password for root from 218.92.0.180 port 30790 ssh2 Aug 7 00:51:55 dedicated sshd[1361]: Failed password for root from 218.92.0.180 port 30790 ssh2 Aug 7 00:51:58 dedicated sshd[1361]: Failed password for root from 218.92.0.180 port 30790 ssh2 Aug 7 00:52:05 dedicated sshd[1361]: Failed password for root from 218.92.0.180 port 30790 ssh2 Aug 7 00:52:07 dedicated sshd[1361]: Failed password for root from 218.92.0.180 port 30790 ssh2	2019-08-07 07:58:57
167.71.56.222	attackspam	Aug 2 15:52:33 microserver sshd[4463]: Invalid user admin from 167.71.56.222 port 39340 Aug 2 15:52:33 microserver sshd[4463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.56.222 Aug 2 15:52:35 microserver sshd[4463]: Failed password for invalid user admin from 167.71.56.222 port 39340 ssh2 Aug 2 15:52:37 microserver sshd[4463]: Failed password for invalid user admin from 167.71.56.222 port 39340 ssh2 Aug 2 15:52:40 microserver sshd[4468]: Invalid user cloudera from 167.71.56.222 port 42664 Aug 2 23:04:36 microserver sshd[2539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.56.222 user=root Aug 2 23:04:37 microserver sshd[2539]: Failed password for root from 167.71.56.222 port 44860 ssh2 Aug 2 23:04:40 microserver sshd[2539]: Failed password for root from 167.71.56.222 port 44860 ssh2 Aug 2 23:04:43 microserver sshd[2539]: Failed password for root from 167.71.56.222 port 44860 ssh2 Aug 2 23:04:46 micr	2019-08-07 07:21:54
123.11.170.23	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2019-08-07 07:42:43
23.94.16.72	attackbots	2019-08-06T18:49:09.254354mizuno.rwx.ovh sshd[22578]: Connection from 23.94.16.72 port 41212 on 78.46.61.178 port 22 2019-08-06T18:49:10.096353mizuno.rwx.ovh sshd[22578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.16.72 user=git 2019-08-06T18:49:11.769929mizuno.rwx.ovh sshd[22578]: Failed password for git from 23.94.16.72 port 41212 ssh2 2019-08-06T19:14:38.093592mizuno.rwx.ovh sshd[28186]: Connection from 23.94.16.72 port 41588 on 78.46.61.178 port 22 2019-08-06T19:14:38.832774mizuno.rwx.ovh sshd[28186]: Invalid user hduser from 23.94.16.72 port 41588 ...	2019-08-07 07:18:28
82.119.100.182	attackbotsspam	Aug 7 01:23:51 dedicated sshd[5208]: Invalid user jmulholland from 82.119.100.182 port 60097	2019-08-07 07:50:57
106.12.108.23	attackspam	Aug 7 01:40:14 OPSO sshd\[28881\]: Invalid user web from 106.12.108.23 port 49560 Aug 7 01:40:14 OPSO sshd\[28881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.108.23 Aug 7 01:40:17 OPSO sshd\[28881\]: Failed password for invalid user web from 106.12.108.23 port 49560 ssh2 Aug 7 01:45:10 OPSO sshd\[29357\]: Invalid user library from 106.12.108.23 port 41520 Aug 7 01:45:10 OPSO sshd\[29357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.108.23	2019-08-07 08:03:49
165.22.21.225	attackspambots	06.08.2019 23:48:20 - Login Fail on hMailserver Detected by ELinOX-hMail-A2F	2019-08-07 07:10:28
179.182.118.23	attack	Automatic report - Port Scan Attack	2019-08-07 07:37:28
203.95.212.41	attackbots	Aug 7 00:52:47 mail sshd\[13340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.95.212.41 user=root Aug 7 00:52:50 mail sshd\[13340\]: Failed password for root from 203.95.212.41 port 38129 ssh2 Aug 7 01:01:14 mail sshd\[14616\]: Invalid user rezvie from 203.95.212.41 port 63613 Aug 7 01:01:14 mail sshd\[14616\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.95.212.41 Aug 7 01:01:16 mail sshd\[14616\]: Failed password for invalid user rezvie from 203.95.212.41 port 63613 ssh2	2019-08-07 07:44:42
118.25.128.19	attackspambots	Aug 7 00:31:00 apollo sshd\[11430\]: Invalid user radiusd from 118.25.128.19Aug 7 00:31:02 apollo sshd\[11430\]: Failed password for invalid user radiusd from 118.25.128.19 port 35010 ssh2Aug 7 00:46:39 apollo sshd\[11702\]: Invalid user marketing from 118.25.128.19 ...	2019-08-07 07:20:36
46.237.34.107	attackspam	Aug 6 17:46:46 vps200512 sshd\[26470\]: Invalid user admin from 46.237.34.107 Aug 6 17:46:46 vps200512 sshd\[26470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.237.34.107 Aug 6 17:46:48 vps200512 sshd\[26470\]: Failed password for invalid user admin from 46.237.34.107 port 38494 ssh2 Aug 6 17:46:50 vps200512 sshd\[26470\]: Failed password for invalid user admin from 46.237.34.107 port 38494 ssh2 Aug 6 17:46:52 vps200512 sshd\[26470\]: Failed password for invalid user admin from 46.237.34.107 port 38494 ssh2	2019-08-07 07:48:40
195.154.200.43	attackbotsspam	SSH bruteforce (Triggered fail2ban)	2019-08-07 07:50:08
142.93.18.15	attackspam	Aug 6 21:48:05 MK-Soft-VM6 sshd\[12859\]: Invalid user hera from 142.93.18.15 port 55267 Aug 6 21:48:05 MK-Soft-VM6 sshd\[12859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.18.15 Aug 6 21:48:06 MK-Soft-VM6 sshd\[12859\]: Failed password for invalid user hera from 142.93.18.15 port 55267 ssh2 ...	2019-08-07 07:15:09
174.138.26.48	attackbotsspam	Aug 6 19:32:50 TORMINT sshd\[2401\]: Invalid user dst from 174.138.26.48 Aug 6 19:32:50 TORMINT sshd\[2401\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.26.48 Aug 6 19:32:52 TORMINT sshd\[2401\]: Failed password for invalid user dst from 174.138.26.48 port 44760 ssh2 ...	2019-08-07 07:42:17
177.184.189.199	attackspam	Aug 6 23:34:56 estefan sshd[15605]: reveeclipse mapping checking getaddrinfo for 177-184-189-199.netcartelecom.com.br [177.184.189.199] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 6 23:34:56 estefan sshd[15605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.184.189.199 user=r.r Aug 6 23:34:58 estefan sshd[15605]: Failed password for r.r from 177.184.189.199 port 37646 ssh2 Aug 6 23:35:01 estefan sshd[15605]: Failed password for r.r from 177.184.189.199 port 37646 ssh2 Aug 6 23:35:01 estefan sshd[15605]: PAM 1 more authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.184.189.199 user=r.r Aug 6 23:35:09 estefan sshd[15616]: reveeclipse mapping checking getaddrinfo for 177-184-189-199.netcartelecom.com.br [177.184.189.199] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 6 23:35:09 estefan sshd[15616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.184.189.199 user=r.r........ -------------------------------	2019-08-07 07:38:06

Recently Reported IPs

213.232.105.130	29.78.237.225	2001:41d0:a:4d90::	81.242.6.36
91.217.4.74	66.240.130.242	212.19.8.179	61.212.118.131
208.241.11.53	118.127.10.152	167.129.63.74	29.185.3.172
96.16.203.230	99.244.152.132	241.42.30.4	33.163.101.200
236.237.80.119	132.240.114.32	193.0.204.73	154.5.41.26