196.220.67.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Nigeria

Internet Service Provider: Ahmadu Bello University Zaria Nigeria

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	$f2bV_matches	2020-08-24 18:21:27
attackspam	$f2bV_matches	2020-07-17 19:32:42
attack	$f2bV_matches	2020-07-12 01:02:34
attackbots	Jun 9 08:37:54 ns382633 sshd\[16394\]: Invalid user eng from 196.220.67.2 port 37915 Jun 9 08:37:54 ns382633 sshd\[16394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Jun 9 08:37:56 ns382633 sshd\[16394\]: Failed password for invalid user eng from 196.220.67.2 port 37915 ssh2 Jun 9 08:49:20 ns382633 sshd\[18477\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 user=root Jun 9 08:49:22 ns382633 sshd\[18477\]: Failed password for root from 196.220.67.2 port 38581 ssh2	2020-06-09 15:02:43
attackbots	<6 unauthorized SSH connections	2020-06-03 16:05:54
attack	SSH Brute Force	2020-04-23 18:18:05
attack	Invalid user john from 196.220.67.2 port 52517	2020-04-17 14:19:15
attack	Apr 13 07:36:01 host01 sshd[18787]: Failed password for root from 196.220.67.2 port 34852 ssh2 Apr 13 07:41:15 host01 sshd[19849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Apr 13 07:41:17 host01 sshd[19849]: Failed password for invalid user sprocket from 196.220.67.2 port 59991 ssh2 ...	2020-04-13 13:43:27
attackspam	Apr 12 22:41:39 ks10 sshd[4063243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Apr 12 22:41:41 ks10 sshd[4063243]: Failed password for invalid user lian from 196.220.67.2 port 55580 ssh2 ...	2020-04-13 04:59:10
attackbotsspam	(sshd) Failed SSH login from 196.220.67.2 (NG/Nigeria/-): 5 in the last 3600 secs	2020-03-28 14:38:25
attackbots	Mar 12 08:52:51 ns41 sshd[30479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2	2020-03-12 17:01:39
attack	Mar 11 03:40:23 sd-53420 sshd\[12469\]: User root from 196.220.67.2 not allowed because none of user's groups are listed in AllowGroups Mar 11 03:40:23 sd-53420 sshd\[12469\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 user=root Mar 11 03:40:25 sd-53420 sshd\[12469\]: Failed password for invalid user root from 196.220.67.2 port 60855 ssh2 Mar 11 03:46:20 sd-53420 sshd\[13170\]: User root from 196.220.67.2 not allowed because none of user's groups are listed in AllowGroups Mar 11 03:46:20 sd-53420 sshd\[13170\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 user=root ...	2020-03-11 16:17:21
attackspambots	Feb 25 01:09:10 zeus sshd[4123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Feb 25 01:09:12 zeus sshd[4123]: Failed password for invalid user email from 196.220.67.2 port 58852 ssh2 Feb 25 01:15:21 zeus sshd[4272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Feb 25 01:15:23 zeus sshd[4272]: Failed password for invalid user magda from 196.220.67.2 port 59646 ssh2	2020-02-25 09:29:44
attackspam	Feb 18 14:54:42 legacy sshd[15882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Feb 18 14:54:44 legacy sshd[15882]: Failed password for invalid user phrae from 196.220.67.2 port 40441 ssh2 Feb 18 14:58:41 legacy sshd[16084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 ...	2020-02-18 22:00:54
attackspambots	Unauthorized connection attempt detected from IP address 196.220.67.2 to port 2220 [J]	2020-01-16 03:22:16
attackbotsspam	Jan 8 06:16:51 localhost sshd\[18944\]: Invalid user bot from 196.220.67.2 port 43726 Jan 8 06:16:51 localhost sshd\[18944\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Jan 8 06:16:53 localhost sshd\[18944\]: Failed password for invalid user bot from 196.220.67.2 port 43726 ssh2	2020-01-08 13:39:50
attackbotsspam	Jan 1 18:56:26 web9 sshd\[23311\]: Invalid user cepeda from 196.220.67.2 Jan 1 18:56:26 web9 sshd\[23311\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 Jan 1 18:56:28 web9 sshd\[23311\]: Failed password for invalid user cepeda from 196.220.67.2 port 52999 ssh2 Jan 1 18:59:17 web9 sshd\[23731\]: Invalid user harizan from 196.220.67.2 Jan 1 18:59:17 web9 sshd\[23731\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2	2020-01-02 13:20:08
attack	"SSH brute force auth login attempt."	2019-12-25 04:50:24
attackspambots	Aug 18 08:02:00 mail sshd\[32051\]: Invalid user 777 from 196.220.67.2 port 48485 Aug 18 08:02:00 mail sshd\[32051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.220.67.2 ...	2019-08-18 20:00:49

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.220.67.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25132
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;196.220.67.2.			IN	A

;; AUTHORITY SECTION:
.			2647	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052701 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue May 28 10:27:21 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 2.67.220.196.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 2.67.220.196.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
170.210.214.50	attackspambots	2020-03-06T04:56:12.949383abusebot-6.cloudsearch.cf sshd[26058]: Invalid user myftp from 170.210.214.50 port 53012 2020-03-06T04:56:12.955621abusebot-6.cloudsearch.cf sshd[26058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.210.214.50 2020-03-06T04:56:12.949383abusebot-6.cloudsearch.cf sshd[26058]: Invalid user myftp from 170.210.214.50 port 53012 2020-03-06T04:56:15.040870abusebot-6.cloudsearch.cf sshd[26058]: Failed password for invalid user myftp from 170.210.214.50 port 53012 ssh2 2020-03-06T04:59:06.164024abusebot-6.cloudsearch.cf sshd[26246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.210.214.50 user=root 2020-03-06T04:59:08.134256abusebot-6.cloudsearch.cf sshd[26246]: Failed password for root from 170.210.214.50 port 39030 ssh2 2020-03-06T05:03:20.872397abusebot-6.cloudsearch.cf sshd[26472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170. ...	2020-03-06 14:39:42
197.248.223.142	attackspambots	Repeated RDP login failures. Last user: Teste	2020-03-06 14:12:04
222.186.173.180	attack	detected by Fail2Ban	2020-03-06 14:24:41
222.186.180.130	attackspam	Mar 6 11:28:44 areeb-Workstation sshd[5009]: Failed password for root from 222.186.180.130 port 19833 ssh2 Mar 6 11:28:47 areeb-Workstation sshd[5009]: Failed password for root from 222.186.180.130 port 19833 ssh2 ...	2020-03-06 14:01:17
104.217.86.130	attackspambots	2020-03-06T04:58:04.628604homeassistant sshd[29157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.217.86.130 user=root 2020-03-06T04:58:06.423918homeassistant sshd[29157]: Failed password for root from 104.217.86.130 port 39290 ssh2 ...	2020-03-06 14:16:07
80.82.70.239	attack	03/06/2020-01:15:33.904805 80.82.70.239 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 82	2020-03-06 14:22:35
95.128.137.176	attack	Mar 6 11:22:35 gw1 sshd[25856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.128.137.176 Mar 6 11:22:37 gw1 sshd[25856]: Failed password for invalid user debian-spamd from 95.128.137.176 port 60965 ssh2 ...	2020-03-06 14:41:17
117.4.240.104	attackbots	Mar 6 06:39:05 srv01 sshd[17220]: Invalid user timesheet from 117.4.240.104 port 52914 Mar 6 06:39:05 srv01 sshd[17220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.4.240.104 Mar 6 06:39:05 srv01 sshd[17220]: Invalid user timesheet from 117.4.240.104 port 52914 Mar 6 06:39:07 srv01 sshd[17220]: Failed password for invalid user timesheet from 117.4.240.104 port 52914 ssh2 Mar 6 06:48:54 srv01 sshd[25288]: Invalid user tssuser from 117.4.240.104 port 36676 ...	2020-03-06 14:01:43
222.186.190.17	attackbots	Mar 6 07:13:43 vps691689 sshd[8813]: Failed password for root from 222.186.190.17 port 55477 ssh2 Mar 6 07:13:45 vps691689 sshd[8813]: Failed password for root from 222.186.190.17 port 55477 ssh2 Mar 6 07:13:47 vps691689 sshd[8813]: Failed password for root from 222.186.190.17 port 55477 ssh2 ...	2020-03-06 14:19:03
36.75.136.57	attackbotsspam	20/3/5@23:57:41: FAIL: Alarm-Network address from=36.75.136.57 ...	2020-03-06 14:37:05
68.183.155.33	attackbots	Invalid user des from 68.183.155.33 port 42082	2020-03-06 14:13:10
66.70.173.63	attack	Mar 6 06:59:58 sso sshd[29532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.173.63 Mar 6 07:00:00 sso sshd[29532]: Failed password for invalid user xiaoshengchang from 66.70.173.63 port 55925 ssh2 ...	2020-03-06 14:33:26
14.248.61.84	attackbots	2020-03-0605:56:331jA52G-000421-Rh\<=verena@rs-solution.chH=$localhost$[206.214.7.173]:49694P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2282id=CDC87E2D26F2DC6FB3B6FF47B34C6C52@rs-solution.chT="Justchosetogettoknowyou"forjaidinmair95@gmail.comkerdinc1986@outlook.com2020-03-0605:56:001jA51j-0003zg-Bq\<=verena@rs-solution.chH=static-170-246-152-182.ideay.net.ni$localhost$[170.246.152.182]:55487P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2304id=5257E1B2B96D43F02C2960D82C6BF4A3@rs-solution.chT="Youhappentobelookingforlove\?"forkevinbuchholtz22@gmail.comsex20juicy@gmail.com2020-03-0605:57:261jA537-00047L-Ms\<=verena@rs-solution.chH=$localhost$[14.169.109.42]:33100P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2275id=383D8BD8D307299A46430AB24608E45B@rs-solution.chT="Onlyneedjustabitofyourattention"forjrealmusic309@gmail.comphillipacodd66@gmail.com2020-03-0605:56:	2020-03-06 14:40:53
200.52.80.34	attackbotsspam	2020-03-06T05:44:16.616661shield sshd\[3935\]: Invalid user ethos from 200.52.80.34 port 55416 2020-03-06T05:44:16.626575shield sshd\[3935\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.52.80.34 2020-03-06T05:44:18.300197shield sshd\[3935\]: Failed password for invalid user ethos from 200.52.80.34 port 55416 ssh2 2020-03-06T05:48:08.075268shield sshd\[4903\]: Invalid user list from 200.52.80.34 port 37816 2020-03-06T05:48:08.080327shield sshd\[4903\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.52.80.34	2020-03-06 14:15:32
121.182.166.81	attackspambots	Mar 6 05:48:00 MainVPS sshd[3023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.182.166.81 user=root Mar 6 05:48:02 MainVPS sshd[3023]: Failed password for root from 121.182.166.81 port 14116 ssh2 Mar 6 05:52:54 MainVPS sshd[12886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.182.166.81 user=root Mar 6 05:52:56 MainVPS sshd[12886]: Failed password for root from 121.182.166.81 port 31439 ssh2 Mar 6 05:57:48 MainVPS sshd[21940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.182.166.81 user=root Mar 6 05:57:50 MainVPS sshd[21940]: Failed password for root from 121.182.166.81 port 48764 ssh2 ...	2020-03-06 14:29:38

Recently Reported IPs

213.232.105.130	29.78.237.225	2001:41d0:a:4d90::	81.242.6.36
91.217.4.74	66.240.130.242	212.19.8.179	61.212.118.131
208.241.11.53	118.127.10.152	167.129.63.74	29.185.3.172
96.16.203.230	99.244.152.132	241.42.30.4	33.163.101.200
236.237.80.119	132.240.114.32	193.0.204.73	154.5.41.26