Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 204.196.161.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9502
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;204.196.161.2.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012400 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 22:55:30 CST 2025
;; MSG SIZE  rcvd: 106
Host info
b'Host 2.161.196.204.in-addr.arpa not found: 2(SERVFAIL)
'
Nslookup info:
server can't find 204.196.161.2.in-addr.arpa: SERVFAIL
Related IP info:
Related comments:
IP Type Details Datetime
114.67.95.61 attackspambots
2020-10-11T12:57:13.404480mail.broermann.family sshd[15142]: Failed password for invalid user alyson from 114.67.95.61 port 52468 ssh2
2020-10-11T13:01:49.123984mail.broermann.family sshd[15559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.95.61  user=root
2020-10-11T13:01:51.236570mail.broermann.family sshd[15559]: Failed password for root from 114.67.95.61 port 44900 ssh2
2020-10-11T13:06:25.512716mail.broermann.family sshd[15944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.95.61  user=root
2020-10-11T13:06:27.513920mail.broermann.family sshd[15944]: Failed password for root from 114.67.95.61 port 37328 ssh2
...
2020-10-12 00:55:49
218.92.0.247 attackspambots
Oct 11 18:05:03 eventyay sshd[9837]: Failed password for root from 218.92.0.247 port 56528 ssh2
Oct 11 18:05:14 eventyay sshd[9837]: Failed password for root from 218.92.0.247 port 56528 ssh2
Oct 11 18:05:17 eventyay sshd[9837]: Failed password for root from 218.92.0.247 port 56528 ssh2
Oct 11 18:05:17 eventyay sshd[9837]: error: maximum authentication attempts exceeded for root from 218.92.0.247 port 56528 ssh2 [preauth]
...
2020-10-12 00:17:02
83.227.11.180 attackbots
Port Scan: TCP/443
2020-10-12 00:25:21
159.89.38.228 attack
Oct 11 18:14:14 lnxweb61 sshd[10261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.38.228
Oct 11 18:14:16 lnxweb61 sshd[10261]: Failed password for invalid user coco from 159.89.38.228 port 32858 ssh2
Oct 11 18:22:22 lnxweb61 sshd[17182]: Failed password for root from 159.89.38.228 port 52758 ssh2
2020-10-12 00:49:40
186.93.220.199 attackspam
Unauthorized connection attempt from IP address 186.93.220.199 on Port 445(SMB)
2020-10-12 00:34:19
207.46.13.79 attack
Automatic report - Banned IP Access
2020-10-12 00:45:13
51.255.47.133 attackbots
Oct 11 18:41:33 ift sshd\[52273\]: Failed password for root from 51.255.47.133 port 43328 ssh2Oct 11 18:45:12 ift sshd\[52997\]: Invalid user leslie from 51.255.47.133Oct 11 18:45:14 ift sshd\[52997\]: Failed password for invalid user leslie from 51.255.47.133 port 49372 ssh2Oct 11 18:48:47 ift sshd\[53538\]: Invalid user katharina from 51.255.47.133Oct 11 18:48:49 ift sshd\[53538\]: Failed password for invalid user katharina from 51.255.47.133 port 55422 ssh2
...
2020-10-12 00:32:23
185.191.171.5 attackspambots
[Sun Oct 11 21:41:03.420359 2020] [:error] [pid 18452:tid 139823893391104] [client 185.191.171.5:57168] [client 185.191.171.5] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "SemrushBot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "181"] [id "913102"] [msg "Found User-Agent associated with web crawler/bot"] [data "Matched Data: SemrushBot found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; semrushbot/6~bl; +http://www.semrush.com/bot.html)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-crawler"] [tag "OWASP_CRS"] [tag "capec/1000/118/224/541/310"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/analisis-bulanan/182-analisis-distribusi-hujan/analisis-distribusi-sifat-hujan/analisis-distribusi-sifat-hujan-malang-bulanan/analisis
...
2020-10-12 00:35:52
103.152.21.140 attack
Port Scan
...
2020-10-12 00:44:24
103.81.114.103 attackspam
Unauthorized connection attempt from IP address 103.81.114.103 on Port 445(SMB)
2020-10-12 00:18:05
218.92.0.171 attackbots
Oct 11 16:02:25 Ubuntu-1404-trusty-64-minimal sshd\[26392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171  user=root
Oct 11 16:02:27 Ubuntu-1404-trusty-64-minimal sshd\[26392\]: Failed password for root from 218.92.0.171 port 34738 ssh2
Oct 11 18:39:33 Ubuntu-1404-trusty-64-minimal sshd\[27642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171  user=root
Oct 11 18:39:35 Ubuntu-1404-trusty-64-minimal sshd\[27642\]: Failed password for root from 218.92.0.171 port 20831 ssh2
Oct 11 18:39:58 Ubuntu-1404-trusty-64-minimal sshd\[27710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171  user=root
2020-10-12 00:43:40
112.85.42.230 attackspam
2020-10-11T18:38:57.381174vps773228.ovh.net sshd[2380]: Failed password for root from 112.85.42.230 port 10544 ssh2
2020-10-11T18:39:00.674466vps773228.ovh.net sshd[2380]: Failed password for root from 112.85.42.230 port 10544 ssh2
2020-10-11T18:39:03.520737vps773228.ovh.net sshd[2380]: Failed password for root from 112.85.42.230 port 10544 ssh2
2020-10-11T18:39:06.637905vps773228.ovh.net sshd[2380]: Failed password for root from 112.85.42.230 port 10544 ssh2
2020-10-11T18:39:09.966775vps773228.ovh.net sshd[2380]: Failed password for root from 112.85.42.230 port 10544 ssh2
...
2020-10-12 00:39:41
58.56.40.210 attackspam
SSH login attempts.
2020-10-12 01:01:33
207.154.242.155 attackspam
Oct 11 06:25:02 pixelmemory sshd[2295380]: Invalid user nicusor from 207.154.242.155 port 57086
Oct 11 06:25:02 pixelmemory sshd[2295380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.242.155 
Oct 11 06:25:02 pixelmemory sshd[2295380]: Invalid user nicusor from 207.154.242.155 port 57086
Oct 11 06:25:04 pixelmemory sshd[2295380]: Failed password for invalid user nicusor from 207.154.242.155 port 57086 ssh2
Oct 11 06:30:04 pixelmemory sshd[2315442]: Invalid user heinz from 207.154.242.155 port 35172
...
2020-10-12 00:22:11
49.88.112.116 attack
Oct 11 08:22:35 dcd-gentoo sshd[10623]: User root from 49.88.112.116 not allowed because none of user's groups are listed in AllowGroups
Oct 11 08:22:39 dcd-gentoo sshd[10623]: error: PAM: Authentication failure for illegal user root from 49.88.112.116
Oct 11 08:22:39 dcd-gentoo sshd[10623]: Failed keyboard-interactive/pam for invalid user root from 49.88.112.116 port 23192 ssh2
...
2020-10-12 00:52:47

Recently Reported IPs

140.108.235.8 133.71.120.119 72.115.206.164 43.54.127.11
123.244.241.79 218.184.49.187 63.95.214.174 9.244.7.93
137.161.119.144 192.123.155.186 53.141.52.142 54.122.192.174
178.176.57.205 83.47.191.78 61.177.42.52 22.85.146.205
88.16.146.133 90.63.176.104 141.88.190.216 119.212.191.130