JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.112.36.4

192.112.36.4 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 3%: ?

ISP	DoD Network Information Center
Usage Type	Government
ASN	AS5927
Hostname(s)	G.ROOT-SERVERS.NET
Domain Name	mail.mil
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.112.36.4

Whois 192.112.36.4

IP Abuse Reports for 192.112.36.4:

This IP address has been reported a total of 34 times from 23 distinct sources. 192.112.36.4 was first reported on October 27th 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-04 04:59:07 (1 week ago)	06/04/2026-11:58:40.059615 [Drop] [] [1:920690:1] Suricata EXTERNAL Koneksi UDP Selain Port Named ... show more 06/04/2026-11:58:40.059615 [Drop] [] [1:920690:1] Suricata EXTERNAL Koneksi UDP Selain Port Named 53 [**] [Classification: Attempted Information Leak] [Priority: 3] {UDP} 192.112.36.4:53 -> 103.166.156.58:2546 ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-04-22 12:08:16 (1 month ago)	04/22/2026-19:08:13.293085 [Drop] [] [1:920690:1] Suricata EXTERNAL Koneksi UDP Selain Port Named ... show more 04/22/2026-19:08:13.293085 [Drop] [] [1:920690:1] Suricata EXTERNAL Koneksi UDP Selain Port Named 53 [**] [Classification: Attempted Information Leak] [Priority: 3] {UDP} 192.112.36.4:53 -> 103.166.156.58:41106 ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-04-01 16:55:14 (2 months ago)	04/01/2026-23:50:58.202041 [Drop] [] [1:920690:1] EXTERNAL Koneksi UDP Selain Port Named 53 [] ... show more 04/01/2026-23:50:58.202041 [Drop] [] [1:920690:1] EXTERNAL Koneksi UDP Selain Port Named 53 [] [Classification: Attempted Information Leak] [Priority: 3] {UDP} 192.112.36.4:53 -> 103.166.156.58:4420 ... show less	Email Spam Hacking
🇺🇸 IvyBayAdmin	2026-03-31 01:47:46 (2 months ago)	Manual security ban for 192.112.36.4 based on jail rules.	Hacking Bad Web Bot Web App Attack
🇺🇸 IvyBayAdmin	2026-03-29 09:34:07 (2 months ago)	03/29/2026-02:34:07.114680 [] SURICATA STREAM 3way handshake SYN/ACK ignored TFO data [] [Classi ... show more 03/29/2026-02:34:07.114680 [] SURICATA STREAM 3way handshake SYN/ACK ignored TFO data [] [Classification: Generic Protocol Command Decode] [Priority: 3] {TCP} [IP]:53 -> [IP]:49676 show less	Hacking Bad Web Bot Web App Attack
🇺🇸 IvyBayAdmin	2026-03-26 21:10:08 (2 months ago)	Manual security ban for 192.112.36.4 based on jail rules.	Hacking Bad Web Bot Web App Attack
🇦🇺 marcusc007	2026-03-07 14:40:00 (3 months ago)	DNS client buffer overrun	Port Scan
🇪🇸 Z\|ntrueñigO	2026-03-02 15:17:11 (3 months ago)	Auto-report. Hits=213, Ports=33528,37520,37612,38082,38086,39252,39366,39402,39422,39448, +64 more, ... show more Auto-report. Hits=213, Ports=33528,37520,37612,38082,38086,39252,39366,39402,39422,39448, +64 more, Country=USA. show less	Brute-Force
🇧🇷 SOC Blue Team	2025-12-08 11:30:32 (6 months ago)	Tatic: TA0040 \| Technique: T1499 \| Source: IPS \| Country Destination: BR	DNS Compromise
🇫🇷 vincent_EUDIER	2025-11-05 05:40:02 (7 months ago)	ET DNS Query for .co TLD	Hacking
🇺🇸 anon333	2025-10-11 04:33:42 (8 months ago)	Hacker syslog review 1760157222	Hacking
🇵🇱 mcky	2025-07-24 10:00:00 (10 months ago)	"Observed suspicious activity from 192.112.36.4 – possible SSH brute-force"	Brute-Force SSH
🇺🇸 hostseries	2025-04-03 08:00:09 (1 year ago)	Trigger: PS_LIMIT	Brute-Force
🇳🇱 Study Bitcoin 🤗	2025-03-27 04:48:04 (1 year ago)	5 port probes: 5x tcp/2954 (ovalarmsrv-cmd) [srv62]	Port Scan
🇩🇪 QUADEMU Abuse Dpt	2025-03-11 14:23:29 (1 year ago)	[New] Noxious/Nuisible/вредоносный Host.	Port Scan Exploited Host

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 61.37.150.6

🇨🇳 182.204.181.151

🇪🇨 181.39.158.27

🇩🇿 154.243.94.8

🇧🇩 103.183.62.0

🇹🇭 101.109.253.244

🇳🇱 91.92.241.196

🇬🇧 87.236.176.81

🇩🇪 64.89.163.28

🇬🇧 34.39.16.70

🇬🇧 195.96.139.201

🇻🇳 171.237.176.209

🇩🇪 167.172.108.197

🇺🇸 157.230.150.187

🇹🇭 110.238.115.146

🇩🇪 69.5.169.245

🇨🇳 42.194.181.182

🇬🇧 213.166.84.62

🇧🇪 198.235.24.217

🇯🇵 152.32.146.182