JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 204.157.241.197

204.157.241.197 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 0%: ?

ISP	PT INFORMASI NUSANTARA TEKNOLOGI
Usage Type	Fixed Line ISP
ASN	AS138096
Domain Name	intek.net.id
Country	🇮🇩 Indonesia
City	Batam, Riau

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 204.157.241.197

Whois 204.157.241.197

IP Abuse Reports for 204.157.241.197:

This IP address has been reported a total of 26 times from 17 distinct sources. 204.157.241.197 was first reported on August 22nd 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MrDD	2024-07-30 14:43:39 (1 year ago)	Attempted brute force attack on Cisco web VPN	Brute-Force
🇳🇱 Linuxmalwarehuntingnl	2024-07-03 08:53:33 (1 year ago)	Unauthorized connection attempt	Brute-Force
Anonymous	2024-06-11 05:34:57 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-03-18 01:25:06 (2 years ago)	dovecot	Brute-Force Web App Attack
🇪🇸 10dencehispahard SL	2024-03-17 21:00:12 (2 years ago)	Unauthorized login attempts [ accesslogs]	Brute-Force
🇩🇪 twx	2024-01-02 15:26:01 (2 years ago)	fail2ban/Jan 2 16:25:50 h1962932 sshd[4893]: Failed password for root from 204.157.241.197 port 508 ... show more fail2ban/Jan 2 16:25:50 h1962932 sshd[4893]: Failed password for root from 204.157.241.197 port 50802 ssh2 Jan 2 16:25:51 h1962932 sshd[4905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Jan 2 16:25:53 h1962932 sshd[4905]: Failed password for root from 204.157.241.197 port 50808 ssh2 Jan 2 16:25:58 h1962932 sshd[4921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Jan 2 16:26:00 h1962932 sshd[4921]: Failed password for root from 204.157.241.197 port 34014 ssh2 show less	Brute-Force SSH
🇩🇪 corthorn	2023-12-23 10:44:58 (2 years ago)	Dec 23 11:44:55 vmi1008219 sshd[2860541]: pam_unix(sshd:auth): authentication failure; logname= uid= ... show more Dec 23 11:44:55 vmi1008219 sshd[2860541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Dec 23 11:44:58 vmi1008219 sshd[2860541]: Failed password for root from 204.157.241.197 port 57528 ssh2 ... show less	Brute-Force SSH
Anonymous	2023-12-23 05:27:43 (2 years ago)	sshd	Brute-Force SSH
🇳🇱 zlydnev.online	2023-12-22 00:35:27 (2 years ago)	Dec 22 03:35:19 zlydnev sshd[815356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu ... show more Dec 22 03:35:19 zlydnev sshd[815356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Dec 22 03:35:22 zlydnev sshd[815356]: Failed password for root from 204.157.241.197 port 55160 ssh2 Dec 22 03:35:23 zlydnev sshd[815358]: Connection from 204.157.241.197 port 56306 on 5.252.118.130 port 22 rdomain "" Dec 22 03:35:23 zlydnev sshd[815358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Dec 22 03:35:26 zlydnev sshd[815358]: Failed password for root from 204.157.241.197 port 56306 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2023-12-07 13:24:48 (2 years ago)	204.157.241.197 (DO/Dominican Republic/-), 6 distributed sshd attacks on account [root] in the last ... show more 204.157.241.197 (DO/Dominican Republic/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Dec 7 07:24:28 15452 sshd[6333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Dec 7 07:24:30 15452 sshd[6333]: Failed password for root from 204.157.241.197 port 51078 ssh2 Dec 7 07:24:30 15452 sshd[6336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Dec 7 07:24:32 15452 sshd[6336]: Failed password for root from 204.157.241.197 port 51088 ssh2 Dec 7 07:24:33 15452 sshd[6340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Dec 7 07:24:37 15452 sshd[6344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.211 user=root IP Addresses Blocked: show less	Brute-Force SSH
🇯🇵 HeliJP	2023-11-22 22:15:12 (2 years ago)	2023-11-22 22:03:46 - Unauthorized SFTP/SSH access attempts from IP address 204.157.241.197 on port ... show more 2023-11-22 22:03:46 - Unauthorized SFTP/SSH access attempts from IP address 204.157.241.197 on port 22 (1 daily hits). show less	FTP Brute-Force Brute-Force SSH
Anonymous	2023-11-19 16:02:04 (2 years ago)	Failed password for root from 204.157.241.197 port 60360 ssh2 pam_unix(sshd:auth): authentication fa ... show more Failed password for root from 204.157.241.197 port 60360 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Failed password for root from 204.157.241.197 port 39660 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Failed password for root from 204.157.241.197 port 46010 ssh2 show less	Brute-Force SSH
🇫🇷 VKe.fi	2023-10-28 05:22:18 (2 years ago)	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2023-10-28T05:20:56Z and 2023-10-2 ... show more Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2023-10-28T05:20:56Z and 2023-10-28T05:22:17Z show less	Brute-Force SSH
🇺🇸 bigscoots.com	2023-10-24 03:37:02 (2 years ago)	204.157.241.197 (DO/Dominican Republic/-), 5 distributed sshd attacks on account [root] in the last ... show more 204.157.241.197 (DO/Dominican Republic/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Oct 23 22:36:46 17988 sshd[747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Oct 23 22:36:48 17988 sshd[747]: Failed password for root from 204.157.241.197 port 35612 ssh2 Oct 23 22:35:58 17988 sshd[703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.208 user=root Oct 23 22:36:01 17988 sshd[703]: Failed password for root from 204.157.241.208 port 50766 ssh2 Oct 23 22:34:43 17988 sshd[564]: Failed password for root from 204.157.241.201 port 57582 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇺🇸 bigscoots.com	2023-10-22 10:08:50 (2 years ago)	204.157.241.197 (DO/Dominican Republic/-), 5 distributed sshd attacks on account [root] in the last ... show more 204.157.241.197 (DO/Dominican Republic/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Oct 22 05:08:36 13212 sshd[15226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.197 user=root Oct 22 05:05:49 13212 sshd[15017]: Failed password for root from 204.157.241.195 port 48380 ssh2 Oct 22 05:05:49 13212 sshd[15036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.205 user=root Oct 22 05:05:51 13212 sshd[15036]: Failed password for root from 204.157.241.205 port 49058 ssh2 Oct 22 05:05:47 13212 sshd[15017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.157.241.195 user=root IP Addresses Blocked: show less	Brute-Force SSH

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.85.160.196

🇯🇵 172.253.13.30

🇨🇳 125.39.179.192

🇵🇭 110.93.86.132

🇹🇼 60.248.55.72

🇩🇪 212.227.244.14

🇳🇱 167.71.76.223

🇿🇦 165.73.137.235

🇺🇸 130.131.161.76

🇺🇸 12.125.34.242

🇪🇨 193.30.14.164

🇨🇴 179.32.200.247

🇨🇳 123.160.233.215

🇩🇪 109.91.4.177

🇩🇪 69.5.169.55

🇫🇷 54.37.8.159

🇺🇸 43.135.185.59

🇮🇳 27.123.84.54

🇺🇸 20.65.193.243

🇩🇪 194.187.176.163