105.226.237.197

基本信息:

城市(city): Cape Town

省份(region): Western Cape

国家(country): South Africa

运营商(isp): Telkom SA Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	php WP PHPmyadamin ABUSE blocked for 12h	2019-09-22 03:51:10

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.226.237.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24802
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.226.237.197.		IN	A

;; AUTHORITY SECTION:
.			471	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092100 1800 900 604800 86400

;; Query time: 665 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 22 03:51:07 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

197.237.226.105.in-addr.arpa domain name pointer 237-226-105-197.east.dsl.telkomsa.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
197.237.226.105.in-addr.arpa	name = 237-226-105-197.east.dsl.telkomsa.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
46.106.215.48	attack	TCP port 1042: Scan and connection	2020-03-08 04:31:24
114.26.61.119	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-08 05:05:47
191.28.27.74	attackspam	suspicious action Sat, 07 Mar 2020 10:27:56 -0300	2020-03-08 04:49:01
92.118.38.58	attackspambots	2020-03-07 21:34:18 dovecot_login authenticator failed for \(User\) \[92.118.38.58\]: 535 Incorrect authentication data 2020-03-07 21:39:49 dovecot_login authenticator failed for \(User\) \[92.118.38.58\]: 535 Incorrect authentication data \(set_id=jrussell@no-server.de\) 2020-03-07 21:39:50 dovecot_login authenticator failed for \(User\) \[92.118.38.58\]: 535 Incorrect authentication data \(set_id=jrussell@no-server.de\) 2020-03-07 21:39:57 dovecot_login authenticator failed for \(User\) \[92.118.38.58\]: 535 Incorrect authentication data \(set_id=jrussell@no-server.de\) 2020-03-07 21:39:58 dovecot_login authenticator failed for \(User\) \[92.118.38.58\]: 535 Incorrect authentication data \(set_id=jrussell@no-server.de\) ...	2020-03-08 04:45:59
180.180.146.18	attackbots	Automatic report - Port Scan Attack	2020-03-08 05:09:35
31.145.27.234	attack	Unauthorized connection attempt from IP address 31.145.27.234 on Port 445(SMB)	2020-03-08 04:46:19
159.65.149.139	attack	Mar 5 13:02:49 mail sshd[29048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.149.139 user=r.r Mar 5 13:02:51 mail sshd[29048]: Failed password for r.r from 159.65.149.139 port 43548 ssh2 Mar 5 13:02:51 mail sshd[29048]: Received disconnect from 159.65.149.139: 11: Bye Bye [preauth] Mar 5 13:19:39 mail sshd[31922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.149.139 user=r.r Mar 5 13:19:40 mail sshd[31922]: Failed password for r.r from 159.65.149.139 port 53384 ssh2 Mar 5 13:19:40 mail sshd[31922]: Received disconnect from 159.65.149.139: 11: Bye Bye [preauth] Mar 5 13:23:35 mail sshd[32585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.149.139 user=r.r Mar 5 13:23:37 mail sshd[32585]: Failed password for r.r from 159.65.149.139 port 58992 ssh2 Mar 5 13:23:38 mail sshd[32585]: Received disconnect from 159.65.1........ -------------------------------	2020-03-08 04:42:26
222.186.175.220	attackspambots	Mar 7 22:03:56 minden010 sshd[21721]: Failed password for root from 222.186.175.220 port 5748 ssh2 Mar 7 22:04:08 minden010 sshd[21721]: Failed password for root from 222.186.175.220 port 5748 ssh2 Mar 7 22:04:08 minden010 sshd[21721]: error: maximum authentication attempts exceeded for root from 222.186.175.220 port 5748 ssh2 [preauth] ...	2020-03-08 05:08:07
184.105.139.100	attackbotsspam	SMB Server BruteForce Attack	2020-03-08 04:37:36
112.85.42.174	attack	SSH-bruteforce attempts	2020-03-08 04:32:04
192.241.214.105	attackspambots	192.241.214.105 - - [07/Mar/2020:18:08:00 +0200] "GET /portal/redlion HTTP/1.1" 404 440 "-" "Mozilla/5.0 zgrab/0.x"	2020-03-08 04:51:23
134.209.149.64	attack	Mar 2 14:53:06 xxxxxxx0 sshd[20451]: Invalid user schubkarrenprofi1234 from 134.209.149.64 port 54734 Mar 2 14:53:06 xxxxxxx0 sshd[20451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.149.64 Mar 2 14:53:09 xxxxxxx0 sshd[20451]: Failed password for invalid user schubkarrenprofi1234 from 134.209.149.64 port 54734 ssh2 Mar 2 14:56:22 xxxxxxx0 sshd[21327]: Invalid user oracle from 134.209.149.64 port 52504 Mar 2 14:56:22 xxxxxxx0 sshd[21327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.149.64 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.209.149.64	2020-03-08 05:05:29
3.1.144.197	attack	2020-03-07T21:29:55.967032vps751288.ovh.net sshd\[20012\]: Invalid user bot2 from 3.1.144.197 port 57114 2020-03-07T21:29:55.980060vps751288.ovh.net sshd\[20012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-3-1-144-197.ap-southeast-1.compute.amazonaws.com 2020-03-07T21:29:57.932246vps751288.ovh.net sshd\[20012\]: Failed password for invalid user bot2 from 3.1.144.197 port 57114 ssh2 2020-03-07T21:37:21.477010vps751288.ovh.net sshd\[20038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-3-1-144-197.ap-southeast-1.compute.amazonaws.com user=root 2020-03-07T21:37:23.322370vps751288.ovh.net sshd\[20038\]: Failed password for root from 3.1.144.197 port 44600 ssh2	2020-03-08 04:52:33
134.0.28.11	spam	MARRE de ces ORDURES et autres FILS de PUTE genre SOUS MERDES capables de POLLUER STUPIDEMENT pour ne pas dire CONNEMENT la Planète par des POURRIELS INUTILES sur des listes VOLÉES on ne sait où et SANS notre accord pour du SEXE ! shop@jakarta-records.de => 134.0.28.11 134.0.28.11 => hosting.de https://en.asytech.cn/check-ip/134.0.28.11 jakarta-records.de => denic.de => denic@protectedmx.com https://www.mywot.com/scorecard/protectedmx.com https://www.mywot.com/scorecard/http.net jakarta-records.de => 213.160.71.146 213.160.71.146 => hosting.de https://www.mywot.com/scorecard/jakarta-records.de https://en.asytech.cn/check-ip/213.160.71.146 jakarta-records.de resend to https://soundcloud.com/jakarta-records soundcloud.com => gandi.net https://www.mywot.com/scorecard/soundcloud.com Message-ID: <0c75ec545f74a1527183c5969d49760a2963d869c3@jakarta-records.de> Reply-To: Ilsa Mosmann From: Ilsa Mosmann To: axel.malgouyres@orange.fr infoseek.jp19930911 => rakuten.com infoseek.jp => 133.237.60.109 rakuten.com => MarkMonitor Inc. ... rakuten.com => 203.190.58.50 203.190.58.50 => apnic.net https://www.mywot.com/scorecard/infoseek.jp https://www.mywot.com/scorecard/rakuten.com https://en.asytech.cn/check-ip/133.237.60.109 https://en.asytech.cn/check-ip/203.190.58.50 Linking to : https : / / w w w . google . com/url ?q=3Dhttps%3A%2F%2Fnakedadultsfinder.com%2Fpnguakzjfkmgrtk%3Ft%3Dart&sa=3DD&sntz=3D1&usg=3DAFQjCNFagfVmGeNU6132CHsB11UaQQ1few	2020-03-08 04:42:03
138.68.72.7	attackspambots	2020-03-07 01:13:57 server sshd[89521]: Failed password for invalid user laravel from 138.68.72.7 port 40684 ssh2	2020-03-08 04:47:15

最近上报的IP列表

207.55.25.94	14.52.46.212	103.102.253.153	104.211.74.234
170.80.99.87	162.45.197.113	96.244.243.182	87.139.22.181
12.241.175.163	68.213.153.74	46.239.129.149	123.162.3.221
145.77.90.124	99.44.152.80	14.119.62.62	45.178.1.30
206.155.215.109	72.87.67.61	63.198.7.178	113.74.29.81