192.143.105.197

基本信息:

城市(city): Germiston

省份(region): Gauteng

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.143.105.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44186
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;192.143.105.197.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025011001 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 11 10:10:16 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

197.105.143.192.in-addr.arpa domain name pointer 192-143-105-197.ip.airmobile.co.za.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
197.105.143.192.in-addr.arpa	name = 192-143-105-197.ip.airmobile.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.136.108.67	attack	Connection by 45.136.108.67 on port: 5785 got caught by honeypot at 11/10/2019 8:59:47 AM	2019-11-10 18:05:40
142.93.174.47	attackspambots	Nov 10 09:29:39 MainVPS sshd[4111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.174.47 user=root Nov 10 09:29:40 MainVPS sshd[4111]: Failed password for root from 142.93.174.47 port 59926 ssh2 Nov 10 09:33:00 MainVPS sshd[10339]: Invalid user operator from 142.93.174.47 port 40486 Nov 10 09:33:00 MainVPS sshd[10339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.174.47 Nov 10 09:33:00 MainVPS sshd[10339]: Invalid user operator from 142.93.174.47 port 40486 Nov 10 09:33:03 MainVPS sshd[10339]: Failed password for invalid user operator from 142.93.174.47 port 40486 ssh2 ...	2019-11-10 17:56:42
45.55.38.39	attack	2019-11-10T09:35:37.779656shield sshd\[12464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root 2019-11-10T09:35:39.892828shield sshd\[12464\]: Failed password for root from 45.55.38.39 port 33384 ssh2 2019-11-10T09:39:35.905555shield sshd\[13260\]: Invalid user user from 45.55.38.39 port 52238 2019-11-10T09:39:35.909726shield sshd\[13260\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 2019-11-10T09:39:37.696532shield sshd\[13260\]: Failed password for invalid user user from 45.55.38.39 port 52238 ssh2	2019-11-10 18:15:27
119.28.239.222	attack	1573367255 - 11/10/2019 07:27:35 Host: 119.28.239.222/119.28.239.222 Port: 32772 UDP Blocked	2019-11-10 18:20:37
106.13.1.203	attackbotsspam	Nov 10 01:27:33 srv3 sshd\[22794\]: Invalid user jie from 106.13.1.203 Nov 10 01:27:33 srv3 sshd\[22794\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.1.203 Nov 10 01:27:35 srv3 sshd\[22794\]: Failed password for invalid user jie from 106.13.1.203 port 52582 ssh2 ...	2019-11-10 18:21:05
114.69.232.234	attackspambots	Automatic report - Banned IP Access	2019-11-10 18:27:33
128.199.247.115	attackbotsspam	Nov 9 23:56:25 server sshd\[31240\]: Failed password for invalid user nexus from 128.199.247.115 port 33080 ssh2 Nov 10 09:13:44 server sshd\[20942\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.247.115 user=root Nov 10 09:13:46 server sshd\[20942\]: Failed password for root from 128.199.247.115 port 55010 ssh2 Nov 10 09:28:09 server sshd\[24757\]: Invalid user auxiliar from 128.199.247.115 Nov 10 09:28:09 server sshd\[24757\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.247.115 ...	2019-11-10 18:00:06
61.145.96.162	attack	Nov 9 06:49:16 www sshd[2499]: Failed password for invalid user User from 61.145.96.162 port 3315 ssh2 Nov 9 06:49:17 www sshd[2499]: Received disconnect from 61.145.96.162 port 3315:11: Bye Bye [preauth] Nov 9 06:49:17 www sshd[2499]: Disconnected from 61.145.96.162 port 3315 [preauth] Nov 9 07:04:17 www sshd[2746]: Failed password for invalid user paps from 61.145.96.162 port 52980 ssh2 Nov 9 07:04:18 www sshd[2746]: Received disconnect from 61.145.96.162 port 52980:11: Bye Bye [preauth] Nov 9 07:04:18 www sshd[2746]: Disconnected from 61.145.96.162 port 52980 [preauth] Nov 9 07:09:21 www sshd[2856]: Failed password for invalid user client from 61.145.96.162 port 62866 ssh2 Nov 9 07:09:22 www sshd[2856]: Received disconnect from 61.145.96.162 port 62866:11: Bye Bye [preauth] Nov 9 07:09:22 www sshd[2856]: Disconnected from 61.145.96.162 port 62866 [preauth] Nov 9 07:14:18 www sshd[2898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=........ -------------------------------	2019-11-10 18:13:06
64.91.244.152	attack	$f2bV_matches	2019-11-10 18:11:18
121.121.100.152	attack	Connection by 121.121.100.152 on port: 23 got caught by honeypot at 11/10/2019 5:28:02 AM	2019-11-10 18:07:46
171.244.67.12	attack	Nov 9 12:17:09 mxgate1 postfix/postscreen[11063]: CONNECT from [171.244.67.12]:10698 to [176.31.12.44]:25 Nov 9 12:17:09 mxgate1 postfix/dnsblog[11378]: addr 171.244.67.12 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 9 12:17:09 mxgate1 postfix/dnsblog[11375]: addr 171.244.67.12 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 9 12:17:09 mxgate1 postfix/dnsblog[11375]: addr 171.244.67.12 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 9 12:17:09 mxgate1 postfix/dnsblog[11375]: addr 171.244.67.12 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 9 12:17:09 mxgate1 postfix/dnsblog[11376]: addr 171.244.67.12 listed by domain bl.spamcop.net as 127.0.0.2 Nov 9 12:17:09 mxgate1 postfix/dnsblog[11377]: addr 171.244.67.12 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 9 12:17:09 mxgate1 postfix/dnsblog[11389]: addr 171.244.67.12 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 9 12:17:15 mxgate1 postfix/postscreen[11063]: DNSBL rank 6 for [171........ -------------------------------	2019-11-10 18:13:55
92.222.72.234	attackspambots	Nov 9 23:42:57 server sshd\[25666\]: Failed password for invalid user oracle2 from 92.222.72.234 port 45407 ssh2 Nov 10 10:20:27 server sshd\[6976\]: Invalid user argos from 92.222.72.234 Nov 10 10:20:27 server sshd\[6976\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=234.ip-92-222-72.eu Nov 10 10:20:29 server sshd\[6976\]: Failed password for invalid user argos from 92.222.72.234 port 56680 ssh2 Nov 10 10:33:06 server sshd\[10263\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=234.ip-92-222-72.eu user=root ...	2019-11-10 18:31:45
36.80.48.9	attackspambots	$f2bV_matches	2019-11-10 18:06:52
186.189.134.55	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/186.189.134.55/ AW - 1H : (1) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : AW NAME ASN : ASN11816 IP : 186.189.134.55 CIDR : 186.189.134.0/23 PREFIX COUNT : 115 UNIQUE IP COUNT : 100608 ATTACKS DETECTED ASN11816 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-10 07:28:18 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-10 17:54:12
167.99.32.136	attackspam	Nov 9 07:19:04 our-server-hostname postfix/smtpd[8432]: connect from unknown[167.99.32.136] Nov 9 07:19:05 our-server-hostname postfix/smtpd[8432]: NOQUEUE: reject: RCPT from unknown[167.99.32.136]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= Nov 9 07:19:06 our-server-hostname postfix/smtpd[8432]: lost connection after RCPT from unknown[167.99.32.136] Nov 9 07:19:06 our-server-hostname postfix/smtpd[8432]: disconnect from unknown[167.99.32.136] Nov 9 08:03:41 our-server-hostname postfix/smtpd[26679]: connect from unknown[167.99.32.136] Nov 9 08:03:42 our-server-hostname postfix/smtpd[26679]: NOQUEUE: reject: RCPT from unknown[167.99.32.136]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x he .... truncated .... m unknown[167.99.32.136]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= Nov 9 17:13:40 our-server-hostname postfix/smtpd[1398........ -------------------------------	2019-11-10 18:30:30

最近上报的IP列表

121.190.238.240	135.100.78.109	36.137.69.243	235.147.153.162
108.39.61.179	99.169.210.120	30.129.89.245	154.221.179.177
196.179.30.250	24.48.170.157	53.90.240.127	9.20.77.9
87.164.146.85	156.172.158.116	207.91.109.19	133.16.92.144
6.220.64.209	245.203.95.4	241.180.82.186	173.124.90.40