197.172.104.197

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.172.104.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58729
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;197.172.104.197.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021900 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 18:51:59 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 197.104.172.197.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 197.104.172.197.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
180.93.54.211	attackspam	Unauthorized connection attempt detected from IP address 180.93.54.211 to port 445	2019-12-12 13:57:57
182.53.26.196	attackbotsspam	Unauthorised access (Dec 12) SRC=182.53.26.196 LEN=40 PREC=0x20 TTL=243 ID=28945 DF TCP DPT=8080 WINDOW=14600 SYN	2019-12-12 13:47:13
71.6.158.166	attackspambots	firewall-block, port(s): 8086/tcp	2019-12-12 14:08:06
138.91.120.70	attackspam	Dec 11 19:27:09 hpm sshd\[20037\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.91.120.70 user=root Dec 11 19:27:11 hpm sshd\[20037\]: Failed password for root from 138.91.120.70 port 40234 ssh2 Dec 11 19:33:14 hpm sshd\[20611\]: Invalid user aracelia from 138.91.120.70 Dec 11 19:33:14 hpm sshd\[20611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.91.120.70 Dec 11 19:33:16 hpm sshd\[20611\]: Failed password for invalid user aracelia from 138.91.120.70 port 51244 ssh2	2019-12-12 13:40:15
103.108.74.91	attack	Dec 12 05:36:54 zeus sshd[19316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.74.91 Dec 12 05:36:56 zeus sshd[19316]: Failed password for invalid user hduser from 103.108.74.91 port 22776 ssh2 Dec 12 05:44:41 zeus sshd[19673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.74.91 Dec 12 05:44:44 zeus sshd[19673]: Failed password for invalid user hickox from 103.108.74.91 port 53091 ssh2	2019-12-12 14:01:37
117.4.224.50	attack	1576126509 - 12/12/2019 05:55:09 Host: 117.4.224.50/117.4.224.50 Port: 445 TCP Blocked	2019-12-12 14:05:43
113.221.94.250	attackspam	[portscan] Port scan	2019-12-12 13:54:42
182.61.105.104	attackspam	Dec 12 05:24:46 hcbbdb sshd\[26119\]: Invalid user j3t from 182.61.105.104 Dec 12 05:24:46 hcbbdb sshd\[26119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.105.104 Dec 12 05:24:48 hcbbdb sshd\[26119\]: Failed password for invalid user j3t from 182.61.105.104 port 45230 ssh2 Dec 12 05:30:54 hcbbdb sshd\[26905\]: Invalid user haggis from 182.61.105.104 Dec 12 05:30:54 hcbbdb sshd\[26905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.105.104	2019-12-12 13:38:53
223.204.247.60	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 12-12-2019 04:55:10.	2019-12-12 14:03:36
113.59.74.55	attack	2019-12-12T05:08:38.001300shield sshd\[5140\]: Invalid user djamila from 113.59.74.55 port 59986 2019-12-12T05:08:38.005926shield sshd\[5140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.59.74.55 2019-12-12T05:08:39.877297shield sshd\[5140\]: Failed password for invalid user djamila from 113.59.74.55 port 59986 ssh2 2019-12-12T05:13:04.974066shield sshd\[6580\]: Invalid user gdm from 113.59.74.55 port 53557 2019-12-12T05:13:04.978547shield sshd\[6580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.59.74.55	2019-12-12 13:27:56
218.92.0.191	attackspam	Dec 12 06:26:22 dcd-gentoo sshd[496]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Dec 12 06:26:25 dcd-gentoo sshd[496]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Dec 12 06:26:22 dcd-gentoo sshd[496]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Dec 12 06:26:25 dcd-gentoo sshd[496]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Dec 12 06:26:22 dcd-gentoo sshd[496]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Dec 12 06:26:25 dcd-gentoo sshd[496]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Dec 12 06:26:25 dcd-gentoo sshd[496]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 33960 ssh2 ...	2019-12-12 13:52:07
123.21.5.176	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 12-12-2019 04:55:09.	2019-12-12 14:06:48
222.186.175.169	attack	Dec 12 06:30:10 MainVPS sshd[20374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Dec 12 06:30:12 MainVPS sshd[20374]: Failed password for root from 222.186.175.169 port 30906 ssh2 Dec 12 06:30:25 MainVPS sshd[20374]: error: maximum authentication attempts exceeded for root from 222.186.175.169 port 30906 ssh2 [preauth] Dec 12 06:30:10 MainVPS sshd[20374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Dec 12 06:30:12 MainVPS sshd[20374]: Failed password for root from 222.186.175.169 port 30906 ssh2 Dec 12 06:30:25 MainVPS sshd[20374]: error: maximum authentication attempts exceeded for root from 222.186.175.169 port 30906 ssh2 [preauth] Dec 12 06:30:30 MainVPS sshd[20513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Dec 12 06:30:32 MainVPS sshd[20513]: Failed password for root from 222.186.175.169 port	2019-12-12 13:35:24
106.13.54.207	attack	2019-12-12T05:46:40.007081shield sshd\[19738\]: Invalid user hancel from 106.13.54.207 port 40634 2019-12-12T05:46:40.011744shield sshd\[19738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.54.207 2019-12-12T05:46:42.163591shield sshd\[19738\]: Failed password for invalid user hancel from 106.13.54.207 port 40634 ssh2 2019-12-12T05:53:01.588244shield sshd\[22265\]: Invalid user kpkp from 106.13.54.207 port 40796 2019-12-12T05:53:01.591596shield sshd\[22265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.54.207	2019-12-12 14:07:49
45.55.243.124	attackspambots	Dec 11 19:23:41 tdfoods sshd\[11260\]: Invalid user tymn from 45.55.243.124 Dec 11 19:23:41 tdfoods sshd\[11260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.243.124 Dec 11 19:23:43 tdfoods sshd\[11260\]: Failed password for invalid user tymn from 45.55.243.124 port 52570 ssh2 Dec 11 19:29:21 tdfoods sshd\[11837\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.243.124 user=root Dec 11 19:29:23 tdfoods sshd\[11837\]: Failed password for root from 45.55.243.124 port 60780 ssh2	2019-12-12 13:39:45

最近上报的IP列表

247.100.43.173	155.191.162.70	176.235.193.145	220.35.88.181
115.0.111.67	160.113.103.219	247.107.180.179	66.132.236.218
59.216.45.190	230.108.194.34	75.71.206.64	196.58.221.144
220.243.13.233	25.14.211.27	205.63.37.166	232.120.93.186
137.47.171.20	55.240.32.232	201.9.68.67	231.248.2.28