197.228.99.2 - IPInfo

基本信息:

城市(city): Johannesburg

省份(region): Gauteng

国家(country): South Africa

运营商(isp): Telkom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.228.99.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55641
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;197.228.99.2.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090901 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 10 01:22:37 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

2.99.228.197.in-addr.arpa domain name pointer 8ta-228-99-02.telkomadsl.co.za.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
2.99.228.197.in-addr.arpa	name = 8ta-228-99-02.telkomadsl.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
115.59.24.200	attackspam	Jun 22 12:21:23 w sshd[28320]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [115.59.24.200] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 22 12:21:23 w sshd[28320]: Invalid user usuario from 115.59.24.200 Jun 22 12:21:23 w sshd[28320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.59.24.200 Jun 22 12:21:25 w sshd[28320]: Failed password for invalid user usuario from 115.59.24.200 port 40236 ssh2 Jun 22 12:21:28 w sshd[28320]: Failed password for invalid user usuario from 115.59.24.200 port 40236 ssh2 Jun 22 12:21:30 w sshd[28320]: Failed password for invalid user usuario from 115.59.24.200 port 40236 ssh2 Jun 22 12:21:32 w sshd[28320]: Failed password for invalid user usuario from 115.59.24.200 port 40236 ssh2 Jun 22 12:21:35 w sshd[28320]: Failed password for invalid user usuario from 115.59.24.200 port 40236 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=115.59.24.200	2019-06-22 17:49:24
78.205.105.64	attack	Jun 22 03:23:39 gcems sshd\[18946\]: Invalid user test from 78.205.105.64 port 59402 Jun 22 03:23:40 gcems sshd\[18946\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.205.105.64 Jun 22 03:23:41 gcems sshd\[18946\]: Failed password for invalid user test from 78.205.105.64 port 59402 ssh2 Jun 22 03:33:14 gcems sshd\[19210\]: Invalid user Administrator from 78.205.105.64 port 41334 Jun 22 03:33:15 gcems sshd\[19210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.205.105.64 ...	2019-06-22 17:06:16
195.239.4.94	attack	firewall-block, port(s): 23/tcp	2019-06-22 16:50:28
78.61.106.141	attack	¯\_(ツ)_/¯	2019-06-22 17:06:51
194.58.70.232	attackspambots	firewall-block, port(s): 445/tcp	2019-06-22 16:51:17
66.249.64.112	attackbotsspam	port scan and connect, tcp 443 (https)	2019-06-22 17:33:42
196.203.31.154	attackspam	Jun 22 10:10:22 localhost sshd\[53326\]: Invalid user ftpadmin from 196.203.31.154 port 47633 Jun 22 10:10:22 localhost sshd\[53326\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.203.31.154 ...	2019-06-22 17:16:39
58.242.83.39	attack	Jun 22 03:56:28 aat-srv002 sshd[4356]: Failed password for root from 58.242.83.39 port 12283 ssh2 Jun 22 03:58:24 aat-srv002 sshd[4392]: Failed password for root from 58.242.83.39 port 49116 ssh2 Jun 22 04:01:16 aat-srv002 sshd[4444]: Failed password for root from 58.242.83.39 port 47209 ssh2 ...	2019-06-22 17:23:42
152.44.100.141	attack	NAME : BLAZINGSEO-US-77 CIDR : 152.44.106.0/24 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack USA - California - block certain countries :) IP: 152.44.100.141 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-22 17:17:09
5.196.137.213	attackbotsspam	SSH-Bruteforce	2019-06-22 17:07:22
36.91.44.53	attackspambots	Unauthorized connection attempt from IP address 36.91.44.53 on Port 445(SMB)	2019-06-22 16:54:47
177.75.143.198	attackspambots	SPF Fail sender not permitted to send mail for @mhnet.com.br	2019-06-22 17:26:32
189.45.42.149	attack	Jun 19 06:34:32 our-server-hostname postfix/smtpd[371]: connect from unknown[189.45.42.149] Jun x@x Jun x@x Jun x@x Jun x@x Jun 19 06:34:36 our-server-hostname postfix/smtpd[371]: lost connection after RCPT from unknown[189.45.42.149] Jun 19 06:34:36 our-server-hostname postfix/smtpd[371]: disconnect from unknown[189.45.42.149] Jun 19 12:52:50 our-server-hostname postfix/smtpd[25497]: connect from unknown[189.45.42.149] Jun x@x Jun x@x Jun 19 12:52:53 our-server-hostname postfix/smtpd[25497]: lost connection after RCPT from unknown[189.45.42.149] Jun 19 12:52:53 our-server-hostname postfix/smtpd[25497]: disconnect from unknown[189.45.42.149] Jun 19 15:06:27 our-server-hostname postfix/smtpd[22106]: connect from unknown[189.45.42.149] Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun 19 15:06:42 our-server-hostname postfix/smtpd[22106]: lost connection after RCPT fro........ -------------------------------	2019-06-22 17:24:11
112.85.42.173	attackspam	port scan and connect, tcp 22 (ssh)	2019-06-22 17:48:49
124.156.200.92	attack	3389BruteforceFW21	2019-06-22 17:48:20

最近上报的IP列表

44.254.11.138	71.82.38.134	41.199.193.124	128.172.189.11
27.67.17.246	50.25.240.176	172.81.157.198	81.218.85.30
36.30.106.132	93.33.88.144	192.227.252.11	191.171.223.209
186.142.60.115	209.124.215.185	174.128.91.217	14.227.40.96
65.36.63.101	24.129.32.102	80.103.26.79	130.219.228.107