197.229.148.217

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.229.148.217
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47414
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;197.229.148.217.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 16:24:03 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

217.148.229.197.in-addr.arpa domain name pointer 8ta-229-148-217.telkomadsl.co.za.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
217.148.229.197.in-addr.arpa	name = 8ta-229-148-217.telkomadsl.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
84.201.153.217	attackspambots	Aug 14 17:40:48 ACSRAD auth.info sshd[16776]: Invalid user dev from 84.201.153.217 port 52470 Aug 14 17:40:48 ACSRAD auth.info sshd[16776]: Failed password for invalid user dev from 84.201.153.217 port 52470 ssh2 Aug 14 17:40:48 ACSRAD auth.info sshd[16776]: Received disconnect from 84.201.153.217 port 52470:11: Bye Bye [preauth] Aug 14 17:40:48 ACSRAD auth.info sshd[16776]: Disconnected from 84.201.153.217 port 52470 [preauth] Aug 14 17:40:48 ACSRAD auth.notice sshguard[29299]: Attack from "84.201.153.217" on service 100 whostnameh danger 10. Aug 14 17:40:48 ACSRAD auth.notice sshguard[29299]: Attack from "84.201.153.217" on service 100 whostnameh danger 10. Aug 14 17:40:48 ACSRAD auth.notice sshguard[29299]: Attack from "84.201.153.217" on service 100 whostnameh danger 10. Aug 14 17:40:48 ACSRAD auth.warn sshguard[29299]: Blocking "84.201.153.217/32" forever (3 attacks in 0 secs, after 2 abuses over 917 secs.) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?i	2019-08-15 10:36:15
95.13.90.141	attackspam	Automatic report - Port Scan Attack	2019-08-15 10:38:34
45.227.253.216	attackbotsspam	Aug 15 03:42:00 mail postfix/smtpd\[27195\]: warning: unknown\[45.227.253.216\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 15 04:20:31 mail postfix/smtpd\[28172\]: warning: unknown\[45.227.253.216\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 15 04:20:41 mail postfix/smtpd\[28307\]: warning: unknown\[45.227.253.216\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 15 05:01:37 mail postfix/smtpd\[29931\]: warning: unknown\[45.227.253.216\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-08-15 11:11:43
58.213.128.106	attackspam	Aug 15 04:05:31 microserver sshd[2953]: Invalid user jenkins from 58.213.128.106 port 23297 Aug 15 04:05:31 microserver sshd[2953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.128.106 Aug 15 04:05:32 microserver sshd[2953]: Failed password for invalid user jenkins from 58.213.128.106 port 23297 ssh2 Aug 15 04:10:27 microserver sshd[3698]: Invalid user myuser1 from 58.213.128.106 port 13761 Aug 15 04:10:27 microserver sshd[3698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.128.106 Aug 15 04:25:11 microserver sshd[5804]: Invalid user ciuser from 58.213.128.106 port 46913 Aug 15 04:25:11 microserver sshd[5804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.128.106 Aug 15 04:25:13 microserver sshd[5804]: Failed password for invalid user ciuser from 58.213.128.106 port 46913 ssh2 Aug 15 04:30:12 microserver sshd[6578]: Invalid user flopy from 58.213.128.106 port 372	2019-08-15 10:43:17
185.100.164.17	attackbotsspam	Automatic report - Port Scan Attack	2019-08-15 10:38:53
187.162.58.24	attackbotsspam	Aug 14 23:33:26 indra sshd[290874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187-162-58-24.static.axtel.net user=r.r Aug 14 23:33:28 indra sshd[290874]: Failed password for r.r from 187.162.58.24 port 35236 ssh2 Aug 14 23:33:28 indra sshd[290874]: Received disconnect from 187.162.58.24: 11: Bye Bye [preauth] Aug 14 23:46:26 indra sshd[293101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187-162-58-24.static.axtel.net user=r.r Aug 14 23:46:28 indra sshd[293101]: Failed password for r.r from 187.162.58.24 port 47402 ssh2 Aug 14 23:46:28 indra sshd[293101]: Received disconnect from 187.162.58.24: 11: Bye Bye [preauth] Aug 14 23:50:52 indra sshd[294460]: Invalid user ik from 187.162.58.24 Aug 14 23:50:52 indra sshd[294460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187-162-58-24.static.axtel.net Aug 14 23:50:54 indra sshd[294460]: Faile........ -------------------------------	2019-08-15 11:10:58
122.165.140.147	attackspambots	Aug 15 04:24:11 lnxded63 sshd[17651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.165.140.147 Aug 15 04:24:11 lnxded63 sshd[17651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.165.140.147	2019-08-15 10:47:19
181.176.221.221	attack	Aug 15 05:26:35 yabzik sshd[15181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.176.221.221 Aug 15 05:26:37 yabzik sshd[15181]: Failed password for invalid user route from 181.176.221.221 port 54296 ssh2 Aug 15 05:32:08 yabzik sshd[16940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.176.221.221	2019-08-15 10:32:35
212.156.115.58	attack	Aug 15 03:18:22 debian sshd\[5640\]: Invalid user specialk from 212.156.115.58 port 59292 Aug 15 03:18:22 debian sshd\[5640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.115.58 ...	2019-08-15 10:33:19
185.234.72.126	attackspam	Aug 14 19:43:15 vps200512 sshd\[7065\]: Invalid user xian from 185.234.72.126 Aug 14 19:43:15 vps200512 sshd\[7065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.234.72.126 Aug 14 19:43:17 vps200512 sshd\[7065\]: Failed password for invalid user xian from 185.234.72.126 port 52591 ssh2 Aug 14 19:47:00 vps200512 sshd\[7134\]: Invalid user bang from 185.234.72.126 Aug 14 19:47:00 vps200512 sshd\[7134\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.234.72.126	2019-08-15 10:37:23
115.160.68.82	attack	08/14/2019-22:33:15.588003 115.160.68.82 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-15 10:45:48
190.205.124.210	attackspam	Unauthorized connection attempt from IP address 190.205.124.210 on Port 445(SMB)	2019-08-15 11:03:09
41.39.72.211	attack	Unauthorised access (Aug 15) SRC=41.39.72.211 LEN=40 TTL=53 ID=64284 TCP DPT=23 WINDOW=111 SYN	2019-08-15 11:07:38
37.195.105.57	attack	Aug 15 04:37:41 vps691689 sshd[10826]: Failed password for root from 37.195.105.57 port 35551 ssh2 Aug 15 04:42:38 vps691689 sshd[11127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.195.105.57 ...	2019-08-15 10:43:53
213.194.104.230	attack	Unauthorized connection attempt from IP address 213.194.104.230 on Port 445(SMB)	2019-08-15 11:04:15

最近上报的IP列表

197.221.225.122	197.230.127.92	197.231.180.116	197.229.3.152
197.229.140.224	197.232.109.174	197.231.252.5	197.232.130.13
197.231.179.10	197.232.38.117	197.232.46.105	197.232.30.172
197.232.55.78	197.232.24.119	197.232.69.189	197.232.91.82
197.234.146.200	197.232.96.42	197.234.142.44	197.234.34.91