197.245.107.90

基本信息:

城市(city): George

省份(region): Western Cape

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.245.107.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48929
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;197.245.107.90.			IN	A

;; AUTHORITY SECTION:
.			421	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032301 1800 900 604800 86400

;; Query time: 461 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 24 06:57:05 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

90.107.245.197.in-addr.arpa domain name pointer dsl-197-245-107-90.voxdsl.co.za.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
90.107.245.197.in-addr.arpa	name = dsl-197-245-107-90.voxdsl.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.55.135.88	attackspam	45.55.135.88 - - [13/May/2020:14:46:53 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:46:58 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:04 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:04 +0200] "POST /wp-login.php HTTP/1.1" 200 2030 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:09 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:10 +0200] "POST /wp-login.php HTTP/1.1" 200 2030 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-05-13 21:57:48
128.199.142.0	attackspambots	May 13 17:08:50 pkdns2 sshd\[22944\]: Invalid user cacti from 128.199.142.0May 13 17:08:51 pkdns2 sshd\[22944\]: Failed password for invalid user cacti from 128.199.142.0 port 47962 ssh2May 13 17:12:58 pkdns2 sshd\[23127\]: Invalid user bon from 128.199.142.0May 13 17:13:00 pkdns2 sshd\[23127\]: Failed password for invalid user bon from 128.199.142.0 port 53132 ssh2May 13 17:17:09 pkdns2 sshd\[23349\]: Invalid user charlotte from 128.199.142.0May 13 17:17:11 pkdns2 sshd\[23349\]: Failed password for invalid user charlotte from 128.199.142.0 port 58298 ssh2 ...	2020-05-13 22:32:05
178.22.170.163	attackbots	1589373503 - 05/13/2020 14:38:23 Host: 178.22.170.163/178.22.170.163 Port: 445 TCP Blocked	2020-05-13 21:53:51
123.31.27.102	attackspambots	May 13 07:34:21 server1 sshd\[28683\]: Failed password for invalid user a from 123.31.27.102 port 37742 ssh2 May 13 07:38:52 server1 sshd\[30151\]: Invalid user deploy from 123.31.27.102 May 13 07:38:52 server1 sshd\[30151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.27.102 May 13 07:38:54 server1 sshd\[30151\]: Failed password for invalid user deploy from 123.31.27.102 port 45734 ssh2 May 13 07:43:40 server1 sshd\[31664\]: Invalid user yang from 123.31.27.102 ...	2020-05-13 22:01:52
138.197.195.52	attackbotsspam	May 13 14:50:50 legacy sshd[3664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.195.52 May 13 14:50:51 legacy sshd[3664]: Failed password for invalid user pete from 138.197.195.52 port 59886 ssh2 May 13 14:55:13 legacy sshd[3866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.195.52 ...	2020-05-13 21:50:21
177.53.98.150	attackbotsspam	Unauthorised access (May 13) SRC=177.53.98.150 LEN=52 PREC=0x20 TTL=115 ID=12767 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-13 21:49:23
14.29.50.74	attackspam	(sshd) Failed SSH login from 14.29.50.74 (CN/China/-): 5 in the last 3600 secs	2020-05-13 21:55:13
189.39.112.94	attackspambots	2020-05-13 14:38:14,920 fail2ban.actions: WARNING [ssh] Ban 189.39.112.94	2020-05-13 22:01:19
137.117.170.24	attackspam	05/13/2020-10:34:00.832587 137.117.170.24 Protocol: 6 ET SCAN Potential SSH Scan	2020-05-13 22:34:16
110.136.221.185	attack	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-05-13 22:07:52
75.38.216.58	attackbots	2020-05-13T16:15:19.389925galaxy.wi.uni-potsdam.de sshd[32132]: Invalid user ansible from 75.38.216.58 port 48614 2020-05-13T16:15:19.394882galaxy.wi.uni-potsdam.de sshd[32132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.38.216.58 2020-05-13T16:15:19.389925galaxy.wi.uni-potsdam.de sshd[32132]: Invalid user ansible from 75.38.216.58 port 48614 2020-05-13T16:15:21.864981galaxy.wi.uni-potsdam.de sshd[32132]: Failed password for invalid user ansible from 75.38.216.58 port 48614 ssh2 2020-05-13T16:18:11.151766galaxy.wi.uni-potsdam.de sshd[32448]: Invalid user clamav1 from 75.38.216.58 port 36558 2020-05-13T16:18:11.157321galaxy.wi.uni-potsdam.de sshd[32448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.38.216.58 2020-05-13T16:18:11.151766galaxy.wi.uni-potsdam.de sshd[32448]: Invalid user clamav1 from 75.38.216.58 port 36558 2020-05-13T16:18:13.241064galaxy.wi.uni-potsdam.de sshd[32448]: Failed pass ...	2020-05-13 22:38:23
129.211.70.33	attackbots	May 13 15:34:38 MainVPS sshd[10993]: Invalid user dennis from 129.211.70.33 port 59883 May 13 15:34:38 MainVPS sshd[10993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.70.33 May 13 15:34:38 MainVPS sshd[10993]: Invalid user dennis from 129.211.70.33 port 59883 May 13 15:34:40 MainVPS sshd[10993]: Failed password for invalid user dennis from 129.211.70.33 port 59883 ssh2 May 13 15:38:38 MainVPS sshd[14279]: Invalid user user from 129.211.70.33 port 51330 ...	2020-05-13 21:52:05
129.204.46.170	attackbotsspam	May 13 14:33:23 ns382633 sshd\[12915\]: Invalid user deploy from 129.204.46.170 port 55734 May 13 14:33:23 ns382633 sshd\[12915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.46.170 May 13 14:33:25 ns382633 sshd\[12915\]: Failed password for invalid user deploy from 129.204.46.170 port 55734 ssh2 May 13 14:37:50 ns382633 sshd\[13920\]: Invalid user admin from 129.204.46.170 port 47768 May 13 14:37:50 ns382633 sshd\[13920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.46.170	2020-05-13 22:22:45
203.189.135.197	attack	KH_MAINT-KH-BPC_<177>1589373502 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2]: {TCP} 203.189.135.197:54961	2020-05-13 21:52:51
218.92.0.171	attackbots	May 13 15:53:49 * sshd[1068]: Failed password for root from 218.92.0.171 port 25932 ssh2 May 13 15:54:04 * sshd[1068]: error: maximum authentication attempts exceeded for root from 218.92.0.171 port 25932 ssh2 [preauth]	2020-05-13 22:20:43

最近上报的IP列表

106.167.152.118	92.119.172.197	122.44.226.64	73.37.188.244
167.71.4.157	80.147.74.233	119.164.81.113	95.130.160.12
122.179.255.22	178.44.251.99	193.173.99.19	71.235.24.185
148.78.82.140	61.85.181.195	62.143.172.149	119.6.181.43
80.15.151.134	196.94.19.247	85.145.123.251	46.80.241.81