197.81.57.112 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.81.57.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40092
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;197.81.57.112.			IN	A

;; AUTHORITY SECTION:
.			579	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011000 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 15:17:58 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

112.57.81.197.in-addr.arpa domain name pointer 197-81-57-112.jhb.mweb.co.za.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
112.57.81.197.in-addr.arpa	name = 197-81-57-112.jhb.mweb.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
108.62.5.84	attack	Multiple attempts: Microsoft Windows win.ini Access Attempt Detected, OpenVAS Vulnerability Scanner Detection, HTTP Directory Traversal Request Attempt, Apache Tomcat URIencoding Directory Traversal Vulnerability, Advantech Studio NTWebServer Arbitrary File Access Vulnerability, Generic HTTP Cross Site Scripting Attempt	2019-11-09 04:23:47
179.43.110.138	attack	Caught in portsentry honeypot	2019-11-09 04:55:34
154.66.219.20	attack	Nov 8 20:29:32 MK-Soft-VM7 sshd[12075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.66.219.20 Nov 8 20:29:33 MK-Soft-VM7 sshd[12075]: Failed password for invalid user username from 154.66.219.20 port 35262 ssh2 ...	2019-11-09 04:33:31
82.64.15.106	attackspambots	Bruteforce on SSH Honeypot	2019-11-09 04:49:02
85.106.108.23	attack	Unauthorized connection attempt from IP address 85.106.108.23 on Port 445(SMB)	2019-11-09 04:56:05
216.244.66.202	attackspam	[Fri Nov 08 21:32:19.493865 2019] [:error] [pid 15642:tid 140348693100288] [client 216.244.66.202:52602] [client 216.244.66.202] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/index.php/profil/meteorologi/prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan"] [unique_id "XcV8c5xnlpJAB5zc1-qmLgAAARE"] ...	2019-11-09 04:47:07
185.200.118.76	attack	proto=tcp . spt=33646 . dpt=3389 . src=185.200.118.76 . dst=xx.xx.4.1 . (Listed on rbldns-ru) (493)	2019-11-09 04:30:02
178.159.215.42	attack	Unauthorized connection attempt from IP address 178.159.215.42 on Port 445(SMB)	2019-11-09 04:50:25
37.55.103.174	attackspam	Unauthorized connection attempt from IP address 37.55.103.174 on Port 445(SMB)	2019-11-09 04:39:13
45.70.3.2	attackbotsspam	Nov 8 20:51:40 sd-53420 sshd\[11597\]: Invalid user sunshine from 45.70.3.2 Nov 8 20:51:40 sd-53420 sshd\[11597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.70.3.2 Nov 8 20:51:43 sd-53420 sshd\[11597\]: Failed password for invalid user sunshine from 45.70.3.2 port 36012 ssh2 Nov 8 21:01:24 sd-53420 sshd\[14578\]: Invalid user r0ckst@r from 45.70.3.2 Nov 8 21:01:24 sd-53420 sshd\[14578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.70.3.2 ...	2019-11-09 04:54:30
129.226.68.217	attack	Oct 30 00:55:31 cavern sshd[7723]: Failed password for postgres from 129.226.68.217 port 57142 ssh2	2019-11-09 04:29:16
222.127.15.162	attack	Unauthorized connection attempt from IP address 222.127.15.162 on Port 445(SMB)	2019-11-09 04:24:40
179.178.248.182	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 08-11-2019 15:55:23.	2019-11-09 04:46:44
106.51.231.38	attackspam	fail2ban honeypot	2019-11-09 04:41:38
27.72.78.220	attackspam	Unauthorized connection attempt from IP address 27.72.78.220 on Port 445(SMB)	2019-11-09 04:31:52

最近上报的IP列表

216.48.15.7	119.101.216.147	23.68.130.127	171.170.19.254
137.129.196.93	37.46.135.248	25.160.112.166	111.227.226.176
186.93.172.58	150.62.112.196	182.178.1.225	8.71.56.64
227.112.182.42	198.45.196.171	132.224.228.190	201.35.97.67
117.139.157.64	10.9.73.22	152.48.112.27	212.146.118.112