197.91.214.169

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.91.214.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47241
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;197.91.214.169.			IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010702 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 08 11:39:25 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

169.214.91.197.in-addr.arpa domain name pointer 197-91-214-169.dsl.mweb.co.za.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
169.214.91.197.in-addr.arpa	name = 197-91-214-169.dsl.mweb.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
2001:41d0:403:291::	attack	WordPress login Brute force / Web App Attack on client site.	2019-11-12 20:46:13
1.212.148.68	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-11-12 20:47:37
182.73.26.2	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-11-12 20:37:27
88.214.26.45	attack	Nov 12 12:46:32 h2177944 kernel: \[6434733.980022\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=88.214.26.45 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=41425 PROTO=TCP SPT=8080 DPT=33334 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 12:52:00 h2177944 kernel: \[6435061.521784\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=88.214.26.45 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=57104 PROTO=TCP SPT=8080 DPT=33338 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 13:01:08 h2177944 kernel: \[6435609.427132\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=88.214.26.45 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=13481 PROTO=TCP SPT=8080 DPT=33364 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 13:05:35 h2177944 kernel: \[6435876.730247\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=88.214.26.45 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=26847 PROTO=TCP SPT=8080 DPT=33355 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 13:27:52 h2177944 kernel: \[6437213.404060\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=88.214.26.45 DST=85.214.117.9 LEN=	2019-11-12 20:44:40
121.169.25.46	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-11-12 20:29:45
159.65.53.153	attack	This client attempted to login to an administrator account on a Website, or abused from another resource.	2019-11-12 20:48:00
14.184.244.37	attackspambots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2019-11-12 21:11:00
157.230.97.97	attackbotsspam	157.230.97.97 - - \[12/Nov/2019:10:17:12 +0100\] "POST /wp-login.php HTTP/1.0" 200 5707 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.230.97.97 - - \[12/Nov/2019:10:17:13 +0100\] "POST /wp-login.php HTTP/1.0" 200 5707 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.230.97.97 - - \[12/Nov/2019:10:17:13 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 802 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-12 20:50:47
138.68.48.118	attack	Nov 12 10:20:10 ns382633 sshd\[10550\]: Invalid user beach from 138.68.48.118 port 42168 Nov 12 10:20:10 ns382633 sshd\[10550\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.48.118 Nov 12 10:20:12 ns382633 sshd\[10550\]: Failed password for invalid user beach from 138.68.48.118 port 42168 ssh2 Nov 12 10:42:19 ns382633 sshd\[14774\]: Invalid user ryosuke from 138.68.48.118 port 36664 Nov 12 10:42:19 ns382633 sshd\[14774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.48.118	2019-11-12 20:42:01
139.199.159.77	attackspambots	k+ssh-bruteforce	2019-11-12 20:49:10
93.114.185.11	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-11-12 20:32:45
203.229.246.118	attackbots	Nov 12 07:11:40 Tower sshd[20201]: Connection from 203.229.246.118 port 34574 on 192.168.10.220 port 22 Nov 12 07:12:05 Tower sshd[20201]: Invalid user qhsupport from 203.229.246.118 port 34574 Nov 12 07:12:05 Tower sshd[20201]: error: Could not get shadow information for NOUSER Nov 12 07:12:05 Tower sshd[20201]: Failed password for invalid user qhsupport from 203.229.246.118 port 34574 ssh2 Nov 12 07:12:06 Tower sshd[20201]: Received disconnect from 203.229.246.118 port 34574:11: Normal Shutdown, Thank you for playing [preauth] Nov 12 07:12:06 Tower sshd[20201]: Disconnected from invalid user qhsupport 203.229.246.118 port 34574 [preauth]	2019-11-12 20:39:27
128.199.212.194	attackspam	128.199.212.194 - - \[12/Nov/2019:06:23:17 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 128.199.212.194 - - \[12/Nov/2019:06:23:24 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-11-12 20:41:29
200.34.88.37	attack	2019-11-12T09:01:06.783653abusebot-2.cloudsearch.cf sshd\[26826\]: Invalid user named from 200.34.88.37 port 60748	2019-11-12 21:04:28
115.159.92.54	attack	Nov 12 17:40:58 areeb-Workstation sshd[7035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.92.54 Nov 12 17:41:00 areeb-Workstation sshd[7035]: Failed password for invalid user roses from 115.159.92.54 port 50436 ssh2 ...	2019-11-12 20:30:09

最近上报的IP列表

134.46.44.22	236.148.2.255	189.115.235.243	221.1.88.128
84.200.23.76	124.176.15.88	66.227.239.28	168.42.253.254
108.207.231.250	230.137.6.45	235.72.11.94	51.149.220.85
24.123.73.81	193.147.24.156	24.148.196.9	180.72.8.121
240.231.3.81	244.29.13.75	154.13.5.32	245.8.194.89