197.221.254.150

Basic Info

City: unknown

Region: unknown

Country: Zimbabwe

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
197.221.254.22	attack	Port Scan detected! ...	2020-07-14 08:05:45
197.221.254.235	attack	Logged onto my email	2020-07-05 03:55:10
197.221.254.235	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-29 06:30:57
197.221.254.79	attack	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-05-12 05:24:46
197.221.254.176	attackbotsspam	2019-03-12 20:37:49 H=\(16.176.telone.co.zw\) \[197.221.254.176\]:25129 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-12 20:38:40 H=\(16.176.telone.co.zw\) \[197.221.254.176\]:25137 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-12 20:39:11 H=\(16.176.telone.co.zw\) \[197.221.254.176\]:25138 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-30 04:45:43
197.221.254.63	attack	Unauthorized connection attempt detected from IP address 197.221.254.63 to port 445	2019-12-11 21:32:25
197.221.254.96	attack	2019-11-20 14:13:49 H=(16.96.telone.co.zw) [197.221.254.96]:6050 I=[10.100.18.22]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=197.221.254.96) 2019-11-20 14:13:49 unexpected disconnection while reading SMTP command from (16.96.telone.co.zw) [197.221.254.96]:6050 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-11-20 15:33:34 H=(16.96.telone.co.zw) [197.221.254.96]:6523 I=[10.100.18.22]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=197.221.254.96) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=197.221.254.96	2019-11-21 00:42:21
197.221.254.6	attackspambots	2019-11-20 15:12:24 H=(16.6.telone.co.zw) [197.221.254.6]:31578 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=197.221.254.6) 2019-11-20 15:12:25 unexpected disconnection while reading SMTP command from (16.6.telone.co.zw) [197.221.254.6]:31578 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-11-20 15:29:34 H=(16.6.telone.co.zw) [197.221.254.6]:31622 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=197.221.254.6) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=197.221.254.6	2019-11-20 22:54:01
197.221.254.40	attack	firewall-block, port(s): 1433/tcp	2019-11-20 00:40:13
197.221.254.172	attackspambots	Hello! As you may have noticed, I sent you an email from your account. This means that I have full access to your device. I've been watching you for a few months now. The fact is that you were infected with malware through an adult site that you visited. If you are not familiar with this, I will explain. Trojan Virus gives me full access and control over a computer or other device. This means that I can see everything on your screen, turn on the camera and microphone, but you do not know about it. I also have access to all your contacts and all your correspondence. Why your antivirus did not detect malware? Answer: My malware uses the driver, I update its signatures every 4 hours so that your antivirus is silent. I made a video showing how you satisfy yourself in the left half of the screen, and in the right half you see the video that you watched. With one click of the mouse, I can send this video to all your emails and contacts on social networks...	2019-10-13 06:30:27
197.221.254.157	attack	Spam	2019-08-14 23:36:14
197.221.254.2	attackspambots	Lines containing failures of 197.221.254.2 Jul 13 16:57:36 mellenthin postfix/smtpd[5323]: connect from unknown[197.221.254.2] Jul x@x Jul 13 16:57:45 mellenthin postfix/smtpd[5323]: lost connection after DATA from unknown[197.221.254.2] Jul 13 16:57:45 mellenthin postfix/smtpd[5323]: disconnect from unknown[197.221.254.2] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=197.221.254.2	2019-07-14 08:02:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.221.254.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50304
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;197.221.254.150.		IN	A

;; AUTHORITY SECTION:
.			166	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022102901 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 30 06:34:05 CST 2022
;; MSG SIZE  rcvd: 108

Host info

150.254.221.197.in-addr.arpa domain name pointer 16.150.telone.co.zw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
150.254.221.197.in-addr.arpa	name = 16.150.telone.co.zw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.151.9.61	attack	Unauthorized connection attempt detected from IP address 46.151.9.61 to port 23 [T]	2020-07-22 01:40:10
60.220.185.22	attackspam	Jul 21 19:41:22 * sshd[14383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.220.185.22 Jul 21 19:41:24 * sshd[14383]: Failed password for invalid user atlas from 60.220.185.22 port 45174 ssh2	2020-07-22 01:57:20
20.46.41.158	attack		2020-07-22 02:00:50
186.93.19.136	attackbots	Unauthorized connection attempt from IP address 186.93.19.136 on Port 445(SMB)	2020-07-22 01:49:09
13.78.163.14	attack	Unauthorized connection attempt detected from IP address 13.78.163.14 to port 1433 [T]	2020-07-22 01:43:48
52.147.160.142	attackbots	Unauthorized connection attempt detected from IP address 52.147.160.142 to port 1433 [T]	2020-07-22 01:38:35
212.0.149.88	attackspam	Unauthorized connection attempt detected from IP address 212.0.149.88 to port 445 [T]	2020-07-22 02:04:01
111.68.103.248	attackbots	Unauthorized connection attempt detected from IP address 111.68.103.248 to port 445 [T]	2020-07-22 01:52:10
188.166.232.29	attackbots	TCP (SYN) 188.166.232.29:49431 -> port 9541, len 44	2020-07-22 02:06:42
66.42.42.168	attackspam	Unauthorized connection attempt detected from IP address 66.42.42.168 to port 80 [T]	2020-07-22 01:37:00
171.236.65.55	attackspambots	Unauthorized connection attempt from IP address 171.236.65.55 on Port 445(SMB)	2020-07-22 02:07:47
184.22.48.112	attackbots	Unauthorized connection attempt detected from IP address 184.22.48.112 to port 445 [T]	2020-07-22 01:49:58
51.140.3.126	attackbots	Unauthorized connection attempt detected from IP address 51.140.3.126 to port 1433	2020-07-22 01:39:12
139.167.87.11	attackspambots	Unauthorized connection attempt detected from IP address 139.167.87.11 to port 445 [T]	2020-07-22 01:51:05
104.211.88.245	attackspambots		2020-07-22 01:32:15

Recently Reported IPs

240.45.13.48	197.221.254.151	120.78.141.142	173.94.159.8
86.83.105.240	179.43.187.234	45.95.55.43	255.174.45.31
195.114.148.66	195.56.148.66	234.186.95.166	215.176.142.10
220.70.84.221	154.3.251.122	240.201.203.175	63.221.108.35
169.90.8.174	218.3.38.251	248.151.110.135	73.48.49.181