197.232.239.149

Basic Info

City: Nairobi

Region: Nairobi Province

Country: Kenya

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.232.239.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59792
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;197.232.239.149.		IN	A

;; AUTHORITY SECTION:
.			534	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061400 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 14 22:05:07 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 149.239.232.197.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.239.232.197.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
184.168.152.120	attackspambots	The Wordfence administrative URL for this site is: http://www.bridgendcomputerrepair.com/wp-admin/admin.php?page=Wordfence A user with IP addr 184.168.152.120 has been locked out from signing in or using the password recovery form for the following reason: Used an invalid username 'wproot' to try to sign in.	2019-07-29 03:45:16
152.136.214.176	attackspam	http	2019-07-29 03:38:41
103.139.77.31	attack	Jul 28 16:36:07 h2177944 kernel: \[2648567.742926\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.139.77.31 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=53 ID=29490 PROTO=TCP SPT=45462 DPT=23 WINDOW=56822 RES=0x00 SYN URGP=0 Jul 28 16:46:05 h2177944 kernel: \[2649165.188962\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.139.77.31 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=53 ID=29490 PROTO=TCP SPT=45462 DPT=23 WINDOW=56822 RES=0x00 SYN URGP=0 Jul 28 16:47:17 h2177944 kernel: \[2649237.480910\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.139.77.31 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=53 ID=29490 PROTO=TCP SPT=45462 DPT=23 WINDOW=56822 RES=0x00 SYN URGP=0 Jul 28 16:56:53 h2177944 kernel: \[2649813.702246\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.139.77.31 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=53 ID=29490 PROTO=TCP SPT=45462 DPT=23 WINDOW=56822 RES=0x00 SYN URGP=0 Jul 28 17:05:03 h2177944 kernel: \[2650303.387457\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.139.77.31 DST=85.214.117.9 LEN=44	2019-07-29 03:37:14
103.61.37.165	attackspambots	Jul 28 18:17:41 vps65 sshd\[27642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.61.37.165 user=root Jul 28 18:17:43 vps65 sshd\[27642\]: Failed password for root from 103.61.37.165 port 13063 ssh2 ...	2019-07-29 03:37:33
60.251.189.212	attackbots	DLink DSL Remote OS Command Injection Vulnerability, PTR: 60-251-189-212.HINET-IP.hinet.net.	2019-07-29 03:48:22
178.128.21.32	attackbotsspam	Jul 28 17:39:12 nextcloud sshd\[17105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.21.32 user=root Jul 28 17:39:14 nextcloud sshd\[17105\]: Failed password for root from 178.128.21.32 port 42272 ssh2 Jul 28 17:44:06 nextcloud sshd\[28787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.21.32 user=root ...	2019-07-29 04:18:05
39.91.21.108	attack	Jul 28 13:17:52 vpn01 sshd\[13891\]: Invalid user pi from 39.91.21.108 Jul 28 13:17:52 vpn01 sshd\[13891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.91.21.108 Jul 28 13:17:53 vpn01 sshd\[13893\]: Invalid user pi from 39.91.21.108	2019-07-29 03:43:33
162.247.74.204	attackbotsspam	GET posting.php	2019-07-29 03:28:47
23.129.64.204	attackspambots	Jul 28 13:16:39 localhost sshd\[32185\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.204 user=root Jul 28 13:16:41 localhost sshd\[32185\]: Failed password for root from 23.129.64.204 port 10075 ssh2 Jul 28 13:16:44 localhost sshd\[32185\]: Failed password for root from 23.129.64.204 port 10075 ssh2	2019-07-29 04:10:34
113.53.29.227	attack	http	2019-07-29 03:36:46
106.75.97.206	attackbots	Automatic report - Banned IP Access	2019-07-29 04:05:06
218.92.0.157	attack	Jul 28 18:41:40 sshgateway sshd\[1022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.157 user=root Jul 28 18:41:42 sshgateway sshd\[1022\]: Failed password for root from 218.92.0.157 port 26546 ssh2 Jul 28 18:41:58 sshgateway sshd\[1022\]: error: maximum authentication attempts exceeded for root from 218.92.0.157 port 26546 ssh2 \[preauth\]	2019-07-29 04:14:21
171.241.132.74	attack	2019-07-28T19:23:39.618348stark.klein-stark.info sshd\[14059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.241.132.74 user=root 2019-07-28T19:23:41.640488stark.klein-stark.info sshd\[14059\]: Failed password for root from 171.241.132.74 port 43132 ssh2 2019-07-28T20:19:06.593217stark.klein-stark.info sshd\[17263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.241.132.74 user=root ...	2019-07-29 03:46:28
202.108.33.148	attack	http	2019-07-29 03:49:41
66.45.248.246	attackbotsspam	DATE:2019-07-28_13:16:51, IP:66.45.248.246, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-07-29 04:06:39

Recently Reported IPs

176.251.229.153	127.52.50.191	119.34.200.96	167.107.112.118
14.246.109.57	238.31.46.174	40.107.138.57	79.135.220.57
66.248.206.50	151.136.87.112	92.125.30.248	23.15.9.43
141.11.28.46	14.185.1.204	89.177.84.38	185.141.140.151
123.150.220.61	222.240.52.170	103.163.182.229	31.0.124.188