197.245.2.195 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
197.245.27.87	attack	Scanning random ports - tries to find possible vulnerable services	2020-03-02 07:44:20
197.245.24.104	attackspambots	Unauthorized connection attempt detected from IP address 197.245.24.104 to port 80 [J]	2020-01-24 05:05:26
197.245.233.8	attackbots	Aug 24 16:18:52 mout sshd[7792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.245.233.8 user=root Aug 24 16:18:54 mout sshd[7792]: Failed password for root from 197.245.233.8 port 42890 ssh2	2019-08-25 04:25:29
197.245.233.8	attackbots	Aug 24 13:04:01 mout sshd[25773]: Invalid user servercsgo from 197.245.233.8 port 45492	2019-08-24 19:09:17
197.245.233.8	attackspambots	Aug 22 11:19:17 kapalua sshd\[21087\]: Invalid user student04 from 197.245.233.8 Aug 22 11:19:17 kapalua sshd\[21087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.245.233.8 Aug 22 11:19:19 kapalua sshd\[21087\]: Failed password for invalid user student04 from 197.245.233.8 port 40134 ssh2 Aug 22 11:24:23 kapalua sshd\[21544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.245.233.8 user=root Aug 22 11:24:25 kapalua sshd\[21544\]: Failed password for root from 197.245.233.8 port 58356 ssh2	2019-08-23 05:32:59
197.245.217.158	attackspam	Jul 16 13:09:42 blackhole sshd\[19067\]: Invalid user admina from 197.245.217.158 port 51733 Jul 16 13:09:42 blackhole sshd\[19067\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.245.217.158 Jul 16 13:09:44 blackhole sshd\[19067\]: Failed password for invalid user admina from 197.245.217.158 port 51733 ssh2 ...	2019-07-16 23:58:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.245.2.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1187
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;197.245.2.195.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012400 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 16:17:13 CST 2025
;; MSG SIZE  rcvd: 106

Host info

195.2.245.197.in-addr.arpa domain name pointer dsl-197-245-2-195.voxdsl.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
195.2.245.197.in-addr.arpa	name = dsl-197-245-2-195.voxdsl.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
149.202.164.82	attackbots	(sshd) Failed SSH login from 149.202.164.82 (FR/France/ip-149-202-164.eu): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 5 05:54:39 ubnt-55d23 sshd[11859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.164.82 user=root Jun 5 05:54:41 ubnt-55d23 sshd[11859]: Failed password for root from 149.202.164.82 port 58310 ssh2	2020-06-05 15:31:23
31.170.51.83	attack	(IR/Iran/-) SMTP Bruteforcing attempts	2020-06-05 15:53:13
106.13.196.51	attackspam	Jun 5 08:04:40 server sshd[31156]: Failed password for root from 106.13.196.51 port 49220 ssh2 Jun 5 08:08:02 server sshd[1871]: Failed password for root from 106.13.196.51 port 37718 ssh2 Jun 5 08:11:37 server sshd[5989]: Failed password for root from 106.13.196.51 port 54450 ssh2	2020-06-05 15:38:33
107.189.2.3	attackspambots	107.189.2.3 - - [05/Jun/2020:05:54:44 +0200] "GET /wp-login.php HTTP/1.1" 200 6702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 107.189.2.3 - - [05/Jun/2020:05:54:46 +0200] "POST /wp-login.php HTTP/1.1" 200 6953 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 107.189.2.3 - - [05/Jun/2020:05:54:47 +0200] "GET /wp-login.php HTTP/1.1" 200 6702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-05 15:27:58
51.89.64.18	attackbotsspam	MYH,DEF POST /downloader/	2020-06-05 15:30:08
51.255.173.70	attack	Jun 5 08:54:40 ns381471 sshd[27859]: Failed password for root from 51.255.173.70 port 41898 ssh2	2020-06-05 15:24:05
61.177.172.128	attack	2020-06-05T09:19:32.021197sd-86998 sshd[34139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root 2020-06-05T09:19:33.984916sd-86998 sshd[34139]: Failed password for root from 61.177.172.128 port 25225 ssh2 2020-06-05T09:19:36.990795sd-86998 sshd[34139]: Failed password for root from 61.177.172.128 port 25225 ssh2 2020-06-05T09:19:32.021197sd-86998 sshd[34139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root 2020-06-05T09:19:33.984916sd-86998 sshd[34139]: Failed password for root from 61.177.172.128 port 25225 ssh2 2020-06-05T09:19:36.990795sd-86998 sshd[34139]: Failed password for root from 61.177.172.128 port 25225 ssh2 2020-06-05T09:19:32.021197sd-86998 sshd[34139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root 2020-06-05T09:19:33.984916sd-86998 sshd[34139]: Failed password for root from ...	2020-06-05 15:21:04
139.59.32.241	attackbots	detected by Fail2Ban	2020-06-05 15:49:18
171.236.161.232	attackbots	SMB Server BruteForce Attack	2020-06-05 15:22:49
31.170.60.72	attackbots	(IR/Iran/-) SMTP Bruteforcing attempts	2020-06-05 15:49:06
157.245.98.160	attackbots	Jun 5 08:19:56 eventyay sshd[26607]: Failed password for root from 157.245.98.160 port 53672 ssh2 Jun 5 08:23:05 eventyay sshd[26758]: Failed password for root from 157.245.98.160 port 45776 ssh2 ...	2020-06-05 15:51:50
107.175.150.83	attackspam	(sshd) Failed SSH login from 107.175.150.83 (US/United States/8200eisp.org): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 5 07:38:30 amsweb01 sshd[10140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.150.83 user=root Jun 5 07:38:31 amsweb01 sshd[10140]: Failed password for root from 107.175.150.83 port 60347 ssh2 Jun 5 07:46:26 amsweb01 sshd[11655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.150.83 user=root Jun 5 07:46:28 amsweb01 sshd[11655]: Failed password for root from 107.175.150.83 port 59367 ssh2 Jun 5 07:49:43 amsweb01 sshd[12189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.150.83 user=root	2020-06-05 15:29:31
37.238.219.230	attackbots	(IQ/Iraq/-) SMTP Bruteforcing attempts	2020-06-05 15:33:38
46.101.103.207	attackspambots	prod6 ...	2020-06-05 15:54:38
213.135.85.197	attack	Jun 5 05:54:10 ns3164893 sshd[10215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.135.85.197 user=root Jun 5 05:54:12 ns3164893 sshd[10215]: Failed password for root from 213.135.85.197 port 44760 ssh2 ...	2020-06-05 15:55:03

Recently Reported IPs

160.106.25.103	8.238.179.227	193.143.173.83	229.178.215.125
141.154.98.247	206.130.56.118	75.85.27.229	124.58.91.171
249.208.6.233	161.198.163.142	24.219.166.114	249.199.42.64
5.228.147.70	65.38.36.23	147.192.99.63	126.19.183.70
98.49.220.12	53.179.8.47	39.111.118.1	240.167.182.242