197.78.145.124

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: MTN

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.78.145.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59575
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;197.78.145.124.			IN	A

;; AUTHORITY SECTION:
.			226	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010502 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 06 10:06:00 CST 2022
;; MSG SIZE  rcvd: 107

Host info

b'Host 124.145.78.197.in-addr.arpa. not found: 3(NXDOMAIN)
'

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 124.145.78.197.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.144.73.114	attackspambots	51.144.73.114 - - [07/Aug/2020:14:08:01 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.144.73.114 - - [07/Aug/2020:14:08:02 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.144.73.114 - - [07/Aug/2020:14:08:02 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-07 21:08:46
85.209.0.100	attackspam	Unauthorized access to SSH at 7/Aug/2020:13:10:20 +0000.	2020-08-07 21:24:06
185.176.27.42	attackbotsspam	firewall-block, port(s): 3224/tcp	2020-08-07 21:02:35
109.244.35.42	attackspambots	Aug 3 05:56:00 ns sshd[31565]: Connection from 109.244.35.42 port 39250 on 134.119.36.27 port 22 Aug 3 05:56:03 ns sshd[31565]: User r.r from 109.244.35.42 not allowed because not listed in AllowUsers Aug 3 05:56:03 ns sshd[31565]: Failed password for invalid user r.r from 109.244.35.42 port 39250 ssh2 Aug 3 05:56:03 ns sshd[31565]: Received disconnect from 109.244.35.42 port 39250:11: Bye Bye [preauth] Aug 3 05:56:03 ns sshd[31565]: Disconnected from 109.244.35.42 port 39250 [preauth] Aug 3 06:05:33 ns sshd[9368]: Connection from 109.244.35.42 port 55982 on 134.119.36.27 port 22 Aug 3 06:05:41 ns sshd[9368]: User r.r from 109.244.35.42 not allowed because not listed in AllowUsers Aug 3 06:05:41 ns sshd[9368]: Failed password for invalid user r.r from 109.244.35.42 port 55982 ssh2 Aug 3 06:05:41 ns sshd[9368]: Received disconnect from 109.244.35.42 port 55982:11: Bye Bye [preauth] Aug 3 06:05:41 ns sshd[9368]: Disconnected from 109.244.35.42 port 55982 [preaut........ -------------------------------	2020-08-07 21:21:17
106.12.220.80	attackbots	Aug 7 14:02:31 haigwepa sshd[374]: Failed password for root from 106.12.220.80 port 46676 ssh2 ...	2020-08-07 21:40:04
222.186.175.183	attackspambots	2020-08-07T13:18:47.181611vps1033 sshd[22910]: Failed password for root from 222.186.175.183 port 30756 ssh2 2020-08-07T13:18:50.548265vps1033 sshd[22910]: Failed password for root from 222.186.175.183 port 30756 ssh2 2020-08-07T13:18:53.660293vps1033 sshd[22910]: Failed password for root from 222.186.175.183 port 30756 ssh2 2020-08-07T13:18:57.190383vps1033 sshd[22910]: Failed password for root from 222.186.175.183 port 30756 ssh2 2020-08-07T13:19:00.598237vps1033 sshd[22910]: Failed password for root from 222.186.175.183 port 30756 ssh2 ...	2020-08-07 21:35:53
180.105.169.188	attackspam	Attempted to establish connection to non opened port 23	2020-08-07 21:00:45
14.18.154.186	attackspambots	Aug 7 14:03:20 vps639187 sshd\[21647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.154.186 user=root Aug 7 14:03:22 vps639187 sshd\[21647\]: Failed password for root from 14.18.154.186 port 56735 ssh2 Aug 7 14:08:06 vps639187 sshd\[21738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.154.186 user=root ...	2020-08-07 20:58:40
81.134.43.131	attackspambots	81.134.43.131 - - [07/Aug/2020:13:06:28 +0100] "POST /wp-login.php HTTP/1.1" 200 2779 "https://www.mosslaw.co.uk/wp-login.php?redirect_to=https%3A%2F%2Fwww.mosslaw.co.uk%2Fwp-admin%2F&reauth=1" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 81.134.43.131 - - [07/Aug/2020:13:06:55 +0100] "POST /wp-login.php?action=lostpassword HTTP/1.1" 302 5 "https://www.mosslaw.co.uk/wp-login.php?action=lostpassword" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 81.134.43.131 - - [07/Aug/2020:13:07:49 +0100] "POST /wp-login.php?action=resetpass HTTP/1.1" 200 1059 "https://www.mosslaw.co.uk/wp-login.php?action=rp" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" ...	2020-08-07 21:26:21
218.92.0.247	attackbots	2020-08-07T16:34:29.153578afi-git.jinr.ru sshd[20103]: Failed password for root from 218.92.0.247 port 31628 ssh2 2020-08-07T16:34:32.514291afi-git.jinr.ru sshd[20103]: Failed password for root from 218.92.0.247 port 31628 ssh2 2020-08-07T16:34:35.952792afi-git.jinr.ru sshd[20103]: Failed password for root from 218.92.0.247 port 31628 ssh2 2020-08-07T16:34:35.952924afi-git.jinr.ru sshd[20103]: error: maximum authentication attempts exceeded for root from 218.92.0.247 port 31628 ssh2 [preauth] 2020-08-07T16:34:35.952939afi-git.jinr.ru sshd[20103]: Disconnecting: Too many authentication failures [preauth] ...	2020-08-07 21:36:26
162.214.28.25	attack	162.214.28.25 - - [07/Aug/2020:14:10:32 +0100] "POST /wp-login.php HTTP/1.1" 200 1908 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 162.214.28.25 - - [07/Aug/2020:14:10:35 +0100] "POST /wp-login.php HTTP/1.1" 200 1839 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 162.214.28.25 - - [07/Aug/2020:14:10:36 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-07 21:35:14
221.2.35.78	attackspambots	2020-08-07T07:11:54.327483linuxbox-skyline sshd[114187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.2.35.78 user=root 2020-08-07T07:11:55.942926linuxbox-skyline sshd[114187]: Failed password for root from 221.2.35.78 port 5588 ssh2 ...	2020-08-07 21:39:35
185.53.97.59	attack	SS5,WP GET //wp-login.php GET /blog//wp-login.php GET /wordpress//wp-login.php GET /wp//wp-login.php	2020-08-07 21:32:51
111.72.194.40	attackspambots	Aug 7 15:09:04 srv01 postfix/smtpd\[29160\]: warning: unknown\[111.72.194.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 7 15:09:22 srv01 postfix/smtpd\[29160\]: warning: unknown\[111.72.194.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 7 15:09:41 srv01 postfix/smtpd\[29160\]: warning: unknown\[111.72.194.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 7 15:10:13 srv01 postfix/smtpd\[29160\]: warning: unknown\[111.72.194.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 7 15:12:51 srv01 postfix/smtpd\[8096\]: warning: unknown\[111.72.194.40\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-07 21:23:42
18.144.21.52	attackbots	Automatic report - XMLRPC Attack	2020-08-07 21:06:07

Recently Reported IPs

173.11.214.57	3.210.122.73	232.151.171.155	97.26.152.131
248.39.160.189	180.227.138.108	106.9.109.173	177.74.157.177
47.188.198.50	147.93.14.62	204.46.51.212	67.233.166.245
218.19.220.222	68.54.163.122	235.21.18.125	16.24.92.195
27.94.112.44	209.138.15.198	26.94.117.110	15.137.184.108