197.88.148.2 - IPInfo

Basic Info

City: Pretoria

Region: Gauteng

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.88.148.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57594
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;197.88.148.2.			IN	A

;; AUTHORITY SECTION:
.			378	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082501 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 26 07:50:21 CST 2020
;; MSG SIZE  rcvd: 116

Host info

2.148.88.197.in-addr.arpa domain name pointer 197-88-148-2.dsl.mweb.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.148.88.197.in-addr.arpa	name = 197-88-148-2.dsl.mweb.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.68.141.62	attackspambots	Oct 11 19:39:33 friendsofhawaii sshd\[27505\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.ip-51-68-141.eu user=root Oct 11 19:39:35 friendsofhawaii sshd\[27505\]: Failed password for root from 51.68.141.62 port 42768 ssh2 Oct 11 19:43:36 friendsofhawaii sshd\[27847\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.ip-51-68-141.eu user=root Oct 11 19:43:39 friendsofhawaii sshd\[27847\]: Failed password for root from 51.68.141.62 port 53806 ssh2 Oct 11 19:47:34 friendsofhawaii sshd\[28195\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.ip-51-68-141.eu user=root	2019-10-12 14:02:54
182.61.40.158	attack	Oct 10 14:44:38 vegas sshd[5244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.40.158 user=r.r Oct 10 14:44:41 vegas sshd[5244]: Failed password for r.r from 182.61.40.158 port 47712 ssh2 Oct 10 15:13:19 vegas sshd[10476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.40.158 user=r.r Oct 10 15:13:20 vegas sshd[10476]: Failed password for r.r from 182.61.40.158 port 37718 ssh2 Oct 10 15:18:23 vegas sshd[11343]: Invalid user 123 from 182.61.40.158 port 44990 Oct 10 15:18:23 vegas sshd[11343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.40.158 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=182.61.40.158	2019-10-12 13:23:54
207.204.66.232	attackspambots	" "	2019-10-12 14:09:22
82.207.23.43	attack	Oct 12 08:00:19 bouncer sshd\[5005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.207.23.43 user=root Oct 12 08:00:22 bouncer sshd\[5005\]: Failed password for root from 82.207.23.43 port 38204 ssh2 Oct 12 08:04:57 bouncer sshd\[5014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.207.23.43 user=root ...	2019-10-12 14:12:18
35.231.66.240	attackbots	[munged]::443 35.231.66.240 - - [12/Oct/2019:08:04:40 +0200] "POST /[munged]: HTTP/1.1" 401 8486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 35.231.66.240 - - [12/Oct/2019:08:04:42 +0200] "POST /[munged]: HTTP/1.1" 401 8486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 35.231.66.240 - - [12/Oct/2019:08:04:43 +0200] "POST /[munged]: HTTP/1.1" 401 8486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 35.231.66.240 - - [12/Oct/2019:08:04:45 +0200] "POST /[munged]: HTTP/1.1" 401 8486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 35.231.66.240 - - [12/Oct/2019:08:04:47 +0200] "POST /[munged]: HTTP/1.1" 401 8486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 35.231.66.240 - - [12/Oct/2019:08:04:49 +0200] "POST /[munged]: HTTP/1.1" 401 8487 "-" "Mozilla/5.0 (X11; Ubun	2019-10-12 14:10:49
138.68.4.198	attackbots	Invalid user Big2017 from 138.68.4.198 port 52460	2019-10-12 14:00:11
27.194.120.144	attack	Unauthorised access (Oct 11) SRC=27.194.120.144 LEN=40 TTL=49 ID=15984 TCP DPT=8080 WINDOW=29666 SYN Unauthorised access (Oct 11) SRC=27.194.120.144 LEN=40 TTL=49 ID=12499 TCP DPT=8080 WINDOW=25395 SYN Unauthorised access (Oct 10) SRC=27.194.120.144 LEN=40 TTL=49 ID=39237 TCP DPT=8080 WINDOW=25395 SYN Unauthorised access (Oct 8) SRC=27.194.120.144 LEN=40 TTL=49 ID=54102 TCP DPT=8080 WINDOW=25395 SYN Unauthorised access (Oct 8) SRC=27.194.120.144 LEN=40 TTL=49 ID=60077 TCP DPT=8080 WINDOW=25395 SYN Unauthorised access (Oct 7) SRC=27.194.120.144 LEN=40 TTL=49 ID=19309 TCP DPT=8080 WINDOW=12643 SYN Unauthorised access (Oct 6) SRC=27.194.120.144 LEN=40 TTL=49 ID=54614 TCP DPT=8080 WINDOW=25395 SYN Unauthorised access (Oct 6) SRC=27.194.120.144 LEN=40 TTL=49 ID=16280 TCP DPT=8080 WINDOW=38422 SYN	2019-10-12 13:42:37
94.124.16.106	attackspam	Automatic report - XMLRPC Attack	2019-10-12 13:55:11
134.209.252.119	attackspam	Oct 11 05:37:23 friendsofhawaii sshd\[19714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.252.119 user=root Oct 11 05:37:24 friendsofhawaii sshd\[19714\]: Failed password for root from 134.209.252.119 port 51516 ssh2 Oct 11 05:40:42 friendsofhawaii sshd\[20091\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.252.119 user=root Oct 11 05:40:44 friendsofhawaii sshd\[20091\]: Failed password for root from 134.209.252.119 port 33050 ssh2 Oct 11 05:44:12 friendsofhawaii sshd\[20395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.252.119 user=root	2019-10-12 13:44:05
185.176.27.166	attackbotsspam	Port Scan detected from 185.176.27.166 (RU/Russia/-). 11 hits in the last 290 seconds	2019-10-12 14:03:55
202.230.143.53	attackbots	2019-10-12T05:28:18.972016abusebot-6.cloudsearch.cf sshd\[19717\]: Invalid user 123Lucas from 202.230.143.53 port 48900	2019-10-12 13:46:09
219.223.234.2	attack	Oct 11 18:35:08 site3 sshd\[181244\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.223.234.2 user=root Oct 11 18:35:10 site3 sshd\[181244\]: Failed password for root from 219.223.234.2 port 41193 ssh2 Oct 11 18:39:09 site3 sshd\[181326\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.223.234.2 user=root Oct 11 18:39:10 site3 sshd\[181326\]: Failed password for root from 219.223.234.2 port 54830 ssh2 Oct 11 18:43:11 site3 sshd\[181390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.223.234.2 user=root ...	2019-10-12 14:03:29
45.55.12.248	attackspam	Invalid user ftpuser from 45.55.12.248 port 34888	2019-10-12 13:53:41
114.33.107.65	attackspam	Portscan detected	2019-10-12 14:04:52
2607:f298:5:102b::9fb:6872	attack	Automatic report - XMLRPC Attack	2019-10-12 14:01:29

Recently Reported IPs

117.200.195.121	235.143.79.228	166.246.20.155	119.203.230.133
36.229.86.56	143.8.199.239	24.227.40.16	89.73.49.97
125.86.255.83	95.58.89.179	231.51.228.127	18.28.29.16
59.2.168.17	77.142.142.98	145.255.252.93	107.22.230.133
60.68.102.163	210.255.245.107	78.41.66.146	117.173.167.246