131.196.219.90

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): Giganetlink Telecomunicacoes Ltda Me - ME

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Invalid user alipio from 131.196.219.90 port 33934	2020-10-12 01:46:54
attackbotsspam	2020-10-11T04:24:54.3652731495-001 sshd[56644]: Invalid user student1 from 131.196.219.90 port 60336 2020-10-11T04:24:54.3683701495-001 sshd[56644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.196.219.90 2020-10-11T04:24:54.3652731495-001 sshd[56644]: Invalid user student1 from 131.196.219.90 port 60336 2020-10-11T04:24:56.9679101495-001 sshd[56644]: Failed password for invalid user student1 from 131.196.219.90 port 60336 ssh2 2020-10-11T04:28:50.1705851495-001 sshd[56817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.196.219.90 user=root 2020-10-11T04:28:52.1684841495-001 sshd[56817]: Failed password for root from 131.196.219.90 port 60064 ssh2 ...	2020-10-11 17:37:24
attackbots	Oct 6 15:25:45 OPSO sshd\[23996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.196.219.90 user=root Oct 6 15:25:47 OPSO sshd\[23996\]: Failed password for root from 131.196.219.90 port 39900 ssh2 Oct 6 15:30:30 OPSO sshd\[24455\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.196.219.90 user=root Oct 6 15:30:32 OPSO sshd\[24455\]: Failed password for root from 131.196.219.90 port 47460 ssh2 Oct 6 15:35:15 OPSO sshd\[25327\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.196.219.90 user=root	2020-10-07 01:11:57
attackspambots	Invalid user zimbra from 131.196.219.90 port 49484	2020-09-29 01:23:51
attack	(sshd) Failed SSH login from 131.196.219.90 (BR/Brazil/Espirito Santo/Vila Velha/-/[AS265927 GIGANETLINK TELECOMUNICACOES LTDA ME - ME]): 10 in the last 3600 secs	2020-09-28 17:27:26
attackbots	Jul 21 01:46:52 h1745522 sshd[25964]: Invalid user umg from 131.196.219.90 port 45100 Jul 21 01:46:52 h1745522 sshd[25964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.196.219.90 Jul 21 01:46:52 h1745522 sshd[25964]: Invalid user umg from 131.196.219.90 port 45100 Jul 21 01:46:54 h1745522 sshd[25964]: Failed password for invalid user umg from 131.196.219.90 port 45100 ssh2 Jul 21 01:52:18 h1745522 sshd[26759]: Invalid user openfire from 131.196.219.90 port 34806 Jul 21 01:52:18 h1745522 sshd[26759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.196.219.90 Jul 21 01:52:18 h1745522 sshd[26759]: Invalid user openfire from 131.196.219.90 port 34806 Jul 21 01:52:20 h1745522 sshd[26759]: Failed password for invalid user openfire from 131.196.219.90 port 34806 ssh2 Jul 21 01:55:52 h1745522 sshd[27269]: Invalid user java from 131.196.219.90 port 60660 ...	2020-07-21 08:12:04
attack	2020-07-17 19:13:31,605 fail2ban.actions [1840]: NOTICE [sshd] Ban 131.196.219.90	2020-07-18 07:21:58
attack	Jul 8 16:59:39 jane sshd[6707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.196.219.90 Jul 8 16:59:41 jane sshd[6707]: Failed password for invalid user josh from 131.196.219.90 port 58240 ssh2 ...	2020-07-08 23:29:40

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.196.219.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18651
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;131.196.219.90.			IN	A

;; AUTHORITY SECTION:
.			243	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070800 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 08 23:29:27 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 90.219.196.131.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 90.219.196.131.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
45.10.24.222	attack	Feb 26 08:50:47 tdfoods sshd\[6624\]: Invalid user saitou from 45.10.24.222 Feb 26 08:50:47 tdfoods sshd\[6624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.10.24.222 Feb 26 08:50:49 tdfoods sshd\[6624\]: Failed password for invalid user saitou from 45.10.24.222 port 40918 ssh2 Feb 26 08:59:41 tdfoods sshd\[7335\]: Invalid user a from 45.10.24.222 Feb 26 08:59:41 tdfoods sshd\[7335\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.10.24.222	2020-02-27 03:01:40
201.184.43.35	attackbotsspam	Feb 27 01:59:55 webhost01 sshd[23453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.184.43.35 Feb 27 01:59:58 webhost01 sshd[23453]: Failed password for invalid user alan from 201.184.43.35 port 3684 ssh2 ...	2020-02-27 03:10:23
123.21.19.83	attackbotsspam	SMTP-SASL bruteforce attempt	2020-02-27 03:15:25
210.202.8.64	attackspambots	$f2bV_matches	2020-02-27 03:17:01
210.212.249.228	attackspambots	$f2bV_matches	2020-02-27 03:07:37
190.74.214.7	attack	1582724121 - 02/26/2020 14:35:21 Host: 190.74.214.7/190.74.214.7 Port: 445 TCP Blocked	2020-02-27 02:55:43
195.29.233.0	attackbots	Feb 26 21:34:13 bacztwo courieresmtpd[16052]: error,relay=::ffff:195.29.233.0,from=,to=: 511 Blacklisted by zen.spamhaus.org Feb 26 21:34:29 bacztwo courieresmtpd[16052]: error,relay=::ffff:195.29.233.0,from=,to=: 511 Blacklisted by zen.spamhaus.org Feb 26 21:34:37 bacztwo courieresmtpd[19336]: error,relay=::ffff:195.29.233.0,from=,to=: 511 Blacklisted by zen.spamhaus.org Feb 26 21:34:59 bacztwo courieresmtpd[21866]: error,relay=::ffff:195.29.233.0,from=,to=: 511 Blacklisted by zen.spamhaus.org Feb 26 21:35:02 bacztwo courieresmtpd[16052]: error,relay=::ffff:195.29.233.0,from=,to=: 511 Blacklisted by zen.spamhaus.org ...	2020-02-27 03:11:41
49.235.13.226	attackbots	Port scan on 2 port(s): 2375 2376	2020-02-27 02:59:59
212.64.16.31	attackspam	Feb 26 15:42:47 MK-Soft-Root1 sshd[13086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.16.31 Feb 26 15:42:50 MK-Soft-Root1 sshd[13086]: Failed password for invalid user plex from 212.64.16.31 port 34282 ssh2 ...	2020-02-27 02:47:37
210.56.195.150	attack	$f2bV_matches	2020-02-27 02:59:27
119.42.175.200	attackspambots	SSH authentication failure x 6 reported by Fail2Ban ...	2020-02-27 03:22:56
210.24.187.227	attackspam	$f2bV_matches	2020-02-27 03:04:30
188.242.88.126	attackspambots	Telnet Server BruteForce Attack	2020-02-27 03:04:59
187.188.185.162	attackbotsspam	SMTP-SASL bruteforce attempt	2020-02-27 03:13:31
207.67.25.170	attackbots	Feb 25 12:32:08 dax sshd[27204]: warning: /etc/hosts.deny, line 15136: can't verify hostname: getaddrinfo(207-67-25-170.static.ctl.one, AF_INET) failed Feb 25 12:32:08 dax sshd[27204]: reveeclipse mapping checking getaddrinfo for 207-67-25-170.static.ctl.one [207.67.25.170] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 25 12:32:08 dax sshd[27204]: Invalid user guest from 207.67.25.170 Feb 25 12:32:08 dax sshd[27204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.67.25.170 Feb 25 12:32:10 dax sshd[27204]: Failed password for invalid user guest from 207.67.25.170 port 48210 ssh2 Feb 25 12:32:10 dax sshd[27204]: Received disconnect from 207.67.25.170: 11: Bye Bye [preauth] Feb 25 12:33:37 dax sshd[27395]: warning: /etc/hosts.deny, line 15136: can't verify hostname: getaddrinfo(207-67-25-170.static.ctl.one, AF_INET) failed Feb 25 12:33:38 dax sshd[27395]: reveeclipse mapping checking getaddrinfo for 207-67-25-170.static.ctl.one [207......... -------------------------------	2020-02-27 03:21:53

最近上报的IP列表

45.83.65.5	203.218.157.178	186.91.243.133	41.230.98.78
103.224.153.177	88.232.225.55	190.124.60.235	175.176.90.134
106.54.112.31	222.10.30.128	124.123.164.14	182.253.243.235
117.251.16.15	109.237.39.197	89.47.62.122	61.227.48.117
41.234.7.2	105.112.121.91	113.164.246.42	36.236.85.104