131.196.48.84 - IPInfo

基本信息:

城市(city): Santa Rita

省份(region): Paraiba

国家(country): Brazil

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       131.196.0.0 - 131.196.255.255
CIDR:           131.196.0.0/16
NetName:        LACNIC-ERX-131-196-0-0
NetHandle:      NET-131-196-0-0-1
Parent:         NET131 (NET-131-0-0-0-0)
NetType:        Transferred to LACNIC
OriginAS:       
Organization:   Latin American and Caribbean IP address Regional Registry (LACNIC)
RegDate:        2015-09-04
Updated:        2015-09-04
Comment:        This IP address range is under LACNIC responsibility
Comment:        for further allocations to users in LACNIC region.
Comment:        Please see http://www.lacnic.net/ for further details,
Comment:        or check the WHOIS server located at http://whois.lacnic.net
Ref:            https://rdap.arin.net/registry/ip/131.196.0.0

ResourceLink:  http://lacnic.net/cgi-bin/lacnic/whois
ResourceLink:  whois.lacnic.net


OrgName:        Latin American and Caribbean IP address Regional Registry
OrgId:          LACNIC
Address:        Rambla Republica de Mexico 6125
City:           Montevideo
StateProv:      
PostalCode:     11400
Country:        UY
RegDate:        2002-07-27
Updated:        2018-03-15
Ref:            https://rdap.arin.net/registry/entity/LACNIC

ReferralServer:  whois://whois.lacnic.net
ResourceLink:  http://lacnic.net/cgi-bin/lacnic/whois

OrgTechHandle: LACNIC-ARIN
OrgTechName:   LACNIC Whois Info
OrgTechPhone:  +598-2604-2222 
OrgTechEmail:  whois-contact@lacnic.net
OrgTechRef:    https://rdap.arin.net/registry/entity/LACNIC-ARIN

OrgAbuseHandle: LWI100-ARIN
OrgAbuseName:   LACNIC Whois Info
OrgAbusePhone:  +598-2604-2222 
OrgAbuseEmail:  abuse@lacnic.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/LWI100-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.lacnic.net.

% IP Client: 124.223.158.242
 % Copyright (c) Nic.br - Use of this data is governed by the Use and
% Privacy Policy at https://registro.br/upp . Distribution,
% commercialization, reproduction, and use for advertising or similar
% purposes are expressly prohibited.
% 2025-10-08T01:56:59-03:00 - 124.223.158.242

inetnum:     131.196.48.0/22
aut-num:     AS265894
abuse-c:     SALSI130
owner:       Portal.com STI eirele
ownerid:     11.386.402/0001-92
responsible: Saul Lima da Silva
owner-c:     SALSI130
tech-c:      SALSI130
inetrev:     131.196.48.0/22
nserver:     ns1.portalcom.inf.br
nsstat:      20251007 AA
nslastaa:    20251007
nserver:     ns2.portalcom.inf.br
nsstat:      20251007 AA
nslastaa:    20251007
created:     20170626
changed:     20170626

nic-hdl-br:  SALSI130
person:      SAUL LIMA DA SILVA
created:     20170322
changed:     20250930

% Security and mail abuse issues should also be addressed to cert.br,
% respectivelly to cert@cert.br and mail-abuse@cert.br
%
% whois.registro.br only accepts exact match queries for domains,
% registrants, contacts, tickets, providers, IPs, and ASNs.

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.196.48.84
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42332
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.196.48.84.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025100702 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 08 12:38:33 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

84.48.196.131.in-addr.arpa domain name pointer 84.48.196.131.portalcom.inf.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
84.48.196.131.in-addr.arpa	name = 84.48.196.131.portalcom.inf.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
220.132.36.160	attackbots	Aug 26 05:22:50 localhost sshd\[8638\]: Invalid user chicago from 220.132.36.160 port 47668 Aug 26 05:22:50 localhost sshd\[8638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.132.36.160 Aug 26 05:22:53 localhost sshd\[8638\]: Failed password for invalid user chicago from 220.132.36.160 port 47668 ssh2 ...	2019-08-26 16:58:57
177.62.73.230	attackbots	Automatic report - Port Scan Attack	2019-08-26 17:58:29
189.224.11.60	attackbots	Aug 26 01:39:27 * sshd[11804]: reveeclipse mapping checking getaddrinfo for dsl-189-224-11-60-dyn.prod-infinhostnameum.com.mx [189.224.11.60] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 26 01:39:27 * sshd[11804]: Invalid user ubnt from 189.224.11.60 Aug 26 01:39:27 * sshd[11804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.224.11.60 Aug 26 01:39:29 * sshd[11804]: Failed password for invalid user ubnt from 189.224.11.60 port 42827 ssh2 Aug 26 01:39:31 * sshd[11804]: Failed password for invalid user ubnt from 189.224.11.60 port 42827 ssh2 Aug 26 01:39:33 * sshd[11804]: Failed password for invalid user ubnt from 189.224.11.60 port 42827 ssh2 Aug 26 01:39:36 * sshd[11804]: Failed password for invalid user ubnt from 189.224.11.60 port 42827 ssh2 Aug 26 01:39:38 * sshd[11804]: Failed password for invalid user ubnt from 189.224.11.60 port 42827 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=189.224.	2019-08-26 17:10:44
45.55.47.149	attackbotsspam	Aug 25 22:37:17 friendsofhawaii sshd\[5504\]: Invalid user jiang from 45.55.47.149 Aug 25 22:37:17 friendsofhawaii sshd\[5504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.47.149 Aug 25 22:37:20 friendsofhawaii sshd\[5504\]: Failed password for invalid user jiang from 45.55.47.149 port 44180 ssh2 Aug 25 22:42:42 friendsofhawaii sshd\[6136\]: Invalid user vishvjit from 45.55.47.149 Aug 25 22:42:42 friendsofhawaii sshd\[6136\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.47.149	2019-08-26 16:53:38
153.36.242.143	attackspam	Aug 26 05:17:16 ny01 sshd[30462]: Failed password for root from 153.36.242.143 port 64562 ssh2 Aug 26 05:17:17 ny01 sshd[30466]: Failed password for root from 153.36.242.143 port 61202 ssh2 Aug 26 05:17:18 ny01 sshd[30462]: Failed password for root from 153.36.242.143 port 64562 ssh2	2019-08-26 17:17:50
40.117.135.57	attack	Aug 26 10:48:39 h2177944 sshd\[12061\]: Failed password for invalid user carrerasoft from 40.117.135.57 port 52878 ssh2 Aug 26 11:49:31 h2177944 sshd\[14169\]: Invalid user testuser from 40.117.135.57 port 55330 Aug 26 11:49:31 h2177944 sshd\[14169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.117.135.57 Aug 26 11:49:33 h2177944 sshd\[14169\]: Failed password for invalid user testuser from 40.117.135.57 port 55330 ssh2 ...	2019-08-26 17:55:33
178.62.54.79	attack	Aug 26 08:10:35 ks10 sshd[18529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.54.79 Aug 26 08:10:38 ks10 sshd[18529]: Failed password for invalid user devopsuser from 178.62.54.79 port 53976 ssh2 ...	2019-08-26 18:06:50
183.237.40.52	attack	Helo	2019-08-26 17:16:24
201.150.5.14	attack	Aug 25 18:47:23 php2 sshd\[31654\]: Invalid user oli from 201.150.5.14 Aug 25 18:47:23 php2 sshd\[31654\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.150.5.14 Aug 25 18:47:25 php2 sshd\[31654\]: Failed password for invalid user oli from 201.150.5.14 port 39858 ssh2 Aug 25 18:51:54 php2 sshd\[32077\]: Invalid user kigwa from 201.150.5.14 Aug 25 18:51:54 php2 sshd\[32077\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.150.5.14	2019-08-26 17:20:19
115.77.184.238	attackbots	Aug 26 10:45:12 plex sshd[16518]: Invalid user kernel from 115.77.184.238 port 49808	2019-08-26 16:57:58
68.183.218.185	attackbots	2019-08-26T07:46:49.581104hub.schaetter.us sshd\[15752\]: Invalid user clfs from 68.183.218.185 2019-08-26T07:46:49.613619hub.schaetter.us sshd\[15752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.218.185 2019-08-26T07:46:51.192547hub.schaetter.us sshd\[15752\]: Failed password for invalid user clfs from 68.183.218.185 port 50504 ssh2 2019-08-26T07:54:24.937583hub.schaetter.us sshd\[15801\]: Invalid user boinc from 68.183.218.185 2019-08-26T07:54:24.987381hub.schaetter.us sshd\[15801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.218.185 ...	2019-08-26 17:06:27
80.82.77.18	attackbotsspam	Aug 26 10:58:14 relay postfix/smtpd\[8057\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 26 10:58:31 relay postfix/smtpd\[7458\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 26 10:58:48 relay postfix/smtpd\[8193\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 26 10:59:09 relay postfix/smtpd\[10335\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 26 10:59:29 relay postfix/smtpd\[3926\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-26 17:02:24
45.227.253.115	attackbotsspam	Aug 26 10:47:17 relay postfix/smtpd\[3924\]: warning: unknown\[45.227.253.115\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 26 10:47:25 relay postfix/smtpd\[8197\]: warning: unknown\[45.227.253.115\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 26 10:50:31 relay postfix/smtpd\[8197\]: warning: unknown\[45.227.253.115\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 26 10:50:39 relay postfix/smtpd\[8193\]: warning: unknown\[45.227.253.115\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 26 10:51:44 relay postfix/smtpd\[3924\]: warning: unknown\[45.227.253.115\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-26 17:03:46
218.92.0.174	attackbotsspam	Aug 26 07:00:33 debian sshd\[29777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.174 user=root Aug 26 07:00:35 debian sshd\[29777\]: Failed password for root from 218.92.0.174 port 49637 ssh2 ...	2019-08-26 17:34:13
119.52.48.10	attack	Unauthorised access (Aug 26) SRC=119.52.48.10 LEN=40 TTL=49 ID=65386 TCP DPT=8080 WINDOW=21552 SYN Unauthorised access (Aug 25) SRC=119.52.48.10 LEN=40 TTL=49 ID=58203 TCP DPT=8080 WINDOW=44621 SYN	2019-08-26 17:18:29

最近上报的IP列表

120.14.81.143	116.133.79.121	111.166.155.225	110.244.91.130
139.5.10.106	159.144.215.218	146.190.105.69	45.195.189.100
134.209.249.153	143.110.247.247	160.193.142.66	79.124.59.86
35.241.212.143	156.23.253.145	42.236.17.17	165.232.115.162
52.23.208.103	216.98.231.73	162.216.150.138	198.18.0.58