190.196.19.90 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Chile

运营商(isp): GTD Internet S.A.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
190.196.190.242	attackbots	Unauthorised access (Oct 12) SRC=190.196.190.242 LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=20813 TCP DPT=8080 WINDOW=51222 SYN Unauthorised access (Oct 10) SRC=190.196.190.242 LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=7168 TCP DPT=8080 WINDOW=58817 SYN Unauthorised access (Oct 6) SRC=190.196.190.242 LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=12280 TCP DPT=8080 WINDOW=65233 SYN Unauthorised access (Oct 6) SRC=190.196.190.242 LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=8622 TCP DPT=8080 WINDOW=21873 SYN	2019-10-12 23:50:49
190.196.190.242	attack	Unauthorised access (Sep 25) SRC=190.196.190.242 LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=53660 TCP DPT=8080 WINDOW=21873 SYN Unauthorised access (Sep 24) SRC=190.196.190.242 LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=5592 TCP DPT=8080 WINDOW=51222 SYN Unauthorised access (Sep 24) SRC=190.196.190.242 LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=60231 TCP DPT=8080 WINDOW=51222 SYN	2019-09-25 12:11:18
190.196.190.242	attackbots	Unauthorised access (Sep 12) SRC=190.196.190.242 LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=39345 TCP DPT=8080 WINDOW=65233 SYN Unauthorised access (Sep 12) SRC=190.196.190.242 LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=61200 TCP DPT=8080 WINDOW=51222 SYN Unauthorised access (Sep 11) SRC=190.196.190.242 LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=25109 TCP DPT=8080 WINDOW=65233 SYN	2019-09-13 03:53:59
190.196.190.242	attackspambots	(Sep 1) LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=1958 TCP DPT=8080 WINDOW=21873 SYN (Aug 30) LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=20168 TCP DPT=8080 WINDOW=51222 SYN (Aug 29) LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=46065 TCP DPT=8080 WINDOW=21873 SYN (Aug 29) LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=30667 TCP DPT=8080 WINDOW=65233 SYN (Aug 28) LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=61067 TCP DPT=8080 WINDOW=21873 SYN (Aug 28) LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=21495 TCP DPT=8080 WINDOW=65233 SYN (Aug 28) LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=32790 TCP DPT=8080 WINDOW=65233 SYN (Aug 27) LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=43106 TCP DPT=8080 WINDOW=21873 SYN (Aug 27) LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=14334 TCP DPT=8080 WINDOW=65233 SYN (Aug 26) LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=17531 TCP DPT=8080 WINDOW=51222 SYN (Aug 26) LEN=40 TOS=0x10 PREC=0x40 TTL=53 ID=54356 TCP DPT=8080 WINDOW=58817 SYN	2019-09-02 01:53:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 190.196.19.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44720
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;190.196.19.90.			IN	A

;; AUTHORITY SECTION:
.			518	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092002 1800 900 604800 86400

;; Query time: 208 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 21 12:41:58 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

90.19.196.190.in-addr.arpa domain name pointer static.190.196.19.90.gtdinternet.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
90.19.196.190.in-addr.arpa	name = static.190.196.19.90.gtdinternet.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
177.66.73.207	attackspambots	RDP Bruteforce	2020-03-12 15:35:12
182.253.91.125	attackspam	trying to access non-authorized port	2020-03-12 15:12:51
41.215.70.144	attack	tried multiple times to log in to our server	2020-03-12 15:38:32
46.38.145.164	attackbotsspam	Mar 12 07:19:36 relay postfix/smtpd\[27849\]: warning: unknown\[46.38.145.164\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 12 07:19:42 relay postfix/smtpd\[27849\]: warning: unknown\[46.38.145.164\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 12 07:19:52 relay postfix/smtpd\[27849\]: warning: unknown\[46.38.145.164\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 12 07:25:25 relay postfix/smtpd\[26346\]: warning: unknown\[46.38.145.164\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 12 07:25:31 relay postfix/smtpd\[26346\]: warning: unknown\[46.38.145.164\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-12 15:40:57
159.192.106.238	attack	20/3/11@23:51:54: FAIL: Alarm-Network address from=159.192.106.238 20/3/11@23:51:55: FAIL: Alarm-Network address from=159.192.106.238 ...	2020-03-12 15:46:04
121.69.71.22	attack	Mar 12 08:30:38 dev0-dcde-rnet sshd[14196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.69.71.22 Mar 12 08:30:40 dev0-dcde-rnet sshd[14196]: Failed password for invalid user 96.65.105.69 from 121.69.71.22 port 46889 ssh2 Mar 12 08:42:50 dev0-dcde-rnet sshd[14313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.69.71.22	2020-03-12 15:47:54
14.239.164.189	attack	Honeypot hit.	2020-03-12 15:20:50
62.106.45.112	attack	Mar 11 02:51:42 clarabelen sshd[17217]: Address 62.106.45.112 maps to globeon.mobi, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Mar 11 02:51:42 clarabelen sshd[17217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.106.45.112 user=r.r Mar 11 02:51:44 clarabelen sshd[17217]: Failed password for r.r from 62.106.45.112 port 45334 ssh2 Mar 11 02:51:44 clarabelen sshd[17217]: Received disconnect from 62.106.45.112: 11: Bye Bye [preauth] Mar 11 02:58:12 clarabelen sshd[17660]: Address 62.106.45.112 maps to globeon.mobi, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Mar 11 02:58:12 clarabelen sshd[17660]: Invalid user admin1 from 62.106.45.112 Mar 11 02:58:12 clarabelen sshd[17660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.106.45.112 Mar 11 02:58:14 clarabelen sshd[17660]: Failed password for invalid user admin1 from 62.106.45.112 ........ -------------------------------	2020-03-12 15:48:09
167.114.251.164	attackspam	(sshd) Failed SSH login from 167.114.251.164 (FR/France/164.ip-167-114-251.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 12 04:54:47 elude sshd[26734]: Invalid user gmod from 167.114.251.164 port 32768 Mar 12 04:54:49 elude sshd[26734]: Failed password for invalid user gmod from 167.114.251.164 port 32768 ssh2 Mar 12 05:04:26 elude sshd[28398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.251.164 user=root Mar 12 05:04:28 elude sshd[28398]: Failed password for root from 167.114.251.164 port 53169 ssh2 Mar 12 05:08:09 elude sshd[28603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.251.164 user=root	2020-03-12 15:26:55
165.227.26.69	attackspambots	Mar 12 06:41:49 vmd48417 sshd[22554]: Failed password for root from 165.227.26.69 port 58150 ssh2	2020-03-12 15:28:25
1.53.13.73	attack	trying to access non-authorized port	2020-03-12 15:53:42
218.92.0.145	attackbotsspam	v+ssh-bruteforce	2020-03-12 15:36:37
218.78.30.224	attackspam	Invalid user tomcat from 218.78.30.224 port 45868	2020-03-12 15:26:00
185.209.0.91	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 6700 proto: TCP cat: Misc Attack	2020-03-12 15:24:09
129.204.205.125	attackspambots	Invalid user ftptest from 129.204.205.125 port 52562	2020-03-12 15:49:19

最近上报的IP列表

46.59.17.161	239.195.158.204	217.182.198.187	57.107.93.76
198.192.83.41	189.40.42.192	164.71.15.185	105.174.0.75
185.94.199.112	209.30.69.134	157.119.114.176	115.248.220.32
63.71.86.229	190.93.123.248	100.67.11.53	63.64.207.19
213.72.232.109	15.65.139.216	255.12.124.206	79.196.53.200