191.196.254.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): TELEFÔNICA BRASIL S.A

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 191.196.254.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59249
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;191.196.254.1.			IN	A

;; AUTHORITY SECTION:
.			2433	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019063001 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 01 01:59:12 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

1.254.196.191.in-addr.arpa domain name pointer 191-196-254-1.user.vivozap.com.br.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
1.254.196.191.in-addr.arpa	name = 191-196-254-1.user.vivozap.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
121.134.159.21	attackbotsspam	Jul 22 05:05:38 ovpn sshd\[27237\]: Invalid user polycom from 121.134.159.21 Jul 22 05:05:38 ovpn sshd\[27237\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 Jul 22 05:05:41 ovpn sshd\[27237\]: Failed password for invalid user polycom from 121.134.159.21 port 44714 ssh2 Jul 22 05:11:00 ovpn sshd\[28189\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root Jul 22 05:11:02 ovpn sshd\[28189\]: Failed password for root from 121.134.159.21 port 40534 ssh2	2019-07-22 13:08:59
62.215.188.85	attackbots	DATE:2019-07-22 05:11:42, IP:62.215.188.85, PORT:ssh brute force auth on SSH service (patata)	2019-07-22 12:54:08
193.32.163.74	attackbots	Unauthorized connection attempt from IP address 193.32.163.74 on Port 3306(MYSQL)	2019-07-22 13:25:54
222.165.194.67	attack	Jul 22 02:00:27 fv15 postfix/smtpd[26846]: warning: hostname ip-67-194-static.velo.net.id does not resolve to address 222.165.194.67: Name or service not known Jul 22 02:00:27 fv15 postfix/smtpd[26846]: connect from unknown[222.165.194.67] Jul 22 02:00:28 fv15 postgrey[1068]: action=greylist, reason=new, client_name=unknown, client_address=222.165.194.67, sender=x@x recipient=x@x Jul 22 02:00:28 fv15 policyd-spf[7887]: Softfail; identhostnamey=mailfrom; client-ip=222.165.194.67; helo=ip-9-221-static.velo.net.id; envelope-from=x@x Jul x@x Jul 22 02:00:29 fv15 postfix/smtpd[26846]: lost connection after RCPT from unknown[222.165.194.67] Jul 22 02:00:29 fv15 postfix/smtpd[26846]: disconnect from unknown[222.165.194.67] Jul 22 04:42:29 fv15 postfix/smtpd[13245]: warning: hostname ip-67-194-static.velo.net.id does not resolve to address 222.165.194.67: Name or service not known Jul 22 04:42:29 fv15 postfix/smtpd[13245]: connect from unknown[222.165.194.67] Jul 22 04:42:30 fv........ -------------------------------	2019-07-22 12:46:35
201.28.212.146	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-22 01:38:36,983 INFO [shellcode_manager] (201.28.212.146) no match, writing hexdump (42c243fa521c0c4723837872f9cec09c :2344860) - MS17010 (EternalBlue)	2019-07-22 12:51:17
187.188.176.238	attackbotsspam	Unauthorised access (Jul 22) SRC=187.188.176.238 LEN=40 TTL=240 ID=28504 TCP DPT=445 WINDOW=1024 SYN	2019-07-22 13:01:11
176.36.119.166	attackspam	Jul 22 04:54:55 nexus sshd[32685]: Invalid user admin from 176.36.119.166 port 49986 Jul 22 04:54:55 nexus sshd[32685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.36.119.166 Jul 22 04:54:57 nexus sshd[32685]: Failed password for invalid user admin from 176.36.119.166 port 49986 ssh2 Jul 22 04:54:57 nexus sshd[32685]: Connection closed by 176.36.119.166 port 49986 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=176.36.119.166	2019-07-22 13:27:18
67.250.172.192	attack	Jul 22 03:17:43 * sshd[18257]: Invalid user search from 67.250.172.192 Jul 22 03:17:43 * sshd[18257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-67-250-172-192.nyc.res.rr.com Jul 22 03:17:46 * sshd[18257]: Failed password for invalid user search from 67.250.172.192 port 58386 ssh2 Jul 22 03:17:46 * sshd[18257]: Received disconnect from 67.250.172.192: 11: Bye Bye [preauth] Jul 22 04:30:18 * sshd[22236]: Invalid user lz from 67.250.172.192 Jul 22 04:30:18 * sshd[22236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-67-250-172-192.nyc.res.rr.com Jul 22 04:30:20 * sshd[22236]: Failed password for invalid user lz from 67.250.172.192 port 39422 ssh2 Jul 22 04:30:20 * sshd[22236]: Received disconnect from 67.250.172.192: 11: Bye Bye [preauth] Jul 22 04:31:02 *** sshd[22238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe........ -------------------------------	2019-07-22 13:21:53
138.68.243.208	attackbotsspam	Jul 22 05:54:02 microserver sshd[38150]: Invalid user bacula from 138.68.243.208 port 58096 Jul 22 05:54:02 microserver sshd[38150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.243.208 Jul 22 05:54:05 microserver sshd[38150]: Failed password for invalid user bacula from 138.68.243.208 port 58096 ssh2 Jul 22 05:58:38 microserver sshd[38753]: Invalid user user from 138.68.243.208 port 54880 Jul 22 05:58:38 microserver sshd[38753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.243.208 Jul 22 06:12:13 microserver sshd[40643]: Invalid user guest from 138.68.243.208 port 45246 Jul 22 06:12:13 microserver sshd[40643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.243.208 Jul 22 06:12:15 microserver sshd[40643]: Failed password for invalid user guest from 138.68.243.208 port 45246 ssh2 Jul 22 06:16:51 microserver sshd[41226]: Invalid user ts3user from 138.68.243.208 port	2019-07-22 12:52:00
142.44.137.62	attack	Jul 22 07:00:32 SilenceServices sshd[10827]: Failed password for git from 142.44.137.62 port 53702 ssh2 Jul 22 07:04:41 SilenceServices sshd[15403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.137.62 Jul 22 07:04:43 SilenceServices sshd[15403]: Failed password for invalid user nexus from 142.44.137.62 port 48120 ssh2	2019-07-22 13:06:37
153.36.236.234	attackbotsspam	2019-07-22T05:17:24.997293abusebot-3.cloudsearch.cf sshd\[1150\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.234 user=root	2019-07-22 13:21:27
188.166.232.14	attackspam	Jul 22 01:02:51 debian sshd\[8205\]: Invalid user tester from 188.166.232.14 port 52730 Jul 22 01:02:51 debian sshd\[8205\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.232.14 Jul 22 01:02:53 debian sshd\[8205\]: Failed password for invalid user tester from 188.166.232.14 port 52730 ssh2 ...	2019-07-22 13:10:11
218.92.0.182	attackspambots	Jul 22 03:30:09 ip-172-31-1-72 sshd\[25534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.182 user=root Jul 22 03:30:12 ip-172-31-1-72 sshd\[25534\]: Failed password for root from 218.92.0.182 port 13773 ssh2 Jul 22 03:30:24 ip-172-31-1-72 sshd\[25534\]: Failed password for root from 218.92.0.182 port 13773 ssh2 Jul 22 03:30:28 ip-172-31-1-72 sshd\[25534\]: Failed password for root from 218.92.0.182 port 13773 ssh2 Jul 22 03:30:32 ip-172-31-1-72 sshd\[25538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.182 user=root	2019-07-22 12:28:48
188.225.27.185	attackbotsspam	Jul 22 05:07:19 MainVPS sshd[18707]: Invalid user tunnel from 188.225.27.185 port 55642 Jul 22 05:07:19 MainVPS sshd[18707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.225.27.185 Jul 22 05:07:19 MainVPS sshd[18707]: Invalid user tunnel from 188.225.27.185 port 55642 Jul 22 05:07:21 MainVPS sshd[18707]: Failed password for invalid user tunnel from 188.225.27.185 port 55642 ssh2 Jul 22 05:12:00 MainVPS sshd[19128]: Invalid user ts3user from 188.225.27.185 port 53650 ...	2019-07-22 12:42:48
202.142.101.45	attack	SS5,WP GET /wp-login.php	2019-07-22 13:18:20

最近上报的IP列表

100.36.74.68	201.237.114.131	182.220.232.71	132.26.224.144
97.41.34.31	180.121.131.120	124.90.114.6	196.136.69.35
197.232.26.32	159.190.44.166	135.117.68.218	183.128.176.7
71.90.203.173	205.221.41.178	78.79.37.216	185.42.68.80
49.214.5.103	215.17.227.50	50.90.235.31	60.85.6.22