131.1.254.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: Olivetti S.p.A.

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	F2B jail: sshd. Time: 2019-09-16 20:59:56, Reported by: VKReport	2019-09-17 03:07:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.1.254.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2969
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;131.1.254.142.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 17 03:07:29 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 142.254.1.131.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 142.254.1.131.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.36.210.121	attackspam	SSH Brute Force	2020-06-17 02:49:09
113.161.36.115	attackspambots	(imapd) Failed IMAP login from 113.161.36.115 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 16 16:47:07 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=113.161.36.115, lip=5.63.12.44, TLS, session=	2020-06-17 03:02:48
45.201.173.251	attackspambots	port scan and connect, tcp 8080 (http-proxy)	2020-06-17 02:44:37
62.150.131.191	attackspambots	Honeypot attack, port: 81, PTR: xdsl-62-150-131-191.qualitynet.net.	2020-06-17 02:56:55
34.75.31.157	attack	The IP address [34.75.31.157] experienced 10 failed attempts when attempting to log into Synology NAS within 5 minutes, and was blocked at Sun Jun 7 22:25:14 2020.	2020-06-17 02:59:15
159.89.129.36	attackspambots	2020-06-16T15:34:00.162085lavrinenko.info sshd[1074]: Failed password for invalid user rama from 159.89.129.36 port 41632 ssh2 2020-06-16T15:37:25.210410lavrinenko.info sshd[1295]: Invalid user guido from 159.89.129.36 port 42852 2020-06-16T15:37:25.218003lavrinenko.info sshd[1295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.129.36 2020-06-16T15:37:25.210410lavrinenko.info sshd[1295]: Invalid user guido from 159.89.129.36 port 42852 2020-06-16T15:37:27.273731lavrinenko.info sshd[1295]: Failed password for invalid user guido from 159.89.129.36 port 42852 ssh2 ...	2020-06-17 03:04:52
184.191.141.223	attack	Jun 16 17:35:22 powerpi2 sshd[12661]: Invalid user visitor from 184.191.141.223 port 54170 Jun 16 17:35:25 powerpi2 sshd[12661]: Failed password for invalid user visitor from 184.191.141.223 port 54170 ssh2 Jun 16 17:37:25 powerpi2 sshd[12746]: Invalid user wuyan from 184.191.141.223 port 34072 ...	2020-06-17 02:45:23
201.242.154.97	attackspam	Unauthorised access (Jun 16) SRC=201.242.154.97 LEN=52 TTL=116 ID=17093 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-17 02:32:30
117.239.71.66	attack	20/6/16@08:17:38: FAIL: Alarm-Network address from=117.239.71.66 ...	2020-06-17 02:46:12
103.139.69.30	attack	20/6/16@08:17:56: FAIL: Alarm-Network address from=103.139.69.30 ...	2020-06-17 02:33:41
64.250.163.12	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-06-17 02:50:15
45.88.110.207	attackbots	SSH Attack	2020-06-17 02:40:50
60.220.185.22	attack	Jun 16 18:18:48 ajax sshd[28514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.220.185.22 Jun 16 18:18:50 ajax sshd[28514]: Failed password for invalid user salim from 60.220.185.22 port 37758 ssh2	2020-06-17 02:58:59
112.33.13.124	attackspambots	Aug 14 19:35:25 ms-srv sshd[9235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.33.13.124 Aug 14 19:35:27 ms-srv sshd[9235]: Failed password for invalid user hf from 112.33.13.124 port 54022 ssh2	2020-06-17 02:57:51
164.52.106.199	attackbotsspam	Jun 16 20:56:12 OPSO sshd\[16481\]: Invalid user amber from 164.52.106.199 port 42978 Jun 16 20:56:12 OPSO sshd\[16481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.52.106.199 Jun 16 20:56:14 OPSO sshd\[16481\]: Failed password for invalid user amber from 164.52.106.199 port 42978 ssh2 Jun 16 21:00:07 OPSO sshd\[17350\]: Invalid user media from 164.52.106.199 port 58594 Jun 16 21:00:07 OPSO sshd\[17350\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.52.106.199	2020-06-17 03:13:11

Recently Reported IPs

41.182.130.110	11.172.52.228	109.149.231.14	45.136.108.11
151.74.228.199	2a01:4f8:191:93ee::2	185.245.84.58	113.68.24.29
50.206.82.201	20.195.209.210	220.168.85.107	51.15.161.122
18.214.105.148	185.137.233.215	130.246.112.195	118.104.116.93
107.81.173.73	134.209.151.198	132.148.26.79	151.93.144.45