191.243.2.104 - IPInfo

Basic Info

City: Ubá

Region: Minas Gerais

Country: Brazil

Internet Service Provider: TIM

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
191.243.211.94	attack	2020-07-16 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=191.243.211.94	2020-07-16 08:44:28
191.243.211.248	attackspambots	8080/tcp [2020-06-28]1pkt	2020-06-28 19:02:52
191.243.210.16	attackspam	Unauthorized connection attempt detected from IP address 191.243.210.16 to port 88	2020-06-15 16:07:50
191.243.211.14	attackbots	Unauthorized connection attempt detected from IP address 191.243.211.14 to port 80	2020-06-13 08:09:59
191.243.211.198	attack	IP 191.243.211.198 attacked honeypot on port: 81 at 6/10/2020 8:23:19 PM	2020-06-11 06:59:21
191.243.241.60	attack	Automatic report - Port Scan Attack	2020-05-10 12:10:41
191.243.241.53	attackbots	Automatic report - Port Scan Attack	2020-04-30 16:53:35
191.243.242.92	attackbots	Automatic report - Port Scan Attack	2020-02-10 21:20:28
191.243.225.197	attack	Telnet/23 MH Probe, BF, Hack -	2020-02-01 08:03:06
191.243.20.130	attack	Unauthorized connection attempt detected from IP address 191.243.20.130 to port 8080 [J]	2020-01-07 07:25:00
191.243.240.232	attack	Automatic report - Port Scan Attack	2019-12-09 00:59:54
191.243.240.136	attackbotsspam	Port Scan	2019-12-05 18:07:47
191.243.240.129	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-28 04:52:56
191.243.240.136	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-28 04:50:32
191.243.240.212	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-28 04:46:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 191.243.2.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61920
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;191.243.2.104.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 11:32:06 CST 2025
;; MSG SIZE  rcvd: 106

Host info

104.2.243.191.in-addr.arpa domain name pointer dynamic-191-243-2-104.giganetmg.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
104.2.243.191.in-addr.arpa	name = dynamic-191-243-2-104.giganetmg.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.145.55.89	attackspambots	Jan 9 21:38:39 hanapaa sshd\[7019\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.55.89 user=root Jan 9 21:38:41 hanapaa sshd\[7019\]: Failed password for root from 190.145.55.89 port 46549 ssh2 Jan 9 21:41:14 hanapaa sshd\[7424\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.55.89 user=root Jan 9 21:41:16 hanapaa sshd\[7424\]: Failed password for root from 190.145.55.89 port 58973 ssh2 Jan 9 21:43:46 hanapaa sshd\[7651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.55.89 user=root	2020-01-10 15:52:03
106.13.21.24	attack	Jan 10 04:55:01 sshgateway sshd\[23913\]: Invalid user uq from 106.13.21.24 Jan 10 04:55:01 sshgateway sshd\[23913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.21.24 Jan 10 04:55:03 sshgateway sshd\[23913\]: Failed password for invalid user uq from 106.13.21.24 port 39542 ssh2	2020-01-10 15:28:44
54.38.188.34	attack	Jan 10 04:51:55 124388 sshd[1164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.188.34 Jan 10 04:51:55 124388 sshd[1164]: Invalid user teamspeak3 from 54.38.188.34 port 50220 Jan 10 04:51:57 124388 sshd[1164]: Failed password for invalid user teamspeak3 from 54.38.188.34 port 50220 ssh2 Jan 10 04:54:06 124388 sshd[1171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.188.34 user=root Jan 10 04:54:08 124388 sshd[1171]: Failed password for root from 54.38.188.34 port 45854 ssh2	2020-01-10 15:55:26
119.29.203.106	attackbots	Jan 10 06:14:24 xeon sshd[65343]: Failed password for root from 119.29.203.106 port 36880 ssh2	2020-01-10 15:39:42
220.168.85.107	attack	Email spam message	2020-01-10 16:00:39
66.253.130.211	attackbotsspam	Jan 10 08:12:07 localhost sshd\[32234\]: Invalid user backups from 66.253.130.211 port 41654 Jan 10 08:12:07 localhost sshd\[32234\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.253.130.211 Jan 10 08:12:09 localhost sshd\[32234\]: Failed password for invalid user backups from 66.253.130.211 port 41654 ssh2	2020-01-10 15:29:05
5.159.106.159	attackbots	Unauthorized connection attempt detected from IP address 5.159.106.159 to port 445	2020-01-10 15:53:32
204.145.127.82	attack	3389BruteforceStormFW23	2020-01-10 15:46:43
14.187.35.217	attack	smtp probe/invalid login attempt	2020-01-10 16:02:38
49.88.112.63	attack	Jan 10 08:50:09 eventyay sshd[16570]: Failed password for root from 49.88.112.63 port 20861 ssh2 Jan 10 08:50:23 eventyay sshd[16570]: error: maximum authentication attempts exceeded for root from 49.88.112.63 port 20861 ssh2 [preauth] Jan 10 08:50:29 eventyay sshd[16573]: Failed password for root from 49.88.112.63 port 57881 ssh2 ...	2020-01-10 15:51:39
120.132.124.237	attack	none	2020-01-10 15:48:05
157.33.110.9	attackspam	Unauthorized connection attempt detected from IP address 157.33.110.9 to port 445	2020-01-10 16:04:13
81.22.45.150	attack	Jan 10 08:24:25 debian-2gb-nbg1-2 kernel: \[900376.161496\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.150 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=10147 PROTO=TCP SPT=51547 DPT=33988 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-10 15:28:00
164.132.100.28	attackbotsspam	Brute-force attempt banned	2020-01-10 15:40:11
193.112.54.36	attackspam	Jan 9 20:57:01 web9 sshd\[5083\]: Invalid user kunming from 193.112.54.36 Jan 9 20:57:01 web9 sshd\[5083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.54.36 Jan 9 20:57:03 web9 sshd\[5083\]: Failed password for invalid user kunming from 193.112.54.36 port 54414 ssh2 Jan 9 20:59:38 web9 sshd\[5456\]: Invalid user 123@7x24 from 193.112.54.36 Jan 9 20:59:38 web9 sshd\[5456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.54.36	2020-01-10 15:34:35

Recently Reported IPs

147.84.61.42	221.199.16.92	127.77.155.91	35.11.20.5
232.220.5.171	91.45.105.110	178.212.245.235	245.102.149.87
43.133.202.160	223.164.151.135	175.255.159.171	226.150.61.73
215.59.144.204	20.179.90.233	138.8.227.166	235.115.73.226
145.219.56.105	192.107.115.138	201.125.229.82	135.254.178.45