191.5.42.154 Threat Intelligence and Host Information

Oct 19, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 191.5.42.154 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Country: Brazil
  • Network:
  • Noticed: 16 times
  • Protocols Attacked: SSH
  • Countries Attacked: United States of America

Malware Detected on Host

Count: 10 318a05e0e97d6b4977b90e9da5247e34c2dc13fd714ec104ae1918325d46de03 354715f8ff4327d01b8042fcc4ed303c63a56c1d349dda23965f7a06e2299364 23314bbd98f8e56af031145ccd48a33bc7f2e34af8c0dde2e29377fcc131ae62 37be228e041049cae5a8b75716cc6db350fec0e7ab095e6cfbd3c4dd4c41c600 d97a86d60f6a464db798c77364f09cdc2d4022708e20c2ec5647c27101455eb2 3aab6f7a8385b2d2f3d9f661a4d71c469fb1cf5a55051a7fdba7b016a0827ebb cfed9816731ff3016bb4785e46bcda87c9fd5256cf396a4c4ec5a2f6e44a9822 921f5e47b09071f00d2cfddddd35ea9032b7f825cee96b56e8be713b82570341 d426d78378eccd3122c5650021ce2c32f11b9269d3f6c1cd6c17913a1c43cdf5 8d8ba07fbd09c6a432054f7b835ec8b6a287e9df6b7dd6277976a3ac61ed98f6

Open Ports Detected

8198

Map

Whois Information

  • inetnum: 191.5.32.0/20
  • aut-num: AS28198
  • abuse-c: SOSIN30
  • owner: SEMPRE TELECOMUNICACOES LTDA
  • ownerid: 24.605.227/0001-29
  • responsible: F�bio Rog�rio Baia
  • country: BR
  • owner-c: FARBA207
  • tech-c: DEGCA62
  • inetrev: 191.5.32.0/20
  • nserver: ns1.sempre.tec.br
  • nsstat: 20251016 AA
  • nslastaa: 20251016
  • nserver: ns2.sempre.tec.br
  • nsstat: 20251016 AA
  • nslastaa: 20251016
  • created: 20140117
  • changed: 20211206
  • nic-hdl-br: FARBA207
  • person: FABIO ROGERIO BAIA
  • e-mail: fabio.baia@sempre.net.br
  • country: BR
  • created: 20250226
  • changed: 20250226
  • nic-hdl-br: DEGCA62
  • person: Deywid Gomes do Carmo
  • e-mail: deywid.gomes@sempre.net.br
  • country: BR
  • created: 20210109
  • changed: 20210109
  • nic-hdl-br: SOSIN30
  • person: SOC SEMPRE INTERNET
  • e-mail: soc@sempre.net.br
  • country: BR
  • created: 20221123
  • changed: 20221123

Links to attack logs

****** ****** ******

Share on: