164.90.181.221

基本信息:

城市(city): Frankfurt am Main

省份(region): Hessen

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
164.90.181.196	attack	164.90.181.196 - - [01/Oct/2020:22:07:17 +0100] "POST /wp-login.php HTTP/1.1" 200 2596 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [01/Oct/2020:22:07:23 +0100] "POST /wp-login.php HTTP/1.1" 200 2597 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [01/Oct/2020:22:07:23 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-02 06:18:11
164.90.181.196	attackspambots	164.90.181.196 - - [01/Oct/2020:00:13:40 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [01/Oct/2020:00:13:41 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [01/Oct/2020:00:13:47 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-01 22:43:43
164.90.181.196	attackspambots	164.90.181.196 - - [28/Sep/2020:21:59:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2463 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [28/Sep/2020:21:59:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2407 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [28/Sep/2020:21:59:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2405 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-29 05:01:50
164.90.181.196	attackbotsspam	(PERMBLOCK) 164.90.181.196 (US/United States/437595.cloudwaysapps.com) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:	2020-09-28 21:20:53
164.90.181.196	attackbotsspam	164.90.181.196 - - [28/Sep/2020:05:34:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2254 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [28/Sep/2020:05:34:12 +0100] "POST /wp-login.php HTTP/1.1" 200 2285 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [28/Sep/2020:05:34:19 +0100] "POST /wp-login.php HTTP/1.1" 200 2234 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-28 13:26:40
164.90.181.196	attack	164.90.181.196 - - [26/Sep/2020:11:39:14 +0100] "POST /wp-login.php HTTP/1.1" 200 2863 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [26/Sep/2020:11:39:19 +0100] "POST /wp-login.php HTTP/1.1" 200 2844 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [26/Sep/2020:11:39:20 +0100] "POST /wp-login.php HTTP/1.1" 200 2844 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-27 05:13:50
164.90.181.196	attackspambots	164.90.181.196 - - [26/Sep/2020:11:39:14 +0100] "POST /wp-login.php HTTP/1.1" 200 2863 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [26/Sep/2020:11:39:19 +0100] "POST /wp-login.php HTTP/1.1" 200 2844 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.90.181.196 - - [26/Sep/2020:11:39:20 +0100] "POST /wp-login.php HTTP/1.1" 200 2844 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-26 21:26:34
164.90.181.196	attackbots	164.90.181.196 - - [25/Sep/2020:23:25:11 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 164.90.181.196 - - [25/Sep/2020:23:25:14 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 164.90.181.196 - - [25/Sep/2020:23:25:20 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 164.90.181.196 - - [25/Sep/2020:23:25:27 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 164.90.181.196 - - [25/Sep/2020:23:25:33 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-09-26 13:08:57

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       164.90.128.0 - 164.90.255.255
CIDR:           164.90.128.0/17
NetName:        DIGITALOCEAN-164-90-128-0
NetHandle:      NET-164-90-128-0-1
Parent:         NET164 (NET-164-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   DigitalOcean, LLC (DO-13)
RegDate:        2019-08-19
Updated:        2020-04-03
Comment:        Routing and Peering Policy can be found at https://www.as14061.net
Comment:        
Comment:        Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse
Ref:            https://rdap.arin.net/registry/ip/164.90.128.0



OrgName:        DigitalOcean, LLC
OrgId:          DO-13
Address:        105 Edgeview Drive, Suite 425
City:           Broomfield
StateProv:      CO
PostalCode:     80021
Country:        US
RegDate:        2012-05-14
Updated:        2025-04-11
Ref:            https://rdap.arin.net/registry/entity/DO-13


OrgNOCHandle: NOC32014-ARIN
OrgNOCName:   Network Operations Center
OrgNOCPhone:  +1-646-827-4366 
OrgNOCEmail:  noc@digitalocean.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN

OrgAbuseHandle: DIGIT19-ARIN
OrgAbuseName:   DigitalOcean Abuse
OrgAbusePhone:  +1-646-827-4366 
OrgAbuseEmail:  abuse@digitalocean.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/DIGIT19-ARIN

OrgTechHandle: NOC32014-ARIN
OrgTechName:   Network Operations Center
OrgTechPhone:  +1-646-827-4366 
OrgTechEmail:  noc@digitalocean.com
OrgTechRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.90.181.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40231
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;164.90.181.221.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025110700 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 07 16:00:15 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 221.181.90.164.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 221.181.90.164.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
218.92.0.137	attack	Dec221:36:28server2sshd[4355]:refusedconnectfrom218.92.0.137$218.92.0.137$Dec221:36:28server2sshd[4354]:refusedconnectfrom218.92.0.137$218.92.0.137$Dec221:36:28server2sshd[4356]:refusedconnectfrom218.92.0.137$218.92.0.137$Dec221:36:28server2sshd[4357]:refusedconnectfrom218.92.0.137$218.92.0.137$Dec221:36:28server2sshd[4358]:refusedconnectfrom218.92.0.137$218.92.0.137$Dec222:35:36server2sshd[19886]:refusedconnectfrom218.92.0.137$218.92.0.137$Dec222:35:36server2sshd[19885]:refusedconnectfrom218.92.0.137$218.92.0.137$Dec222:35:36server2sshd[19887]:refusedconnectfrom218.92.0.137$218.92.0.137$	2019-12-03 05:41:12
116.196.82.187	attackspam	Dec 2 22:55:47 localhost sshd\[29920\]: Invalid user webusers from 116.196.82.187 port 46761 Dec 2 22:55:47 localhost sshd\[29920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.82.187 Dec 2 22:55:48 localhost sshd\[29920\]: Failed password for invalid user webusers from 116.196.82.187 port 46761 ssh2	2019-12-03 05:57:23
118.70.233.163	attackspambots	Dec 2 06:12:48 server sshd\[3031\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.233.163 user=root Dec 2 06:12:50 server sshd\[3031\]: Failed password for root from 118.70.233.163 port 46248 ssh2 Dec 3 00:35:12 server sshd\[12354\]: Invalid user kushnirs from 118.70.233.163 Dec 3 00:35:12 server sshd\[12354\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.233.163 Dec 3 00:35:14 server sshd\[12354\]: Failed password for invalid user kushnirs from 118.70.233.163 port 48578 ssh2 ...	2019-12-03 06:06:12
117.4.64.10	attack	Dec 2 22:35:09 h2177944 kernel: \[8197733.874880\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=117.4.64.10 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=3329 DF PROTO=TCP SPT=63516 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 2 22:35:12 h2177944 kernel: \[8197736.873583\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=117.4.64.10 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=13999 DF PROTO=TCP SPT=63439 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 2 22:35:15 h2177944 kernel: \[8197739.958180\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=117.4.64.10 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=27697 DF PROTO=TCP SPT=63439 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 2 22:35:18 h2177944 kernel: \[8197743.603554\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=117.4.64.10 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=17467 DF PROTO=TCP SPT=52461 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 2 22:35:21 h2177944 kernel: \[8197746.657450\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=117.4.64.10 DST=85.214.117.	2019-12-03 05:57:09
92.222.84.34	attackspambots	Dec 2 12:03:07 eddieflores sshd\[14741\]: Invalid user hinckley from 92.222.84.34 Dec 2 12:03:07 eddieflores sshd\[14741\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.ip-92-222-84.eu Dec 2 12:03:09 eddieflores sshd\[14741\]: Failed password for invalid user hinckley from 92.222.84.34 port 53544 ssh2 Dec 2 12:08:27 eddieflores sshd\[15251\]: Invalid user www from 92.222.84.34 Dec 2 12:08:27 eddieflores sshd\[15251\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.ip-92-222-84.eu	2019-12-03 06:09:19
152.231.116.240	attackbotsspam	SPF Fail sender not permitted to send mail for @allcareconsultants.com	2019-12-03 06:07:34
106.54.122.165	attackspambots	detected by Fail2Ban	2019-12-03 05:49:51
178.128.117.55	attack	Dec 2 22:28:39 tux-35-217 sshd\[7650\]: Invalid user hallgeir from 178.128.117.55 port 55216 Dec 2 22:28:39 tux-35-217 sshd\[7650\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.117.55 Dec 2 22:28:41 tux-35-217 sshd\[7650\]: Failed password for invalid user hallgeir from 178.128.117.55 port 55216 ssh2 Dec 2 22:35:03 tux-35-217 sshd\[7677\]: Invalid user hank from 178.128.117.55 port 38312 Dec 2 22:35:03 tux-35-217 sshd\[7677\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.117.55 ...	2019-12-03 06:13:48
45.170.174.162	attackspambots	Automatic report - Port Scan Attack	2019-12-03 05:51:32
119.27.167.231	attack	Dec 2 16:35:26 TORMINT sshd\[30406\]: Invalid user server from 119.27.167.231 Dec 2 16:35:26 TORMINT sshd\[30406\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.167.231 Dec 2 16:35:29 TORMINT sshd\[30406\]: Failed password for invalid user server from 119.27.167.231 port 49370 ssh2 ...	2019-12-03 05:50:36
218.92.0.138	attack	Dec 2 22:57:44 srv206 sshd[25901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root Dec 2 22:57:46 srv206 sshd[25901]: Failed password for root from 218.92.0.138 port 59226 ssh2 ...	2019-12-03 06:00:53
218.92.0.212	attackbots	Dec 3 04:50:52 itv-usvr-02 sshd[10180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Dec 3 04:50:54 itv-usvr-02 sshd[10180]: Failed password for root from 218.92.0.212 port 46055 ssh2	2019-12-03 05:51:00
178.33.185.70	attack	Dec 2 22:35:22 v22018086721571380 sshd[16452]: Failed password for invalid user buradrc from 178.33.185.70 port 22476 ssh2	2019-12-03 05:56:43
188.12.158.97	attackspam	$f2bV_matches	2019-12-03 06:07:00
119.29.147.247	attack	Dec 2 11:29:13 wbs sshd\[15461\]: Invalid user yp from 119.29.147.247 Dec 2 11:29:13 wbs sshd\[15461\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.147.247 Dec 2 11:29:15 wbs sshd\[15461\]: Failed password for invalid user yp from 119.29.147.247 port 41150 ssh2 Dec 2 11:35:30 wbs sshd\[16246\]: Invalid user lll from 119.29.147.247 Dec 2 11:35:30 wbs sshd\[16246\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.147.247	2019-12-03 05:50:21

最近上报的IP列表

121.199.174.53	185.226.197.75	164.92.160.210	157.230.30.169
165.154.245.177	113.95.141.80	158.172.26.137	138.99.215.140
39.170.51.205	14.212.107.156	45.194.70.25	110.177.183.119
220.167.180.19	20.64.105.127	10.4.229.66	45.230.66.115
147.185.132.127	111.190.105.175	111.190.105.106	113.95.138.254