196.189.91.164

基本信息:

城市(city): Addis Ababa

省份(region): Addis Ababa

国家(country): Ethiopia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
196.189.91.71	spambotsattackproxynormal	Pms	2022-09-24 13:26:53
196.189.91.71	spambotsattackproxynormal	196.189.91.71	2022-09-24 02:08:57
196.189.91.71	spambotsattackproxynormal	196.189.91.71	2022-09-24 02:08:50
196.189.91.190	attack	DATE:2020-09-14 11:25:32, IP:196.189.91.190, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-15 00:43:38
196.189.91.190	attackbots	[portscan] Port scan	2020-09-14 16:27:24
196.189.91.162	attack	(sshd) Failed SSH login from 196.189.91.162 (ET/Ethiopia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 29 08:58:58 amsweb01 sshd[29482]: Invalid user ipt from 196.189.91.162 port 53506 Aug 29 08:58:59 amsweb01 sshd[29482]: Failed password for invalid user ipt from 196.189.91.162 port 53506 ssh2 Aug 29 09:19:48 amsweb01 sshd[407]: Invalid user vbox from 196.189.91.162 port 40802 Aug 29 09:19:51 amsweb01 sshd[407]: Failed password for invalid user vbox from 196.189.91.162 port 40802 ssh2 Aug 29 09:21:55 amsweb01 sshd[779]: Invalid user yp from 196.189.91.162 port 54436	2020-08-29 18:27:50
196.189.91.162	attackbots	$f2bV_matches	2020-08-20 04:13:12
196.189.91.129	attackspambots	Aug 15 06:25:35 plg sshd[16313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.129 user=root Aug 15 06:25:37 plg sshd[16313]: Failed password for invalid user root from 196.189.91.129 port 47912 ssh2 Aug 15 06:28:08 plg sshd[16325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.129 user=root Aug 15 06:28:09 plg sshd[16325]: Failed password for invalid user root from 196.189.91.129 port 38296 ssh2 Aug 15 06:30:46 plg sshd[16342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.129 user=root Aug 15 06:30:49 plg sshd[16342]: Failed password for invalid user root from 196.189.91.129 port 57192 ssh2 ...	2020-08-15 15:31:36
196.189.91.129	attack	Aug 11 08:29:34 root sshd[17718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.129 user=root Aug 11 08:29:36 root sshd[17718]: Failed password for root from 196.189.91.129 port 42440 ssh2 ...	2020-08-11 18:00:29
196.189.91.138	attack	Invalid user nmt from 196.189.91.138 port 49360	2020-06-21 18:13:53
196.189.91.166	attack	Invalid user owncloud from 196.189.91.166 port 40850	2020-06-18 03:40:53
196.189.91.138	attack	$f2bV_matches	2020-06-14 17:36:24
196.189.91.166	attackspam	Jun 14 10:33:32 melroy-server sshd[2123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.166 Jun 14 10:33:34 melroy-server sshd[2123]: Failed password for invalid user n from 196.189.91.166 port 45956 ssh2 ...	2020-06-14 17:05:30
196.189.91.138	attackspam	Jun 9 02:23:47 vps46666688 sshd[15239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.138 Jun 9 02:23:49 vps46666688 sshd[15239]: Failed password for invalid user carrie from 196.189.91.138 port 46816 ssh2 ...	2020-06-09 13:27:09
196.189.91.166	attackbots	May 31 01:51:42 web1 sshd[24819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.166 user=root May 31 01:51:44 web1 sshd[24819]: Failed password for root from 196.189.91.166 port 48616 ssh2 May 31 02:02:47 web1 sshd[27683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.166 user=root May 31 02:02:48 web1 sshd[27683]: Failed password for root from 196.189.91.166 port 53016 ssh2 May 31 02:05:37 web1 sshd[28657]: Invalid user purple from 196.189.91.166 port 33688 May 31 02:05:37 web1 sshd[28657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.166 May 31 02:05:37 web1 sshd[28657]: Invalid user purple from 196.189.91.166 port 33688 May 31 02:05:39 web1 sshd[28657]: Failed password for invalid user purple from 196.189.91.166 port 33688 ssh2 May 31 02:08:27 web1 sshd[29284]: Invalid user redmine from 196.189.91.166 port 42496 ...	2020-05-31 01:24:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.189.91.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3075
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;196.189.91.164.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025040200 1800 900 604800 86400

;; Query time: 137 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 02 14:03:44 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 164.91.189.196.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 164.91.189.196.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
37.152.181.151	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-07-02 08:52:57
219.248.203.54	normal	4	2020-07-02 21:30:10
201.131.180.64	attack	SASL PLAIN auth failed: ruser=...	2020-07-02 09:23:38
31.167.4.89	attackspambots	Port probing on unauthorized port 445	2020-07-02 08:54:18
52.224.67.47	attackbots	2020-07-01T05:11:25.716466ks3355764 sshd[17148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.224.67.47 user=root 2020-07-01T05:11:27.883718ks3355764 sshd[17148]: Failed password for root from 52.224.67.47 port 23793 ssh2 ...	2020-07-02 09:06:12
159.65.11.253	attackspam	B: Abusive ssh attack	2020-07-02 09:06:48
37.236.235.52	attack	My iPhone's IP has been blocked	2020-07-02 22:38:27
106.13.147.89	attackbots	Jul 1 03:18:36 minden010 sshd[28877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.89 Jul 1 03:18:37 minden010 sshd[28877]: Failed password for invalid user john from 106.13.147.89 port 42198 ssh2 Jul 1 03:21:54 minden010 sshd[30704]: Failed password for root from 106.13.147.89 port 33264 ssh2 ...	2020-07-02 09:18:02
13.67.46.188	attackbotsspam	Jul 1 05:03:06 vmd26974 sshd[2068]: Failed password for root from 13.67.46.188 port 41104 ssh2 ...	2020-07-02 08:57:38
96.78.45.206	attackspam	Port Scan detected! ...	2020-07-02 09:18:14
37.236.235.52	attack	My iPhone's IP has been blocked	2020-07-02 22:38:27
115.182.105.68	attackspambots	Jul 1 05:46:27 sxvn sshd[65624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.182.105.68	2020-07-02 09:03:16
88.249.184.55	attack	Automatic report - Port Scan Attack	2020-07-02 09:19:27
190.181.100.222	attack	Jun 26 11:26:05 mail.srvfarm.net postfix/smtpd[2536088]: warning: unknown[190.181.100.222]: SASL PLAIN authentication failed: Jun 26 11:26:05 mail.srvfarm.net postfix/smtpd[2536088]: lost connection after AUTH from unknown[190.181.100.222] Jun 26 11:27:51 mail.srvfarm.net postfix/smtps/smtpd[2537672]: warning: unknown[190.181.100.222]: SASL PLAIN authentication failed: Jun 26 11:27:52 mail.srvfarm.net postfix/smtps/smtpd[2537672]: lost connection after AUTH from unknown[190.181.100.222] Jun 26 11:33:31 mail.srvfarm.net postfix/smtpd[2544210]: warning: unknown[190.181.100.222]: SASL PLAIN authentication failed:	2020-07-02 09:25:58
218.18.161.186	attackbots	2020-07-01T05:36:52+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-07-02 09:01:06

最近上报的IP列表

244.123.114.92	107.95.229.112	205.138.61.20	135.114.2.208
254.197.233.253	153.97.140.4	247.106.206.227	38.65.205.153
72.202.176.66	221.195.44.213	9.18.6.48	44.241.240.21
119.97.57.237	129.39.109.46	86.187.57.182	54.71.174.94
238.163.183.181	59.65.204.73	164.56.82.180	194.92.251.109