196.189.91.164

基本信息:

城市(city): Addis Ababa

省份(region): Addis Ababa

国家(country): Ethiopia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
196.189.91.71	spambotsattackproxynormal	Pms	2022-09-24 13:26:53
196.189.91.71	spambotsattackproxynormal	196.189.91.71	2022-09-24 02:08:57
196.189.91.71	spambotsattackproxynormal	196.189.91.71	2022-09-24 02:08:50
196.189.91.190	attack	DATE:2020-09-14 11:25:32, IP:196.189.91.190, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-15 00:43:38
196.189.91.190	attackbots	[portscan] Port scan	2020-09-14 16:27:24
196.189.91.162	attack	(sshd) Failed SSH login from 196.189.91.162 (ET/Ethiopia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 29 08:58:58 amsweb01 sshd[29482]: Invalid user ipt from 196.189.91.162 port 53506 Aug 29 08:58:59 amsweb01 sshd[29482]: Failed password for invalid user ipt from 196.189.91.162 port 53506 ssh2 Aug 29 09:19:48 amsweb01 sshd[407]: Invalid user vbox from 196.189.91.162 port 40802 Aug 29 09:19:51 amsweb01 sshd[407]: Failed password for invalid user vbox from 196.189.91.162 port 40802 ssh2 Aug 29 09:21:55 amsweb01 sshd[779]: Invalid user yp from 196.189.91.162 port 54436	2020-08-29 18:27:50
196.189.91.162	attackbots	$f2bV_matches	2020-08-20 04:13:12
196.189.91.129	attackspambots	Aug 15 06:25:35 plg sshd[16313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.129 user=root Aug 15 06:25:37 plg sshd[16313]: Failed password for invalid user root from 196.189.91.129 port 47912 ssh2 Aug 15 06:28:08 plg sshd[16325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.129 user=root Aug 15 06:28:09 plg sshd[16325]: Failed password for invalid user root from 196.189.91.129 port 38296 ssh2 Aug 15 06:30:46 plg sshd[16342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.129 user=root Aug 15 06:30:49 plg sshd[16342]: Failed password for invalid user root from 196.189.91.129 port 57192 ssh2 ...	2020-08-15 15:31:36
196.189.91.129	attack	Aug 11 08:29:34 root sshd[17718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.129 user=root Aug 11 08:29:36 root sshd[17718]: Failed password for root from 196.189.91.129 port 42440 ssh2 ...	2020-08-11 18:00:29
196.189.91.138	attack	Invalid user nmt from 196.189.91.138 port 49360	2020-06-21 18:13:53
196.189.91.166	attack	Invalid user owncloud from 196.189.91.166 port 40850	2020-06-18 03:40:53
196.189.91.138	attack	$f2bV_matches	2020-06-14 17:36:24
196.189.91.166	attackspam	Jun 14 10:33:32 melroy-server sshd[2123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.166 Jun 14 10:33:34 melroy-server sshd[2123]: Failed password for invalid user n from 196.189.91.166 port 45956 ssh2 ...	2020-06-14 17:05:30
196.189.91.138	attackspam	Jun 9 02:23:47 vps46666688 sshd[15239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.138 Jun 9 02:23:49 vps46666688 sshd[15239]: Failed password for invalid user carrie from 196.189.91.138 port 46816 ssh2 ...	2020-06-09 13:27:09
196.189.91.166	attackbots	May 31 01:51:42 web1 sshd[24819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.166 user=root May 31 01:51:44 web1 sshd[24819]: Failed password for root from 196.189.91.166 port 48616 ssh2 May 31 02:02:47 web1 sshd[27683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.166 user=root May 31 02:02:48 web1 sshd[27683]: Failed password for root from 196.189.91.166 port 53016 ssh2 May 31 02:05:37 web1 sshd[28657]: Invalid user purple from 196.189.91.166 port 33688 May 31 02:05:37 web1 sshd[28657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.91.166 May 31 02:05:37 web1 sshd[28657]: Invalid user purple from 196.189.91.166 port 33688 May 31 02:05:39 web1 sshd[28657]: Failed password for invalid user purple from 196.189.91.166 port 33688 ssh2 May 31 02:08:27 web1 sshd[29284]: Invalid user redmine from 196.189.91.166 port 42496 ...	2020-05-31 01:24:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.189.91.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3075
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;196.189.91.164.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025040200 1800 900 604800 86400

;; Query time: 137 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 02 14:03:44 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 164.91.189.196.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 164.91.189.196.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
124.156.132.58	attackbotsspam	Lines containing failures of 124.156.132.58 Sep 22 08:14:08 * sshd[113483]: Invalid user andrei from 124.156.132.58 port 48238 Sep 22 08:14:08 * sshd[113483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.132.58 Sep 22 08:14:09 * sshd[113483]: Failed password for invalid user andrei from 124.156.132.58 port 48238 ssh2 Sep 22 08:14:09 * sshd[113483]: Received disconnect from 124.156.132.58 port 48238:11: Bye Bye [preauth] Sep 22 08:14:09 * sshd[113483]: Disconnected from invalid user andrei 124.156.132.58 port 48238 [preauth] Sep 22 08:34:28 * sshd[114818]: Invalid user User from 124.156.132.58 port 34866 Sep 22 08:34:28 * sshd[114818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.132.58 Sep 22 08:34:30 * sshd[114818]: Failed password for invalid user User from 124.156.132.58 port 34866 ssh2 Sep 22 08:34:30 *** sshd[114818]: Received disconnect from 124.156........ ------------------------------	2019-09-23 00:21:37
222.186.15.204	attack	Sep 22 12:30:46 plusreed sshd[25204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.204 user=root Sep 22 12:30:48 plusreed sshd[25204]: Failed password for root from 222.186.15.204 port 48168 ssh2 ...	2019-09-23 00:34:27
14.40.40.229	attack	Sep2214:43:10server4pure-ftpd:$\?@14.40.40.229$[WARNING]Authenticationfailedforuser[anonymous]Sep2214:43:16server4pure-ftpd:$\?@14.40.40.229$[WARNING]Authenticationfailedforuser[www]Sep2214:43:17server4pure-ftpd:$\?@14.40.40.229$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2214:43:21server4pure-ftpd:$\?@14.40.40.229$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2214:43:23server4pure-ftpd:$\?@14.40.40.229$[WARNING]Authenticationfailedforuser[www]Sep2214:43:28server4pure-ftpd:$\?@14.40.40.229$[WARNING]Authenticationfailedforuser[www]Sep2214:43:29server4pure-ftpd:$\?@14.40.40.229$[WARNING]Authenticationfailedforuser[www]Sep2214:43:34server4pure-ftpd:$\?@14.40.40.229$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2214:43:34server4pure-ftpd:$\?@14.40.40.229$[WARNING]Authenticationfailedforuser[www]Sep2214:43:41server4pure-ftpd:$\?@14.40.40.229$[WARNING]Authenticationfailedforuser[www]	2019-09-23 00:24:57
105.156.174.9	attackspambots	Sep 22 07:43:44 borg sshd[40179]: Failed unknown for root from 105.156.174.9 port 54609 ssh2 Sep 22 07:43:44 borg sshd[40179]: Failed unknown for root from 105.156.174.9 port 54609 ssh2 Sep 22 07:43:44 borg sshd[40179]: Failed unknown for root from 105.156.174.9 port 54609 ssh2 ...	2019-09-23 00:20:32
61.172.238.14	attackspambots	2019-09-16 21:01:23,484 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 61.172.238.14 2019-09-16 21:33:51,253 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 61.172.238.14 2019-09-16 22:04:54,340 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 61.172.238.14 2019-09-16 22:36:27,612 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 61.172.238.14 2019-09-16 23:08:08,255 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 61.172.238.14 ...	2019-09-23 00:25:39
88.204.72.142	attackspambots	Sep 22 06:51:11 friendsofhawaii sshd\[19859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=kibevs.sur.net.ru user=root Sep 22 06:51:13 friendsofhawaii sshd\[19859\]: Failed password for root from 88.204.72.142 port 48172 ssh2 Sep 22 06:55:35 friendsofhawaii sshd\[20205\]: Invalid user user3 from 88.204.72.142 Sep 22 06:55:35 friendsofhawaii sshd\[20205\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=kibevs.sur.net.ru Sep 22 06:55:37 friendsofhawaii sshd\[20205\]: Failed password for invalid user user3 from 88.204.72.142 port 60620 ssh2	2019-09-23 01:04:29
31.14.135.117	attackbots	Sep 22 06:58:39 lcprod sshd\[22800\]: Invalid user uts from 31.14.135.117 Sep 22 06:58:39 lcprod sshd\[22800\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.14.135.117 Sep 22 06:58:41 lcprod sshd\[22800\]: Failed password for invalid user uts from 31.14.135.117 port 53562 ssh2 Sep 22 07:03:09 lcprod sshd\[23225\]: Invalid user helpdesk from 31.14.135.117 Sep 22 07:03:09 lcprod sshd\[23225\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.14.135.117	2019-09-23 01:10:36
45.236.244.130	attackspambots	Sep 22 06:36:12 auw2 sshd\[8003\]: Invalid user user from 45.236.244.130 Sep 22 06:36:12 auw2 sshd\[8003\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.236.244.130 Sep 22 06:36:14 auw2 sshd\[8003\]: Failed password for invalid user user from 45.236.244.130 port 57276 ssh2 Sep 22 06:41:53 auw2 sshd\[8688\]: Invalid user np from 45.236.244.130 Sep 22 06:41:53 auw2 sshd\[8688\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.236.244.130	2019-09-23 00:53:14
180.76.119.77	attackspambots	Sep 22 12:22:06 ny01 sshd[19856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.119.77 Sep 22 12:22:08 ny01 sshd[19856]: Failed password for invalid user 12345 from 180.76.119.77 port 39870 ssh2 Sep 22 12:28:13 ny01 sshd[21435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.119.77	2019-09-23 00:43:50
58.87.92.153	attackbots	2019-09-21 06:35:14,580 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 58.87.92.153 2019-09-21 07:06:33,659 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 58.87.92.153 2019-09-21 07:38:48,917 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 58.87.92.153 2019-09-21 08:11:16,916 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 58.87.92.153 2019-09-21 08:43:59,868 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 58.87.92.153 ...	2019-09-23 00:52:19
92.119.160.146	attack	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-23 00:33:06
138.68.128.80	attack	Sep 22 04:52:22 hpm sshd\[2647\]: Invalid user nt from 138.68.128.80 Sep 22 04:52:22 hpm sshd\[2647\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.128.80 Sep 22 04:52:24 hpm sshd\[2647\]: Failed password for invalid user nt from 138.68.128.80 port 48258 ssh2 Sep 22 04:56:33 hpm sshd\[2975\]: Invalid user test from 138.68.128.80 Sep 22 04:56:33 hpm sshd\[2975\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.128.80	2019-09-23 01:03:56
51.77.103.71	attack	Sep 22 18:53:37 vps647732 sshd[12526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.103.71 Sep 22 18:53:39 vps647732 sshd[12526]: Failed password for invalid user sj from 51.77.103.71 port 34860 ssh2 ...	2019-09-23 00:57:15
46.101.187.76	attackbots	Sep 22 18:24:54 SilenceServices sshd[8927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.187.76 Sep 22 18:24:56 SilenceServices sshd[8927]: Failed password for invalid user a from 46.101.187.76 port 33633 ssh2 Sep 22 18:28:13 SilenceServices sshd[9852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.187.76	2019-09-23 00:37:41
117.53.152.104	attackbotsspam	10 attempts against mh-misc-ban on heat.magehost.pro	2019-09-23 00:35:32

最近上报的IP列表

244.123.114.92	107.95.229.112	205.138.61.20	135.114.2.208
254.197.233.253	153.97.140.4	247.106.206.227	38.65.205.153
72.202.176.66	221.195.44.213	9.18.6.48	44.241.240.21
119.97.57.237	129.39.109.46	86.187.57.182	54.71.174.94
238.163.183.181	59.65.204.73	164.56.82.180	194.92.251.109