41.164.195.204

基本信息:

城市(city): Cape Town

省份(region): Western Cape

国家(country): South Africa

运营商(isp): Liquid Telecommunications South Africa (Pty) Ltd

主机名(hostname): unknown

机构(organization): Neotel Pty Ltd

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	(sshd) Failed SSH login from 41.164.195.204 (ZA/South Africa/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 13 00:09:52 ubnt-55d23 sshd[8787]: Invalid user forge from 41.164.195.204 port 39156 Apr 13 00:09:55 ubnt-55d23 sshd[8787]: Failed password for invalid user forge from 41.164.195.204 port 39156 ssh2	2020-04-13 06:50:40
attackbotsspam	SSH Brute Force	2020-04-11 18:33:12
attack	Mar 26 01:31:36 Ubuntu-1404-trusty-64-minimal sshd\[6466\]: Invalid user wangjw from 41.164.195.204 Mar 26 01:31:36 Ubuntu-1404-trusty-64-minimal sshd\[6466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Mar 26 01:31:38 Ubuntu-1404-trusty-64-minimal sshd\[6466\]: Failed password for invalid user wangjw from 41.164.195.204 port 37444 ssh2 Mar 26 01:38:57 Ubuntu-1404-trusty-64-minimal sshd\[10876\]: Invalid user yocona from 41.164.195.204 Mar 26 01:38:57 Ubuntu-1404-trusty-64-minimal sshd\[10876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204	2020-03-26 10:11:01
attack	Feb 13 20:58:40 web9 sshd\[3043\]: Invalid user elan1 from 41.164.195.204 Feb 13 20:58:40 web9 sshd\[3043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Feb 13 20:58:41 web9 sshd\[3043\]: Failed password for invalid user elan1 from 41.164.195.204 port 56806 ssh2 Feb 13 21:01:43 web9 sshd\[3463\]: Invalid user ryckebusch from 41.164.195.204 Feb 13 21:01:43 web9 sshd\[3463\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204	2020-02-14 18:31:17
attack	Jan 27 17:36:44 pkdns2 sshd\[54175\]: Invalid user pi from 41.164.195.204Jan 27 17:36:47 pkdns2 sshd\[54175\]: Failed password for invalid user pi from 41.164.195.204 port 38768 ssh2Jan 27 17:40:11 pkdns2 sshd\[54409\]: Invalid user prueba from 41.164.195.204Jan 27 17:40:13 pkdns2 sshd\[54409\]: Failed password for invalid user prueba from 41.164.195.204 port 36118 ssh2Jan 27 17:43:26 pkdns2 sshd\[54588\]: Invalid user mqm from 41.164.195.204Jan 27 17:43:28 pkdns2 sshd\[54588\]: Failed password for invalid user mqm from 41.164.195.204 port 33452 ssh2 ...	2020-01-28 00:16:46
attackbots	$f2bV_matches	2019-12-01 06:15:47
attackbots	Nov 25 00:15:43 lnxded63 sshd[21971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Nov 25 00:15:43 lnxded63 sshd[21971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Nov 25 00:15:45 lnxded63 sshd[21971]: Failed password for invalid user jct_acc from 41.164.195.204 port 38566 ssh2	2019-11-25 07:18:08
attackbotsspam	(sshd) Failed SSH login from 41.164.195.204 (-): 5 in the last 3600 secs	2019-11-25 04:48:18
attackbots	Nov 7 07:13:15 markkoudstaal sshd[25861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Nov 7 07:13:17 markkoudstaal sshd[25861]: Failed password for invalid user sanda from 41.164.195.204 port 57326 ssh2 Nov 7 07:18:01 markkoudstaal sshd[26262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204	2019-11-07 22:47:13
attackbotsspam	2019-11-04T20:37:50.947406abusebot.cloudsearch.cf sshd\[26654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 user=root	2019-11-05 05:18:09
attack	ssh failed login	2019-10-18 02:17:11
attackbotsspam	Oct 3 07:40:44 pkdns2 sshd\[22203\]: Invalid user yun from 41.164.195.204Oct 3 07:40:47 pkdns2 sshd\[22203\]: Failed password for invalid user yun from 41.164.195.204 port 45656 ssh2Oct 3 07:45:31 pkdns2 sshd\[22413\]: Invalid user test1 from 41.164.195.204Oct 3 07:45:34 pkdns2 sshd\[22413\]: Failed password for invalid user test1 from 41.164.195.204 port 57898 ssh2Oct 3 07:50:31 pkdns2 sshd\[22641\]: Invalid user bloomberg from 41.164.195.204Oct 3 07:50:33 pkdns2 sshd\[22641\]: Failed password for invalid user bloomberg from 41.164.195.204 port 41970 ssh2 ...	2019-10-03 16:14:37
attackbotsspam	Oct 2 14:00:17 MK-Soft-VM5 sshd[1840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Oct 2 14:00:19 MK-Soft-VM5 sshd[1840]: Failed password for invalid user studio from 41.164.195.204 port 48820 ssh2 ...	2019-10-02 20:36:32
attackspam	Sep 30 07:44:04 mail sshd\[6446\]: Invalid user demo from 41.164.195.204 port 60804 Sep 30 07:44:04 mail sshd\[6446\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Sep 30 07:44:06 mail sshd\[6446\]: Failed password for invalid user demo from 41.164.195.204 port 60804 ssh2 Sep 30 07:48:57 mail sshd\[7106\]: Invalid user areknet from 41.164.195.204 port 44680 Sep 30 07:48:57 mail sshd\[7106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204	2019-09-30 14:01:02
attackspambots	Sep 27 08:10:40 xtremcommunity sshd\[18761\]: Invalid user ntpupdate from 41.164.195.204 port 56878 Sep 27 08:10:40 xtremcommunity sshd\[18761\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Sep 27 08:10:43 xtremcommunity sshd\[18761\]: Failed password for invalid user ntpupdate from 41.164.195.204 port 56878 ssh2 Sep 27 08:15:49 xtremcommunity sshd\[18837\]: Invalid user openproject from 41.164.195.204 port 41030 Sep 27 08:15:49 xtremcommunity sshd\[18837\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 ...	2019-09-27 20:29:50
attackspam	Sep 21 23:53:37 dedicated sshd[16616]: Invalid user nathan from 41.164.195.204 port 42302	2019-09-22 08:02:48
attackbots	Aug 15 10:15:48 tdfoods sshd\[24216\]: Invalid user admin from 41.164.195.204 Aug 15 10:15:48 tdfoods sshd\[24216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Aug 15 10:15:50 tdfoods sshd\[24216\]: Failed password for invalid user admin from 41.164.195.204 port 49572 ssh2 Aug 15 10:21:37 tdfoods sshd\[24782\]: Invalid user perez from 41.164.195.204 Aug 15 10:21:37 tdfoods sshd\[24782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204	2019-08-16 04:24:36
attack	Jul 7 06:02:56 ip-172-31-62-245 sshd\[6956\]: Invalid user baptiste from 41.164.195.204\ Jul 7 06:02:58 ip-172-31-62-245 sshd\[6956\]: Failed password for invalid user baptiste from 41.164.195.204 port 33242 ssh2\ Jul 7 06:08:16 ip-172-31-62-245 sshd\[6968\]: Invalid user pa from 41.164.195.204\ Jul 7 06:08:18 ip-172-31-62-245 sshd\[6968\]: Failed password for invalid user pa from 41.164.195.204 port 52666 ssh2\ Jul 7 06:11:33 ip-172-31-62-245 sshd\[7082\]: Invalid user le from 41.164.195.204\	2019-07-07 18:37:28

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.164.195.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62155
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.164.195.204.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041502 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 16 10:47:36 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 204.195.164.41.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 204.195.164.41.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
89.36.217.142	attackbotsspam	Automatic report - Banned IP Access	2019-10-15 01:31:11
181.225.19.94	attackspam	Oct 14 13:33:48 m2 sshd[30918]: Failed password for r.r from 181.225.19.94 port 42614 ssh2 Oct 14 13:33:51 m2 sshd[30918]: Failed password for r.r from 181.225.19.94 port 42614 ssh2 Oct 14 13:33:53 m2 sshd[30918]: Failed password for r.r from 181.225.19.94 port 42614 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=181.225.19.94	2019-10-15 00:58:58
124.152.76.213	attackbots	Oct 14 13:03:53 plusreed sshd[8248]: Invalid user p4$$w0rd2017 from 124.152.76.213 ...	2019-10-15 01:20:23
180.168.70.190	attackbots	SSH bruteforce (Triggered fail2ban)	2019-10-15 01:16:48
51.83.76.36	attackbotsspam	Oct 14 13:42:43 XXX sshd[24889]: Invalid user rator from 51.83.76.36 port 34670	2019-10-15 01:31:36
46.42.234.194	attackspam	Automatic report - Port Scan Attack	2019-10-15 01:06:33
154.117.162.178	attackspambots	Triggered by Fail2Ban at Ares web server	2019-10-15 01:09:23
112.85.42.195	attackspam	Oct 14 16:40:41 game-panel sshd[26183]: Failed password for root from 112.85.42.195 port 13113 ssh2 Oct 14 16:45:30 game-panel sshd[26382]: Failed password for root from 112.85.42.195 port 12720 ssh2	2019-10-15 00:55:21
80.234.43.166	attack	Unauthorized IMAP connection attempt	2019-10-15 00:51:29
39.135.1.194	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-15 01:20:05
106.13.16.205	attackspambots	Oct 9 13:38:15 heissa sshd\[28253\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.16.205 user=root Oct 9 13:38:18 heissa sshd\[28253\]: Failed password for root from 106.13.16.205 port 34964 ssh2 Oct 9 13:43:00 heissa sshd\[29017\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.16.205 user=root Oct 9 13:43:01 heissa sshd\[29017\]: Failed password for root from 106.13.16.205 port 39860 ssh2 Oct 9 13:47:28 heissa sshd\[29669\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.16.205 user=root	2019-10-15 01:05:28
195.46.20.146	attack	Brute force attempt	2019-10-15 01:20:47
206.189.149.9	attackspambots	Oct 14 08:00:41 TORMINT sshd\[19442\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.149.9 user=root Oct 14 08:00:44 TORMINT sshd\[19442\]: Failed password for root from 206.189.149.9 port 38500 ssh2 Oct 14 08:05:22 TORMINT sshd\[19624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.149.9 user=root ...	2019-10-15 01:04:13
121.15.11.13	attackbots	Oct 14 05:23:23 php1 sshd\[18900\]: Invalid user Salvador@321 from 121.15.11.13 Oct 14 05:23:23 php1 sshd\[18900\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.15.11.13 Oct 14 05:23:26 php1 sshd\[18900\]: Failed password for invalid user Salvador@321 from 121.15.11.13 port 17800 ssh2 Oct 14 05:30:22 php1 sshd\[19432\]: Invalid user 123WSXQAZ from 121.15.11.13 Oct 14 05:30:22 php1 sshd\[19432\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.15.11.13	2019-10-15 01:11:18
51.255.173.245	attackbots	Oct 14 13:46:56 MK-Soft-Root2 sshd[1515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.173.245 Oct 14 13:46:58 MK-Soft-Root2 sshd[1515]: Failed password for invalid user Lyon1@3 from 51.255.173.245 port 44854 ssh2 ...	2019-10-15 01:00:44

最近上报的IP列表

92.40.249.201	190.181.37.63	60.191.66.212	201.18.12.222
200.68.66.165	197.25.205.81	168.121.248.226	82.117.244.76
71.113.133.117	190.233.20.155	190.238.105.6	196.223.156.1
5.9.66.153	189.109.247.148	149.202.32.223	2.34.18.178
217.15.159.234	171.240.38.164	5.9.108.254	85.214.234.186