41.164.195.204

基本信息:

城市(city): Cape Town

省份(region): Western Cape

国家(country): South Africa

运营商(isp): Liquid Telecommunications South Africa (Pty) Ltd

主机名(hostname): unknown

机构(organization): Neotel Pty Ltd

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	(sshd) Failed SSH login from 41.164.195.204 (ZA/South Africa/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 13 00:09:52 ubnt-55d23 sshd[8787]: Invalid user forge from 41.164.195.204 port 39156 Apr 13 00:09:55 ubnt-55d23 sshd[8787]: Failed password for invalid user forge from 41.164.195.204 port 39156 ssh2	2020-04-13 06:50:40
attackbotsspam	SSH Brute Force	2020-04-11 18:33:12
attack	Mar 26 01:31:36 Ubuntu-1404-trusty-64-minimal sshd\[6466\]: Invalid user wangjw from 41.164.195.204 Mar 26 01:31:36 Ubuntu-1404-trusty-64-minimal sshd\[6466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Mar 26 01:31:38 Ubuntu-1404-trusty-64-minimal sshd\[6466\]: Failed password for invalid user wangjw from 41.164.195.204 port 37444 ssh2 Mar 26 01:38:57 Ubuntu-1404-trusty-64-minimal sshd\[10876\]: Invalid user yocona from 41.164.195.204 Mar 26 01:38:57 Ubuntu-1404-trusty-64-minimal sshd\[10876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204	2020-03-26 10:11:01
attack	Feb 13 20:58:40 web9 sshd\[3043\]: Invalid user elan1 from 41.164.195.204 Feb 13 20:58:40 web9 sshd\[3043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Feb 13 20:58:41 web9 sshd\[3043\]: Failed password for invalid user elan1 from 41.164.195.204 port 56806 ssh2 Feb 13 21:01:43 web9 sshd\[3463\]: Invalid user ryckebusch from 41.164.195.204 Feb 13 21:01:43 web9 sshd\[3463\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204	2020-02-14 18:31:17
attack	Jan 27 17:36:44 pkdns2 sshd\[54175\]: Invalid user pi from 41.164.195.204Jan 27 17:36:47 pkdns2 sshd\[54175\]: Failed password for invalid user pi from 41.164.195.204 port 38768 ssh2Jan 27 17:40:11 pkdns2 sshd\[54409\]: Invalid user prueba from 41.164.195.204Jan 27 17:40:13 pkdns2 sshd\[54409\]: Failed password for invalid user prueba from 41.164.195.204 port 36118 ssh2Jan 27 17:43:26 pkdns2 sshd\[54588\]: Invalid user mqm from 41.164.195.204Jan 27 17:43:28 pkdns2 sshd\[54588\]: Failed password for invalid user mqm from 41.164.195.204 port 33452 ssh2 ...	2020-01-28 00:16:46
attackbots	$f2bV_matches	2019-12-01 06:15:47
attackbots	Nov 25 00:15:43 lnxded63 sshd[21971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Nov 25 00:15:43 lnxded63 sshd[21971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Nov 25 00:15:45 lnxded63 sshd[21971]: Failed password for invalid user jct_acc from 41.164.195.204 port 38566 ssh2	2019-11-25 07:18:08
attackbotsspam	(sshd) Failed SSH login from 41.164.195.204 (-): 5 in the last 3600 secs	2019-11-25 04:48:18
attackbots	Nov 7 07:13:15 markkoudstaal sshd[25861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Nov 7 07:13:17 markkoudstaal sshd[25861]: Failed password for invalid user sanda from 41.164.195.204 port 57326 ssh2 Nov 7 07:18:01 markkoudstaal sshd[26262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204	2019-11-07 22:47:13
attackbotsspam	2019-11-04T20:37:50.947406abusebot.cloudsearch.cf sshd\[26654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 user=root	2019-11-05 05:18:09
attack	ssh failed login	2019-10-18 02:17:11
attackbotsspam	Oct 3 07:40:44 pkdns2 sshd\[22203\]: Invalid user yun from 41.164.195.204Oct 3 07:40:47 pkdns2 sshd\[22203\]: Failed password for invalid user yun from 41.164.195.204 port 45656 ssh2Oct 3 07:45:31 pkdns2 sshd\[22413\]: Invalid user test1 from 41.164.195.204Oct 3 07:45:34 pkdns2 sshd\[22413\]: Failed password for invalid user test1 from 41.164.195.204 port 57898 ssh2Oct 3 07:50:31 pkdns2 sshd\[22641\]: Invalid user bloomberg from 41.164.195.204Oct 3 07:50:33 pkdns2 sshd\[22641\]: Failed password for invalid user bloomberg from 41.164.195.204 port 41970 ssh2 ...	2019-10-03 16:14:37
attackbotsspam	Oct 2 14:00:17 MK-Soft-VM5 sshd[1840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Oct 2 14:00:19 MK-Soft-VM5 sshd[1840]: Failed password for invalid user studio from 41.164.195.204 port 48820 ssh2 ...	2019-10-02 20:36:32
attackspam	Sep 30 07:44:04 mail sshd\[6446\]: Invalid user demo from 41.164.195.204 port 60804 Sep 30 07:44:04 mail sshd\[6446\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Sep 30 07:44:06 mail sshd\[6446\]: Failed password for invalid user demo from 41.164.195.204 port 60804 ssh2 Sep 30 07:48:57 mail sshd\[7106\]: Invalid user areknet from 41.164.195.204 port 44680 Sep 30 07:48:57 mail sshd\[7106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204	2019-09-30 14:01:02
attackspambots	Sep 27 08:10:40 xtremcommunity sshd\[18761\]: Invalid user ntpupdate from 41.164.195.204 port 56878 Sep 27 08:10:40 xtremcommunity sshd\[18761\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Sep 27 08:10:43 xtremcommunity sshd\[18761\]: Failed password for invalid user ntpupdate from 41.164.195.204 port 56878 ssh2 Sep 27 08:15:49 xtremcommunity sshd\[18837\]: Invalid user openproject from 41.164.195.204 port 41030 Sep 27 08:15:49 xtremcommunity sshd\[18837\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 ...	2019-09-27 20:29:50
attackspam	Sep 21 23:53:37 dedicated sshd[16616]: Invalid user nathan from 41.164.195.204 port 42302	2019-09-22 08:02:48
attackbots	Aug 15 10:15:48 tdfoods sshd\[24216\]: Invalid user admin from 41.164.195.204 Aug 15 10:15:48 tdfoods sshd\[24216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204 Aug 15 10:15:50 tdfoods sshd\[24216\]: Failed password for invalid user admin from 41.164.195.204 port 49572 ssh2 Aug 15 10:21:37 tdfoods sshd\[24782\]: Invalid user perez from 41.164.195.204 Aug 15 10:21:37 tdfoods sshd\[24782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.164.195.204	2019-08-16 04:24:36
attack	Jul 7 06:02:56 ip-172-31-62-245 sshd\[6956\]: Invalid user baptiste from 41.164.195.204\ Jul 7 06:02:58 ip-172-31-62-245 sshd\[6956\]: Failed password for invalid user baptiste from 41.164.195.204 port 33242 ssh2\ Jul 7 06:08:16 ip-172-31-62-245 sshd\[6968\]: Invalid user pa from 41.164.195.204\ Jul 7 06:08:18 ip-172-31-62-245 sshd\[6968\]: Failed password for invalid user pa from 41.164.195.204 port 52666 ssh2\ Jul 7 06:11:33 ip-172-31-62-245 sshd\[7082\]: Invalid user le from 41.164.195.204\	2019-07-07 18:37:28

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.164.195.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62155
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.164.195.204.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041502 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 16 10:47:36 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 204.195.164.41.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 204.195.164.41.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
192.168.1.1	normal	2048	2023-02-08 13:30:58
192.241.226.35	proxy	VPN fraud	2023-02-10 18:21:32
185.87.193.220	spam	Phishing	2023-02-09 18:48:47
64.62.197.62	proxy	unauthorized VPN	2023-02-16 13:46:18
62.210.15.85	proxy	Hack VPN	2023-02-15 13:46:22
40.83.61.242	spamattack	/azhinbfn/3044_k /azhinbfn/26_q	2023-02-10 19:13:10
64.62.197.136	attack	VPN	2023-02-02 17:47:24
64.62.197.171	proxy	VPN	2023-02-06 14:02:21
159.65.24.24	normal	ن	2023-02-12 11:56:27
185.224.128.240	botsproxy	SSL VPN continuous trial login	2023-02-11 08:22:30
152.32.150.167	proxy	Falce VPN conect	2023-02-06 14:09:45
45.33.46.249	proxy	VPN	2023-02-07 22:54:16
165.154.44.158	proxy	VPN hacking	2023-02-07 22:34:27
116.58.207.190	spambotsattackproxynormal	Hjaj	2023-02-02 16:24:16
171.255.69.125	spambotsattackproxynormal	.	2023-02-08 23:32:27

最近上报的IP列表

92.40.249.201	190.181.37.63	60.191.66.212	201.18.12.222
200.68.66.165	197.25.205.81	168.121.248.226	82.117.244.76
71.113.133.117	190.233.20.155	190.238.105.6	196.223.156.1
5.9.66.153	189.109.247.148	149.202.32.223	2.34.18.178
217.15.159.234	171.240.38.164	5.9.108.254	85.214.234.186