168.0.99.204 - IPInfo

基本信息:

城市(city): Cotia

省份(region): Sao Paulo

国家(country): Brazil

运营商(isp): TIM

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
168.0.99.68	attackspambots	2019-08-27 00:22:31 H=(168-0-99-68.static.n-mulserveridia.com.br) [168.0.99.68]:34434 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=168.0.99.68) 2019-08-27 00:22:32 unexpected disconnection while reading SMTP command from (168-0-99-68.static.n-mulserveridia.com.br) [168.0.99.68]:34434 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-08-27 01:31:34 H=(168-0-99-68.static.n-mulserveridia.com.br) [168.0.99.68]:45815 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=168.0.99.68) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=168.0.99.68	2019-08-27 08:51:40

类型

评论内容

时间

168.0.99.68

attackspambots

2019-08-27 00:22:31 H=(168-0-99-68.static.n-mulserveridia.com.br) [168.0.99.68]:34434 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=168.0.99.68)
2019-08-27 00:22:32 unexpected disconnection while reading SMTP command from (168-0-99-68.static.n-mulserveridia.com.br) [168.0.99.68]:34434 I=[10.100.18.23]:25 (error: Connection reset by peer)
2019-08-27 01:31:34 H=(168-0-99-68.static.n-mulserveridia.com.br) [168.0.99.68]:45815 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=168.0.99.68)


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=168.0.99.68

2019-08-27 08:51:40

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       168.0.0.0 - 168.0.255.255
CIDR:           168.0.0.0/16
NetName:        LACNIC-ERX-168-0-0-0
NetHandle:      NET-168-0-0-0-1
Parent:         NET168 (NET-168-0-0-0-0)
NetType:        Transferred to LACNIC
OriginAS:       
Organization:   Latin American and Caribbean IP address Regional Registry (LACNIC)
RegDate:        2010-11-03
Updated:        2010-11-03
Comment:        This IP address range is under LACNIC responsibility
Comment:        for further allocations to users in LACNIC region.
Comment:        Please see http://www.lacnic.net/ for further details,
Comment:        or check the WHOIS server located at http://whois.lacnic.net
Ref:            https://rdap.arin.net/registry/ip/168.0.0.0

ResourceLink:  http://lacnic.net/cgi-bin/lacnic/whois
ResourceLink:  whois.lacnic.net


OrgName:        Latin American and Caribbean IP address Regional Registry
OrgId:          LACNIC
Address:        Rambla Republica de Mexico 6125
City:           Montevideo
StateProv:      
PostalCode:     11400
Country:        UY
RegDate:        2002-07-27
Updated:        2018-03-15
Ref:            https://rdap.arin.net/registry/entity/LACNIC

ReferralServer:  whois://whois.lacnic.net
ResourceLink:  http://lacnic.net/cgi-bin/lacnic/whois

OrgAbuseHandle: LWI100-ARIN
OrgAbuseName:   LACNIC Whois Info
OrgAbusePhone:  +598-2604-2222 
OrgAbuseEmail:  abuse@lacnic.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/LWI100-ARIN

OrgTechHandle: LACNIC-ARIN
OrgTechName:   LACNIC Whois Info
OrgTechPhone:  +598-2604-2222 
OrgTechEmail:  whois-contact@lacnic.net
OrgTechRef:    https://rdap.arin.net/registry/entity/LACNIC-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.lacnic.net.

% IP Client: 124.223.158.242
 % Copyright (c) Nic.br - Use of this data is governed by the Use and
% Privacy Policy at https://registro.br/upp . Distribution,
% commercialization, reproduction, and use for advertising or similar
% purposes are expressly prohibited.
% 2026-06-27T12:31:30-03:00 - 124.223.158.242

inetnum:     168.0.96.0/22
aut-num:     AS265234
abuse-c:     NONTE4
owner:       N-MULTIMIDIA TELECOMUNICACOES LTDA - ME
ownerid:     10.958.040/0001-02
responsible: Antonio Carlos
owner-c:     NTLME20
tech-c:      NONTE4
inetrev:     168.0.99.0/24
nserver:     ns1.n-multimidia.com.br
nsstat:      20260627 AA
nslastaa:    20260627
nserver:     ns2.n-multimidia.com.br
nsstat:      20260627 AA
nslastaa:    20260627
created:     20151228
changed:     20170331

nic-hdl-br:  NTLME20
person:      N-MULTIMIDIA TELECOMUNICACOES LTDA - ME
created:     20170330
changed:     20191113

nic-hdl-br:  NONTE4
person:      N.O.C N-MULTIMIDIA TELECOMUNICACOES
created:     20170330
changed:     20200615

% Security and mail abuse issues should also be addressed to cert.br,
% respectivelly to cert@cert.br and mail-abuse@cert.br
%
% whois.registro.br only accepts exact match queries for domains,
% registrants, contacts, tickets, providers, IPs, and ASNs.

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.0.99.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35332
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;168.0.99.204.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026062700 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 27 23:31:31 CST 2026
;; MSG SIZE  rcvd: 105

HOST信息:

204.99.0.168.in-addr.arpa domain name pointer 168-0-99-204.static.n-multimidia.com.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
204.99.0.168.in-addr.arpa	name = 168-0-99-204.static.n-multimidia.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
82.184.40.155	attack	Feb 6 12:44:23 ns382633 sshd\[6306\]: Invalid user mmf from 82.184.40.155 port 44887 Feb 6 12:44:23 ns382633 sshd\[6306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.184.40.155 Feb 6 12:44:25 ns382633 sshd\[6306\]: Failed password for invalid user mmf from 82.184.40.155 port 44887 ssh2 Feb 6 13:05:41 ns382633 sshd\[10315\]: Invalid user jfq from 82.184.40.155 port 46800 Feb 6 13:05:41 ns382633 sshd\[10315\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.184.40.155	2020-02-06 20:09:04
211.72.239.243	attackspam	Unauthorized connection attempt detected from IP address 211.72.239.243 to port 2220 [J]	2020-02-06 20:10:52
68.183.48.172	attackspambots	Feb 6 07:50:34 work-partkepr sshd\[11168\]: Invalid user wxv from 68.183.48.172 port 43285 Feb 6 07:50:34 work-partkepr sshd\[11168\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.48.172 ...	2020-02-06 20:23:21
45.134.179.57	attack	Feb 6 13:18:01 h2177944 kernel: \[4189560.993298\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.134.179.57 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=30071 PROTO=TCP SPT=59719 DPT=29990 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 6 13:18:01 h2177944 kernel: \[4189560.993315\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.134.179.57 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=30071 PROTO=TCP SPT=59719 DPT=29990 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 6 13:27:39 h2177944 kernel: \[4190138.191273\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.134.179.57 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=10869 PROTO=TCP SPT=59719 DPT=11194 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 6 13:27:39 h2177944 kernel: \[4190138.191286\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.134.179.57 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=10869 PROTO=TCP SPT=59719 DPT=11194 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 6 13:33:32 h2177944 kernel: \[4190491.648979\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.134.179.57 DST=85.214.1	2020-02-06 20:33:50
185.147.212.12	attackbotsspam	[2020-02-06 07:05:23] NOTICE[1148] chan_sip.c: Registration from '' failed for '185.147.212.12:56260' - Wrong password [2020-02-06 07:05:23] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-06T07:05:23.070-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="7065",SessionID="0x7fd82c307128",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.212.12/56260",Challenge="6d1d6b6d",ReceivedChallenge="6d1d6b6d",ReceivedHash="ec127964fefdcd97190b2ab95962307e" [2020-02-06 07:05:57] NOTICE[1148] chan_sip.c: Registration from '' failed for '185.147.212.12:52240' - Wrong password [2020-02-06 07:05:57] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-06T07:05:57.713-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="4456",SessionID="0x7fd82c307128",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.21 ...	2020-02-06 20:10:10
200.134.9.2	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-06 20:07:13
175.29.189.182	attack	1580964616 - 02/06/2020 05:50:16 Host: 175.29.189.182/175.29.189.182 Port: 445 TCP Blocked	2020-02-06 20:39:14
113.254.178.165	attackbotsspam	Honeypot attack, port: 5555, PTR: 165-178-254-113-on-nets.com.	2020-02-06 20:23:01
111.230.157.219	attackbots	20 attempts against mh-ssh on cloud	2020-02-06 20:00:43
49.235.18.9	attack	Feb 6 06:47:43 lukav-desktop sshd\[29821\]: Invalid user qul from 49.235.18.9 Feb 6 06:47:43 lukav-desktop sshd\[29821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.18.9 Feb 6 06:47:45 lukav-desktop sshd\[29821\]: Failed password for invalid user qul from 49.235.18.9 port 54660 ssh2 Feb 6 06:50:27 lukav-desktop sshd\[31078\]: Invalid user mgc from 49.235.18.9 Feb 6 06:50:27 lukav-desktop sshd\[31078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.18.9	2020-02-06 20:33:21
150.109.113.127	attack	2020-02-06T09:07:05.779868 sshd[30769]: Invalid user exc from 150.109.113.127 port 60902 2020-02-06T09:07:05.795124 sshd[30769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.113.127 2020-02-06T09:07:05.779868 sshd[30769]: Invalid user exc from 150.109.113.127 port 60902 2020-02-06T09:07:07.268313 sshd[30769]: Failed password for invalid user exc from 150.109.113.127 port 60902 ssh2 2020-02-06T09:10:44.348103 sshd[30840]: Invalid user imf from 150.109.113.127 port 34426 ...	2020-02-06 20:19:09
122.51.57.78	attackspambots	no	2020-02-06 20:31:22
185.216.140.252	attack	Triggered: repeated knocking on closed ports.	2020-02-06 20:34:55
91.117.95.190	attack	Feb 6 05:41:37 vps691689 sshd[8768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.117.95.190 Feb 6 05:41:39 vps691689 sshd[8768]: Failed password for invalid user xbv from 91.117.95.190 port 50934 ssh2 ...	2020-02-06 20:20:20
222.186.173.215	attack	Feb 6 12:48:38 srv206 sshd[10958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Feb 6 12:48:40 srv206 sshd[10958]: Failed password for root from 222.186.173.215 port 10336 ssh2 ...	2020-02-06 20:21:03

最近上报的IP列表

125.191.119.196	10.121.209.254	2606:4700:10::ac43:607	2606:4700:10::6816:3551
2606:4700:10::6816:1704	2606:4700:10::6816:942	2606:4700:10::6816:3355	39.172.224.75
223.109.211.169	2606:4700:10::6814:8320	2606:4700:10::6814:7649	2606:4700:10::ac43:893
2606:4700:10::6816:1072	2606:4700:10::6814:8858	96.62.91.66	2606:4700:10::6816:681
2606:4700:10::6814:8651	120.48.152.13	123.138.70.27	121.43.52.201