192.99.244.119

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): OVH Hosting Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Nov 19 10:45:27 mxgate1 postfix/postscreen[30543]: CONNECT from [192.99.244.119]:39253 to [176.31.12.44]:25 Nov 19 10:45:27 mxgate1 postfix/dnsblog[30544]: addr 192.99.244.119 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 19 10:45:33 mxgate1 postfix/postscreen[30543]: DNSBL rank 2 for [192.99.244.119]:39253 Nov 19 10:45:33 mxgate1 postfix/tlsproxy[30887]: CONNECT from [192.99.244.119]:39253 Nov x@x Nov 19 10:45:34 mxgate1 postfix/postscreen[30543]: DISCONNECT [192.99.244.119]:39253 Nov 19 10:45:34 mxgate1 postfix/tlsproxy[30887]: DISCONNECT [192.99.244.119]:39253 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=192.99.244.119	2019-11-21 16:04:22

类型

评论内容

时间

attack

Nov 19 10:45:27 mxgate1 postfix/postscreen[30543]: CONNECT from [192.99.244.119]:39253 to [176.31.12.44]:25
Nov 19 10:45:27 mxgate1 postfix/dnsblog[30544]: addr 192.99.244.119 listed by domain zen.spamhaus.org as 127.0.0.3
Nov 19 10:45:33 mxgate1 postfix/postscreen[30543]: DNSBL rank 2 for [192.99.244.119]:39253
Nov 19 10:45:33 mxgate1 postfix/tlsproxy[30887]: CONNECT from [192.99.244.119]:39253
Nov x@x
Nov 19 10:45:34 mxgate1 postfix/postscreen[30543]: DISCONNECT [192.99.244.119]:39253
Nov 19 10:45:34 mxgate1 postfix/tlsproxy[30887]: DISCONNECT [192.99.244.119]:39253


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=192.99.244.119

2019-11-21 16:04:22

相同子网IP讨论:

IP	类型	评论内容	时间
192.99.244.45	attack	TCP (SYN) 192.99.244.45:47115 -> port 3389, len 40	2020-08-15 22:20:59
192.99.244.225	attack	SSH Brute-Forcing (server1)	2020-06-18 18:40:46
192.99.244.225	attack	detected by Fail2Ban	2020-06-17 00:18:09
192.99.244.225	attackbotsspam	Jun 14 06:26:53 lanister sshd[16241]: Invalid user zabbix from 192.99.244.225 Jun 14 06:26:53 lanister sshd[16241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 14 06:26:53 lanister sshd[16241]: Invalid user zabbix from 192.99.244.225 Jun 14 06:26:56 lanister sshd[16241]: Failed password for invalid user zabbix from 192.99.244.225 port 33874 ssh2	2020-06-14 20:23:45
192.99.244.225	attack	Jun 13 14:04:56 dignus sshd[17471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 user=root Jun 13 14:04:58 dignus sshd[17471]: Failed password for root from 192.99.244.225 port 34506 ssh2 Jun 13 14:08:36 dignus sshd[17803]: Invalid user admin from 192.99.244.225 port 52596 Jun 13 14:08:36 dignus sshd[17803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 13 14:08:38 dignus sshd[17803]: Failed password for invalid user admin from 192.99.244.225 port 52596 ssh2 ...	2020-06-14 06:08:39
192.99.244.225	attackbots	Jun 13 09:24:11 ns382633 sshd\[1017\]: Invalid user laravel from 192.99.244.225 port 34212 Jun 13 09:24:11 ns382633 sshd\[1017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 13 09:24:13 ns382633 sshd\[1017\]: Failed password for invalid user laravel from 192.99.244.225 port 34212 ssh2 Jun 13 09:34:09 ns382633 sshd\[2984\]: Invalid user xiewenjing from 192.99.244.225 port 42610 Jun 13 09:34:09 ns382633 sshd\[2984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225	2020-06-13 17:08:11
192.99.244.225	attack	2020-06-11T21:00:53+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-06-12 04:33:28
192.99.244.225	attack	Jun 10 23:38:42 legacy sshd[23091]: Failed password for root from 192.99.244.225 port 40462 ssh2 Jun 10 23:42:49 legacy sshd[23274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 10 23:42:51 legacy sshd[23274]: Failed password for invalid user yuanwd from 192.99.244.225 port 34592 ssh2 ...	2020-06-11 05:57:17
192.99.244.225	attackbots	detected by Fail2Ban	2020-06-04 14:12:12
192.99.244.225	attackbots	Invalid user renata from 192.99.244.225 port 36116	2020-05-30 20:13:22
192.99.244.225	attackspam	ssh brute force	2020-05-25 13:23:00
192.99.244.225	attack	May 20 20:26:31 ArkNodeAT sshd\[8379\]: Invalid user iab from 192.99.244.225 May 20 20:26:31 ArkNodeAT sshd\[8379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 20 20:26:33 ArkNodeAT sshd\[8379\]: Failed password for invalid user iab from 192.99.244.225 port 42422 ssh2	2020-05-21 02:38:34
192.99.244.225	attack	May 15 00:41:57 vps639187 sshd\[24808\]: Invalid user testftp from 192.99.244.225 port 35828 May 15 00:41:57 vps639187 sshd\[24808\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 15 00:42:00 vps639187 sshd\[24808\]: Failed password for invalid user testftp from 192.99.244.225 port 35828 ssh2 ...	2020-05-15 06:56:46
192.99.244.225	attackspambots	May 11 22:46:11 ns382633 sshd\[8965\]: Invalid user admin from 192.99.244.225 port 49380 May 11 22:46:11 ns382633 sshd\[8965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 11 22:46:13 ns382633 sshd\[8965\]: Failed password for invalid user admin from 192.99.244.225 port 49380 ssh2 May 11 22:55:22 ns382633 sshd\[10627\]: Invalid user alvin from 192.99.244.225 port 53024 May 11 22:55:22 ns382633 sshd\[10627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225	2020-05-12 07:09:30
192.99.244.225	attackspambots	Apr 4 22:13:00 ks10 sshd[2532827]: Failed password for root from 192.99.244.225 port 42356 ssh2 ...	2020-04-05 06:08:03

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.99.244.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24614
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;192.99.244.119.			IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112003 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Thu Nov 21 16:10:38 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

119.244.99.192.in-addr.arpa domain name pointer 119.ip-192-99-244.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
119.244.99.192.in-addr.arpa	name = 119.ip-192-99-244.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
192.200.158.118	attackspambots	[2020-05-15 15:13:32] NOTICE[1157] chan_sip.c: Registration from '' failed for '192.200.158.118:64876' - Wrong password [2020-05-15 15:13:32] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-15T15:13:32.868-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5382",SessionID="0x7f5f100266a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.200.158.118/64876",Challenge="28f202d8",ReceivedChallenge="28f202d8",ReceivedHash="84d834a3833f6a04b2b565763d8770e7" [2020-05-15 15:13:40] NOTICE[1157] chan_sip.c: Registration from '' failed for '192.200.158.118:52859' - Wrong password [2020-05-15 15:13:40] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-15T15:13:40.028-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9318",SessionID="0x7f5f10b1c8b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.200 ...	2020-05-16 03:31:15
92.118.37.58	attackbotsspam	20/5/15@15:39:26: FAIL: Alarm-Intrusion address from=92.118.37.58 ...	2020-05-16 03:49:25
122.238.31.167	attack	20/5/15@08:20:04: FAIL: Alarm-Intrusion address from=122.238.31.167 ...	2020-05-16 03:41:15
222.186.190.14	attackspam	May 15 21:14:36 minden010 sshd[14354]: Failed password for root from 222.186.190.14 port 30854 ssh2 May 15 21:14:39 minden010 sshd[14354]: Failed password for root from 222.186.190.14 port 30854 ssh2 May 15 21:14:41 minden010 sshd[14354]: Failed password for root from 222.186.190.14 port 30854 ssh2 ...	2020-05-16 03:15:01
87.251.74.197	attackbotsspam	May 15 21:30:43 debian-2gb-nbg1-2 kernel: \[11829891.567645\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.197 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=846 PROTO=TCP SPT=41268 DPT=11524 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-16 03:30:47
78.128.112.14	attackbots	May 15 20:25:21 debian-2gb-nbg1-2 kernel: \[11825969.088266\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=78.128.112.14 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=18856 PROTO=TCP SPT=53911 DPT=23020 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-16 03:51:41
148.227.227.66	attack	Port Scan detected from 148.227.227.66 (MX/Mexico/Sinaloa/Culiacán (Privada del Real)/-). 4 hits in the last 250 seconds	2020-05-16 03:50:26
92.118.37.70	attackspam	May 15 21:44:27 debian-2gb-nbg1-2 kernel: \[11830714.945060\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.70 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=16689 PROTO=TCP SPT=52480 DPT=3395 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-16 03:45:21
203.201.161.11	attack	firewall-block, port(s): 445/tcp	2020-05-16 03:25:11
139.199.23.233	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2020-05-16 03:23:03
41.223.4.155	attack	sshd jail - ssh hack attempt	2020-05-16 03:49:56
164.132.145.70	attackspambots	Fail2Ban Ban Triggered	2020-05-16 03:33:03
106.246.250.202	attackbotsspam	5x Failed Password	2020-05-16 03:16:59
111.229.147.229	attackbots	Invalid user admin from 111.229.147.229 port 59148	2020-05-16 03:12:41
183.89.215.200	attack	"Account brute force using dictionary attack against Exchange Online"	2020-05-16 03:24:11

最近上报的IP列表

161.130.128.228	85.38.42.105	72.213.34.157	153.82.31.27
147.192.147.211	99.103.176.54	221.145.216.176	110.155.71.173
40.189.77.172	111.82.175.44	103.76.18.133	201.27.249.51
180.5.239.239	36.44.126.14	14.253.150.143	63.83.73.225
49.36.29.43	247.164.149.189	41.215.123.158	144.91.186.22