182.99.12.106 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
182.99.127.63	attackspam	firewall-block, port(s): 445/tcp	2020-02-16 14:26:57
182.99.128.149	attack	Unauthorized connection attempt detected from IP address 182.99.128.149 to port 6656 [T]	2020-01-30 15:56:58
182.99.127.63	attack	Unauthorized connection attempt detected from IP address 182.99.127.63 to port 445 [T]	2020-01-27 06:53:51
182.99.127.63	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-19 23:22:51
182.99.127.63	attackspambots	Unauthorized connection attempt detected from IP address 182.99.127.63 to port 1433	2020-01-02 22:17:29
182.99.127.63	attack	Unauthorized connection attempt detected from IP address 182.99.127.63 to port 445	2020-01-01 20:49:11
182.99.127.63	attackbots	11/01/2019-15:23:33.180199 182.99.127.63 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-11-02 04:08:07
182.99.127.63	attack	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2019-10-28 07:08:45
182.99.121.103	attackspam	22/tcp [2019-09-08]1pkt	2019-09-08 23:27:51
182.99.127.63	attackbots	firewall-block, port(s): 445/tcp	2019-08-30 03:34:27
182.99.127.63	attackspam	Unauthorised access (Jul 10) SRC=182.99.127.63 LEN=40 TTL=240 ID=21189 TCP DPT=445 WINDOW=1024 SYN Unauthorised access (Jul 8) SRC=182.99.127.63 LEN=40 TTL=240 ID=4596 TCP DPT=445 WINDOW=1024 SYN	2019-07-11 01:06:52
182.99.127.63	attack	445/tcp 445/tcp 445/tcp... [2019-05-05/07-03]11pkt,1pt.(tcp)	2019-07-04 03:23:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 182.99.12.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56947
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;182.99.12.106.			IN	A

;; AUTHORITY SECTION:
.			481	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 11:08:44 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 106.12.99.182.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.12.99.182.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.91.100.120	attackspam	Aug 24 14:42:26 PorscheCustomer sshd[25931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.100.120 Aug 24 14:42:28 PorscheCustomer sshd[25931]: Failed password for invalid user weiwei from 51.91.100.120 port 35258 ssh2 Aug 24 14:46:24 PorscheCustomer sshd[26035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.100.120 ...	2020-08-24 23:30:58
138.99.6.184	attackbots	Aug 24 16:11:17 minden010 sshd[7147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.6.184 Aug 24 16:11:18 minden010 sshd[7147]: Failed password for invalid user restore from 138.99.6.184 port 60036 ssh2 Aug 24 16:15:57 minden010 sshd[7701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.6.184 ...	2020-08-24 23:20:34
51.83.139.56	attackspambots	Aug 24 17:29:43 prod4 sshd\[17741\]: Failed password for root from 51.83.139.56 port 36913 ssh2 Aug 24 17:29:46 prod4 sshd\[17741\]: Failed password for root from 51.83.139.56 port 36913 ssh2 Aug 24 17:29:48 prod4 sshd\[17741\]: Failed password for root from 51.83.139.56 port 36913 ssh2 ...	2020-08-24 23:30:15
80.6.35.239	attackbots	CMS (WordPress or Joomla) login attempt.	2020-08-24 23:36:34
167.99.77.94	attackbotsspam	Aug 24 15:42:34 pkdns2 sshd\[9978\]: Invalid user nagios from 167.99.77.94Aug 24 15:42:36 pkdns2 sshd\[9978\]: Failed password for invalid user nagios from 167.99.77.94 port 41792 ssh2Aug 24 15:43:48 pkdns2 sshd\[10035\]: Invalid user redmine from 167.99.77.94Aug 24 15:43:50 pkdns2 sshd\[10035\]: Failed password for invalid user redmine from 167.99.77.94 port 58464 ssh2Aug 24 15:45:07 pkdns2 sshd\[10139\]: Invalid user tgu from 167.99.77.94Aug 24 15:45:09 pkdns2 sshd\[10139\]: Failed password for invalid user tgu from 167.99.77.94 port 46902 ssh2 ...	2020-08-24 23:37:38
178.222.25.166	attackbots	Aug 24 07:37:19 r.ca sshd[27526]: Failed password for invalid user avanthi from 178.222.25.166 port 40443 ssh2	2020-08-24 23:08:48
60.199.131.62	attack	Aug 24 12:12:17 firewall sshd[24628]: Failed password for invalid user sgc from 60.199.131.62 port 37154 ssh2 Aug 24 12:15:08 firewall sshd[24725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.199.131.62 user=root Aug 24 12:15:11 firewall sshd[24725]: Failed password for root from 60.199.131.62 port 53090 ssh2 ...	2020-08-24 23:33:29
121.201.66.43	attack	Unauthorized connection attempt from IP address 121.201.66.43 on Port 445(SMB)	2020-08-24 23:13:47
220.213.201.196	attack	Fail2Ban Ban Triggered	2020-08-24 23:07:33
155.94.140.50	attackspam	Auto Fail2Ban report, multiple SSH login attempts.	2020-08-24 23:39:55
152.136.203.208	attackbots	2020-08-24 06:49:28.925427-0500 localhost sshd[92285]: Failed password for root from 152.136.203.208 port 49726 ssh2	2020-08-24 23:23:00
180.108.64.71	attackspambots	Aug 24 08:42:34 ws22vmsma01 sshd[196247]: Failed password for administrator from 180.108.64.71 port 39872 ssh2 Aug 24 08:50:09 ws22vmsma01 sshd[218469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.108.64.71 ...	2020-08-24 23:17:10
136.232.52.162	attackspambots	srvr2: (mod_security) mod_security (id:920350) triggered by 136.232.52.162 (IN/-/136.232.52.162.static.jio.com): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/24 13:50:10 [error] 1087850#0: 1279919 [client 136.232.52.162] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "15982698106.309847"] [ref "o0,11v124,11"], client: 136.232.52.162, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-24 23:15:13
150.109.82.109	attackbotsspam	(sshd) Failed SSH login from 150.109.82.109 (KR/South Korea/-): 10 in the last 3600 secs	2020-08-24 23:42:32
92.222.216.222	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-24T13:11:36Z and 2020-08-24T13:16:52Z	2020-08-24 23:29:31

Recently Reported IPs

182.76.18.102	182.96.160.39	183.107.149.73	183.107.199.81
183.109.19.234	182.90.207.197	183.112.26.24	183.11.36.23
183.117.112.83	183.13.191.102	183.13.9.21	183.128.60.33
183.142.56.45	183.134.179.82	183.150.217.164	183.143.174.90
183.150.134.171	183.16.208.231	183.158.99.46	183.157.85.249