192.241.212.99

Basic Info

City: San Francisco

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
proxy	VPN	2023-02-24 13:49:38

Comments on same subnet:

IP	Type	Details	Datetime
192.241.212.115	proxy	VPN attack	2022-12-19 14:24:06
192.241.212.178	attackbotsspam	" "	2020-10-11 01:41:04
192.241.212.191	attack	Port Scan ...	2020-10-01 20:31:53
192.241.212.191	attackspambots	scans once in preceeding hours on the ports (in chronological order) 1028 resulting in total of 44 scans from 192.241.128.0/17 block.	2020-10-01 12:42:28
192.241.212.26	attack	9043/tcp 2222/tcp 4369/tcp... [2020-06-24/08-23]38pkt,34pt.(tcp)	2020-08-24 06:00:30
192.241.212.197	attackspam	TCP (SYN) 192.241.212.197:49546 -> port 445, len 40	2020-08-23 03:59:32
192.241.212.26	attackbotsspam	port scan and connect, tcp 465 (smtps)	2020-08-04 17:39:19
192.241.212.65	attackbots	Chat Spam	2020-07-29 08:27:04
192.241.212.195	attackbots	TCP (SYN) 192.241.212.195:37505 -> port 22, len 44	2020-07-21 02:18:46
192.241.212.49	attack	TCP (SYN) 192.241.212.49:60815 -> port 28017, len 44	2020-07-13 23:33:46
192.241.212.43	attackbotsspam	[Wed Jun 24 08:38:16 2020] - DDoS Attack From IP: 192.241.212.43 Port: 51446	2020-07-13 02:27:56
192.241.212.132	attackbotsspam	[Wed Jul 01 01:01:19 2020] - DDoS Attack From IP: 192.241.212.132 Port: 49463	2020-07-13 01:59:41
192.241.212.32	attack	Icarus honeypot on github	2020-07-12 12:53:57
192.241.212.209	attack	Port Scan ...	2020-07-11 22:27:34
192.241.212.49	attackspambots	firewall-block, port(s): 135/tcp	2020-07-10 05:46:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.241.212.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7530
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;192.241.212.99.			IN	A

;; AUTHORITY SECTION:
.			364	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023022301 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 24 13:49:36 CST 2023
;; MSG SIZE  rcvd: 107

Host info

99.212.241.192.in-addr.arpa domain name pointer zg-1220b-152.stretchoid.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
99.212.241.192.in-addr.arpa	name = zg-1220b-152.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
13.76.26.35	attack	Tried sshing with brute force.	2020-09-26 05:29:00
52.224.177.249	attackbots	2020-09-25T17:18:05.585946ns386461 sshd\[14712\]: Invalid user cashmila from 52.224.177.249 port 37752 2020-09-25T17:18:05.588579ns386461 sshd\[14712\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.224.177.249 2020-09-25T17:18:07.114584ns386461 sshd\[14712\]: Failed password for invalid user cashmila from 52.224.177.249 port 37752 ssh2 2020-09-25T22:54:32.586988ns386461 sshd\[1635\]: Invalid user 157 from 52.224.177.249 port 43113 2020-09-25T22:54:32.591523ns386461 sshd\[1635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.224.177.249 ...	2020-09-26 05:04:32
180.76.188.98	attackbots	Invalid user tomcat from 180.76.188.98 port 56696	2020-09-26 05:09:20
106.12.206.3	attackbotsspam	Sep 25 20:30:24 XXX sshd[24263]: Invalid user user1 from 106.12.206.3 port 55334	2020-09-26 05:31:52
52.249.177.216	attack	Brute-force attempt banned	2020-09-26 05:04:10
219.77.198.49	attack	Listed on zen-spamhaus also abuseat.org / proto=6 . srcport=34042 . dstport=5555 . (3633)	2020-09-26 05:17:21
107.170.184.26	attackspam	2020-09-26T01:11:13.340157paragon sshd[405274]: Failed password for invalid user testuser from 107.170.184.26 port 48153 ssh2 2020-09-26T01:14:38.774957paragon sshd[405329]: Invalid user bdc from 107.170.184.26 port 52691 2020-09-26T01:14:38.778174paragon sshd[405329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.184.26 2020-09-26T01:14:38.774957paragon sshd[405329]: Invalid user bdc from 107.170.184.26 port 52691 2020-09-26T01:14:40.859115paragon sshd[405329]: Failed password for invalid user bdc from 107.170.184.26 port 52691 ssh2 ...	2020-09-26 05:28:17
145.249.106.130	attack	Brute force blocker - service: exim2 - aantal: 25 - Wed Sep 5 22:00:12 2018	2020-09-26 05:03:12
106.12.71.84	attackspambots	Sep 25 22:11:53 fhem-rasp sshd[2549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.71.84 Sep 25 22:11:55 fhem-rasp sshd[2549]: Failed password for invalid user patrick from 106.12.71.84 port 42236 ssh2 ...	2020-09-26 05:23:38
193.35.51.23	attackspambots	Sep 25 23:18:53 galaxy event: galaxy/lswi: smtp: fritz.wiesner@wi.uni-potsdam.de [193.35.51.23] authentication failure using internet password Sep 25 23:18:55 galaxy event: galaxy/lswi: smtp: fritz.wiesner [193.35.51.23] authentication failure using internet password Sep 25 23:24:06 galaxy event: galaxy/lswi: smtp: eric.krause@wi.uni-potsdam.de [193.35.51.23] authentication failure using internet password Sep 25 23:24:07 galaxy event: galaxy/lswi: smtp: eric.krause [193.35.51.23] authentication failure using internet password Sep 25 23:27:59 galaxy event: galaxy/lswi: smtp: fachtagung@wi.uni-potsdam.de [193.35.51.23] authentication failure using internet password ...	2020-09-26 05:35:55
54.37.159.45	attackspambots	Invalid user admin from 54.37.159.45 port 35688	2020-09-26 05:12:00
218.74.21.28	attackspam	Sep 25 16:16:12 ws22vmsma01 sshd[54521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.74.21.28 Sep 25 16:16:13 ws22vmsma01 sshd[54521]: Failed password for invalid user oracle from 218.74.21.28 port 34938 ssh2 ...	2020-09-26 05:34:19
52.175.204.16	attackbots	Sep 25 20:42:50 ssh2 sshd[96908]: User root from 52.175.204.16 not allowed because not listed in AllowUsers Sep 25 20:42:50 ssh2 sshd[96908]: Failed password for invalid user root from 52.175.204.16 port 56458 ssh2 Sep 25 20:42:50 ssh2 sshd[96908]: Disconnected from invalid user root 52.175.204.16 port 56458 [preauth] ...	2020-09-26 04:58:41
222.186.190.2	attackspam	Sep 25 22:24:18 rocket sshd[6158]: Failed password for root from 222.186.190.2 port 41384 ssh2 Sep 25 22:24:32 rocket sshd[6158]: Failed password for root from 222.186.190.2 port 41384 ssh2 Sep 25 22:24:32 rocket sshd[6158]: error: maximum authentication attempts exceeded for root from 222.186.190.2 port 41384 ssh2 [preauth] ...	2020-09-26 05:29:36
52.161.12.69	attackbotsspam	Sep 25 18:01:01 web1 sshd[16271]: Invalid user servertwo from 52.161.12.69 port 1024 Sep 25 18:01:01 web1 sshd[16272]: Invalid user servertwo from 52.161.12.69 port 1024 Sep 25 18:01:01 web1 sshd[16271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.161.12.69 Sep 25 18:01:01 web1 sshd[16271]: Invalid user servertwo from 52.161.12.69 port 1024 Sep 25 18:01:04 web1 sshd[16271]: Failed password for invalid user servertwo from 52.161.12.69 port 1024 ssh2 Sep 25 18:01:01 web1 sshd[16272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.161.12.69 Sep 25 18:01:01 web1 sshd[16272]: Invalid user servertwo from 52.161.12.69 port 1024 Sep 25 18:01:04 web1 sshd[16272]: Failed password for invalid user servertwo from 52.161.12.69 port 1024 ssh2 Sep 26 07:08:08 web1 sshd[13703]: Invalid user 173 from 52.161.12.69 port 1024 Sep 26 07:08:08 web1 sshd[13705]: Invalid user 173 from 52.161.12.69 port 1024 ...	2020-09-26 05:27:23

Recently Reported IPs

219.2.162.125	115.201.99.88	138.117.221.155	70.233.205.53
45.129.70.241	15.26.63.218	104.237.62.213	187.120.228.169
170.247.238.176	78.1.196.121	224.135.233.85	130.3.19.15
2403:6200:8860:d1f7:a996:cdf0:fee9:78c1	6.224.51.26	111.82.1.22	184.122.45.46
107.172.178.146	48.10.81.102	88.74.36.243	97.1.163.116