196.1.99.12 - IPInfo

Basic Info

City: Saint-Louis

Region: Saint-Louis

Country: Senegal

Internet Service Provider: Universite Saint-Louis du Senegal

Hostname: unknown

Organization: Autonomous System

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Invalid user sybase from 196.1.99.12 port 41166	2019-08-27 06:03:07
attackbotsspam	Invalid user sybase from 196.1.99.12 port 41166	2019-08-26 09:21:51
attackbotsspam	Aug 24 17:04:39 h2177944 sshd\[12264\]: Invalid user sbserver from 196.1.99.12 port 51002 Aug 24 17:04:39 h2177944 sshd\[12264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12 Aug 24 17:04:41 h2177944 sshd\[12264\]: Failed password for invalid user sbserver from 196.1.99.12 port 51002 ssh2 Aug 24 17:10:26 h2177944 sshd\[12451\]: Invalid user alexandru from 196.1.99.12 port 44537 Aug 24 17:10:26 h2177944 sshd\[12451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12 ...	2019-08-24 23:31:31
attack	Aug 23 20:16:47 ns37 sshd[26227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12 Aug 23 20:16:49 ns37 sshd[26227]: Failed password for invalid user armand from 196.1.99.12 port 58153 ssh2 Aug 23 20:22:14 ns37 sshd[26489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12	2019-08-24 02:48:47
attackspam	Aug 21 03:33:53 vpn01 sshd\[29986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12 user=root Aug 21 03:33:56 vpn01 sshd\[29986\]: Failed password for root from 196.1.99.12 port 58049 ssh2 Aug 21 03:37:25 vpn01 sshd\[30002\]: Invalid user test from 196.1.99.12	2019-08-21 10:16:26
attack	Aug 20 02:06:15 mail sshd[27950]: Invalid user test from 196.1.99.12 ...	2019-08-20 08:15:28
attackspambots	2019-08-17T12:56:00.614644abusebot-6.cloudsearch.cf sshd\[13015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12 user=root	2019-08-17 21:13:39
attackspambots	Jul 29 14:27:44 *** sshd[17753]: User root from 196.1.99.12 not allowed because not listed in AllowUsers	2019-07-29 23:44:01
attack	Invalid user setup from 196.1.99.12 port 48617	2019-07-28 15:13:54
attack	Invalid user postgres from 196.1.99.12 port 45324	2019-07-28 06:05:31
attackbotsspam	2019-07-26T19:04:33.550409abusebot-2.cloudsearch.cf sshd\[17539\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12 user=root	2019-07-27 03:25:17
attackspam	Invalid user postgres from 196.1.99.12 port 45324	2019-07-24 15:42:08
attack	Jul 23 01:41:50 vmd17057 sshd\[2129\]: Invalid user postgres from 196.1.99.12 port 38994 Jul 23 01:41:50 vmd17057 sshd\[2129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12 Jul 23 01:41:52 vmd17057 sshd\[2129\]: Failed password for invalid user postgres from 196.1.99.12 port 38994 ssh2 ...	2019-07-23 10:20:44
attackspam	Invalid user simon from 196.1.99.12 port 36198	2019-07-13 20:04:03
attackspam	" "	2019-07-11 12:45:55
attackspambots	Jul 9 04:40:29 mail sshd\[29186\]: Invalid user sgi from 196.1.99.12 port 43140 Jul 9 04:40:29 mail sshd\[29186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12 ...	2019-07-09 15:03:54
attackbots	Jul 4 10:57:09 MK-Soft-VM6 sshd\[30816\]: Invalid user jhall from 196.1.99.12 port 45763 Jul 4 10:57:09 MK-Soft-VM6 sshd\[30816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12 Jul 4 10:57:11 MK-Soft-VM6 sshd\[30816\]: Failed password for invalid user jhall from 196.1.99.12 port 45763 ssh2 ...	2019-07-04 19:48:03
attackbotsspam	Jul 2 19:27:04 MK-Soft-Root1 sshd\[13114\]: Invalid user dylan from 196.1.99.12 port 58547 Jul 2 19:27:04 MK-Soft-Root1 sshd\[13114\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.99.12 Jul 2 19:27:06 MK-Soft-Root1 sshd\[13114\]: Failed password for invalid user dylan from 196.1.99.12 port 58547 ssh2 ...	2019-07-03 01:37:08
attackspam	Invalid user jester from 196.1.99.12 port 49394	2019-06-27 06:14:58
attackbotsspam	Triggered by Fail2Ban at Vostok web server	2019-06-25 03:59:28
attackspambots	SSH Brute Force	2019-06-23 22:35:35
attackbots	IP attempted unauthorised action	2019-06-23 15:42:51

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.1.99.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42417
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;196.1.99.12.			IN	A

;; AUTHORITY SECTION:
.			3274	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019032900 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Mar 29 23:58:20 +08 2019
;; MSG SIZE  rcvd: 115

Host info

Host 12.99.1.196.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 12.99.1.196.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.218.155.75	attack	Port Scan detected! ...	2020-06-01 03:41:41
51.91.68.39	attack	Port scan denied	2020-06-01 03:48:27
89.248.162.247	attackspambots	Port scanning [10 denied]	2020-06-01 04:10:46
92.53.65.52	attack	05/31/2020-14:40:02.500885 92.53.65.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-01 03:40:19
195.54.166.75	attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 42305 proto: TCP cat: Misc Attack	2020-06-01 03:54:49
93.174.89.20	attackspam	firewall-block, port(s): 8/tcp, 45/tcp, 68/tcp	2020-06-01 04:07:30
85.99.117.68	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 79 - port: 80 proto: TCP cat: Misc Attack	2020-06-01 04:15:10
87.251.74.135	attackbotsspam	05/31/2020-15:59:53.426045 87.251.74.135 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-01 04:13:12
195.54.167.113	attackspam	Port scan denied	2020-06-01 03:53:21
87.251.74.130	attack	05/31/2020-15:41:05.770754 87.251.74.130 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-01 04:14:31
94.102.51.29	attack	Port scanning [5 denied]	2020-06-01 04:06:27
46.101.149.23	attack	Port scan denied	2020-06-01 03:49:11
94.102.49.190	attackbots	Port Scan detected! ...	2020-06-01 04:06:52
85.209.0.100	attackspambots	May 31 20:34:55 vmd17057 sshd[21053]: Failed password for root from 85.209.0.100 port 35178 ssh2 ...	2020-06-01 03:43:23
103.145.12.125	attackbots	[2020-05-31 15:50:24] NOTICE[1157] chan_sip.c: Registration from '"8012" ' failed for '103.145.12.125:5828' - Wrong password [2020-05-31 15:50:24] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-31T15:50:24.235-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="8012",SessionID="0x7f5f10678288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.125/5828",Challenge="68b466f8",ReceivedChallenge="68b466f8",ReceivedHash="c5cdbd7f257e3975ef4596b5f483d23b" [2020-05-31 15:50:24] NOTICE[1157] chan_sip.c: Registration from '"8012" ' failed for '103.145.12.125:5828' - Wrong password [2020-05-31 15:50:24] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-31T15:50:24.465-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="8012",SessionID="0x7f5f10227d48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP ...	2020-06-01 04:04:25

Recently Reported IPs

198.199.122.228	195.251.49.17	195.154.211.76	190.122.104.121
178.128.18.68	178.32.219.209	178.32.141.39	173.25.188.20
170.231.81.165	170.80.28.203	151.236.46.104	142.93.247.243
139.59.21.101	134.175.114.210	128.199.255.146	123.207.150.226
121.8.154.178	118.25.93.64	111.230.63.104	106.0.36.114