99.252.112.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: Rogers Cable Communications Inc.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 99.252.112.99 to port 80 [J]	2020-01-23 13:36:56

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 99.252.112.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41638
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;99.252.112.99.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012300 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 13:36:52 CST 2020
;; MSG SIZE  rcvd: 117

Host info

99.112.252.99.in-addr.arpa domain name pointer CPEa84e3fd22953-CMa84e3fd22950.sdns.net.rogers.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
99.112.252.99.in-addr.arpa	name = CPEa84e3fd22953-CMa84e3fd22950.sdns.net.rogers.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.221.86.21	attack	Apr 24 14:10:32 mout sshd[2447]: Invalid user es from 41.221.86.21 port 36052	2020-04-24 20:22:03
222.186.175.23	attack	Apr 24 12:17:21 game-panel sshd[18270]: Failed password for root from 222.186.175.23 port 35213 ssh2 Apr 24 12:18:05 game-panel sshd[18315]: Failed password for root from 222.186.175.23 port 55682 ssh2 Apr 24 12:18:06 game-panel sshd[18315]: Failed password for root from 222.186.175.23 port 55682 ssh2	2020-04-24 20:18:34
89.248.160.150	attackbotsspam	scans 12 times in preceeding hours on the ports (in chronological order) 7936 7954 7994 8500 10006 10008 10016 19222 19222 25159 27015 28003 resulting in total of 143 scans from 89.248.160.0-89.248.174.255 block.	2020-04-24 20:26:26
182.61.41.203	attackspambots	Apr 24 06:08:40 server1 sshd\[9014\]: Failed password for invalid user mike from 182.61.41.203 port 46374 ssh2 Apr 24 06:09:37 server1 sshd\[9356\]: Invalid user H0m3l4b1t from 182.61.41.203 Apr 24 06:09:37 server1 sshd\[9356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.41.203 Apr 24 06:09:39 server1 sshd\[9356\]: Failed password for invalid user H0m3l4b1t from 182.61.41.203 port 56356 ssh2 Apr 24 06:10:29 server1 sshd\[9589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.41.203 user=root ...	2020-04-24 20:23:17
202.70.66.228	attackspam	kp-sea2-01 recorded 2 login violations from 202.70.66.228 and was blocked at 2020-04-24 12:10:42. 202.70.66.228 has been blocked on 28 previous occasions. 202.70.66.228's first attempt was recorded at 2019-05-19 18:53:03	2020-04-24 20:16:04
200.133.39.24	attackbots	Bruteforce detected by fail2ban	2020-04-24 20:27:54
213.154.11.207	attackbots	(imapd) Failed IMAP login from 213.154.11.207 (AZ/Azerbaijan/-): 1 in the last 3600 secs	2020-04-24 20:43:54
41.93.45.116	attack	Brute-Force login attempt to QNap server in US using userid "admin". 264 attempts in 3-min period.	2020-04-24 20:38:55
155.94.158.136	attackspambots	Invalid user ae from 155.94.158.136 port 33986	2020-04-24 20:05:31
211.252.87.90	attack	Apr 24 14:20:39 server sshd[24856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.252.87.90 Apr 24 14:20:41 server sshd[24856]: Failed password for invalid user libuuid from 211.252.87.90 port 46899 ssh2 Apr 24 14:25:50 server sshd[25291]: Failed password for root from 211.252.87.90 port 29438 ssh2 ...	2020-04-24 20:35:04
142.93.68.181	attack	2020-04-24 11:51:13,115 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 12:26:39,172 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 12:59:58,136 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 13:36:09,526 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 14:10:41,026 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 ...	2020-04-24 20:17:31
78.27.145.135	attackbotsspam	Apr 24 17:32:04 gw1 sshd[28595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.27.145.135 Apr 24 17:32:06 gw1 sshd[28605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.27.145.135 ...	2020-04-24 20:35:39
218.15.201.194	attackbots	Lines containing failures of 218.15.201.194 Apr 21 18:25:53 kmh-mb-001 sshd[9891]: Invalid user admin from 218.15.201.194 port 48728 Apr 21 18:25:53 kmh-mb-001 sshd[9891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.15.201.194 Apr 21 18:25:55 kmh-mb-001 sshd[9891]: Failed password for invalid user admin from 218.15.201.194 port 48728 ssh2 Apr 21 18:25:56 kmh-mb-001 sshd[9891]: Received disconnect from 218.15.201.194 port 48728:11: Bye Bye [preauth] Apr 21 18:25:56 kmh-mb-001 sshd[9891]: Disconnected from invalid user admin 218.15.201.194 port 48728 [preauth] Apr 21 18:35:39 kmh-mb-001 sshd[11278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.15.201.194 user=r.r Apr 21 18:35:41 kmh-mb-001 sshd[11278]: Failed password for r.r from 218.15.201.194 port 58791 ssh2 Apr 21 18:35:41 kmh-mb-001 sshd[11278]: Received disconnect from 218.15.201.194 port 58791:11: Bye Bye [preauth] Apr 2........ ------------------------------	2020-04-24 20:11:18
131.161.169.252	attackspam	[Fri Apr 24 11:43:50 2020 GMT] "Comercial" [URIBL_INV], Subject: Central de Vendas Nacional	2020-04-24 20:28:49
158.69.192.35	attackspambots	2020-04-24T10:10:59.043566homeassistant sshd[29578]: Invalid user beginner from 158.69.192.35 port 43358 2020-04-24T10:10:59.052151homeassistant sshd[29578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.192.35 ...	2020-04-24 20:03:08

Recently Reported IPs

90.55.135.225	216.49.84.249	148.228.152.25	179.23.175.19
47.73.1.231	190.29.39.160	234.169.229.236	183.82.117.164
223.149.177.111	216.189.116.247	180.248.216.110	60.170.192.7
187.138.195.17	186.92.121.198	42.119.196.251	1.175.237.38
176.113.161.66	27.50.169.167	117.213.249.26	190.0.45.254