192.252.133.206 Threat Intelligence and Host Information

Share on:
Apr 20, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 31/100

Host and Network Information

  • Tags: Nextray, aws, bruteforce, cyber security, ioc, malicious, mssql, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: Canada
  • Network: AS22652 fibrenoire inc.
  • Noticed: 3 times
  • Protcols Attacked: mssql
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: sbcteams01.csn.qc.ca webmail.elpcinc.com

Map

Whois Information

  • NetRange: 192.252.128.0 - 192.252.143.255
  • CIDR: 192.252.128.0/20
  • NetName: FIBRENOIRE-INTERNET
  • NetHandle: NET-192-252-128-0-1
  • Parent: NET192 (NET-192-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS22652
  • Organization: Fibrenoire Inc. (FIBRE-1)
  • RegDate: 2013-06-27
  • Updated: 2013-06-27
  • Ref: https://rdap.arin.net/registry/ip/192.252.128.0
  • OrgName: Fibrenoire Inc.
  • OrgId: FIBRE-1
  • Address: 612 St Jacques Street, 3 rd floor south
  • City: Montreal
  • StateProv: QC
  • PostalCode: H3C 4M8
  • Country: CA
  • RegDate: 2007-05-09
  • Updated: 2022-01-24
  • Ref: https://rdap.arin.net/registry/entity/FIBRE-1
  • OrgAbuseHandle: ABUSE1784-ARIN
  • OrgAbuseName: Abuse
  • OrgAbusePhone: +1-514-380-7100
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1784-ARIN
  • OrgTechHandle: TECHN618-ARIN
  • OrgTechName: Technical Support
  • OrgTechPhone: +1-514-907-3002
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/TECHN618-ARIN
  • NetRange: 192.252.133.192 - 192.252.133.255
  • CIDR: 192.252.133.192/26
  • NetName: ELPC01-C3
  • NetHandle: NET-192-252-133-192-1
  • Parent: FIBRENOIRE-INTERNET (NET-192-252-128-0-1)
  • NetType: Reassigned
  • OriginAS:
  • Organization: 9195-5302 Quebec inc. (ELPC inc) (QE-15)
  • RegDate: 2015-01-06
  • Updated: 2015-01-06
  • Ref: https://rdap.arin.net/registry/ip/192.252.133.192
  • OrgName: 9195-5302 Quebec inc. (ELPC inc)
  • OrgId: QE-15
  • Address: Casier Postal 7
  • City: Lourdes-de-Joliette
  • StateProv: QC
  • PostalCode: J0K 1K0
  • Country: CA
  • RegDate: 2015-01-06
  • Updated: 2015-01-06
  • Ref: https://rdap.arin.net/registry/entity/QE-15
  • OrgAbuseHandle: ABUSE4963-ARIN
  • OrgAbuseName: Abuse
  • OrgAbusePhone: +1-888-335-3572
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE4963-ARIN
  • OrgTechHandle: ABUSE4963-ARIN
  • OrgTechName: Abuse
  • OrgTechPhone: +1-888-335-3572
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/ABUSE4963-ARIN
  • network:Auth-Area:fibrenoire.ca
  • network:Class-Name:network
  • network:ID:192.252.133.192/26
  • network:Network-Name:CONF04-192.252.133.192/26
  • network:IP-Network:192.252.133.192/26
  • network:Origin-AS:22652
  • network:Org-Name:Confederation Des Syndicats Nationaux (C.S.N.)
  • network:Street-Address:1601 Av De Lorimier
  • network:City:Montreal
  • network:State:QC
  • network:Postal-Code:H2K 4M5
  • network:Country-Code:CA
  • network:Created:May 28 2021 11:45AM
  • network:Updated:May 28 2021 11:45AM

Links to attack logs

aws-mssql-bruteforce-ip-list-2020-11-03