Whois information
NetRange: 198.23.128.0 - 198.23.255.255
CIDR: 198.23.128.0/17
NetName: CC-10
NetHandle: NET-198-23-128-0-1
Parent: NET198 (NET-198-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS36352
Organization: HostPapa (HOSTP-7)
RegDate: 2012-10-05
Updated: 2024-02-02
Ref: https://rdap.arin.net/registry/ip/198.23.128.0
OrgName: HostPapa
OrgId: HOSTP-7
Address: 325 Delaware Avenue
Address: Suite 300
City: Buffalo
StateProv: NY
PostalCode: 14202
Country: US
RegDate: 2016-06-06
Updated: 2024-04-26
Ref: https://rdap.arin.net/registry/entity/HOSTP-7
OrgAbuseHandle: NETAB23-ARIN
OrgAbuseName: NETABUSE
OrgAbusePhone: +1-905-315-3455
OrgAbuseEmail: net-abuse-global@hostpapa.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/NETAB23-ARIN
OrgTechHandle: NETTE9-ARIN
OrgTechName: NETTECH
OrgTechPhone: +1-905-315-3455
OrgTechEmail: net-tech-global@hostpapa.com
OrgTechRef: https://rdap.arin.net/registry/entity/NETTE9-ARIN
RTechHandle: NETTE11-ARIN
RTechName: NETTECH-COLOCROSSING
RTechPhone: +1-800-518-9716
RTechEmail: support@colocrossing.com
RTechRef: https://rdap.arin.net/registry/entity/NETTE11-ARIN
RAbuseHandle: NETAB27-ARIN
RAbuseName: NETABUSE-COLOCROSSING
RAbusePhone: +1-800-518-9716
RAbuseEmail: abuse@colocrossing.com
RAbuseRef: https://rdap.arin.net/registry/entity/NETAB27-ARIN
NetRange: 198.23.168.128 - 198.23.168.255
CIDR: 198.23.168.128/25
NetName: CC-198-23-168-128-25
NetHandle: NET-198-23-168-128-1
Parent: CC-10 (NET-198-23-128-0-1)
NetType: Reallocated
OriginAS: AS36352
Organization: PNV GROUP Ltd (PGL-101)
RegDate: 2016-03-09
Updated: 2016-03-09
Ref: https://rdap.arin.net/registry/ip/198.23.168.128
OrgName: PNV GROUP Ltd
OrgId: PGL-101
Address: 75 Broad Street
City: New York
StateProv: NY
PostalCode: 10004
Country: US
RegDate: 2016-03-09
Updated: 2016-03-09
Ref: https://rdap.arin.net/registry/entity/PGL-101
OrgAbuseHandle: LAZAR78-ARIN
OrgAbuseName: Lazar, Adrian
OrgAbusePhone: +1-888-979-5236
OrgAbuseEmail: colt4pro@aol.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/LAZAR78-ARIN
OrgTechHandle: LAZAR78-ARIN
OrgTechName: Lazar, Adrian
OrgTechPhone: +1-888-979-5236
OrgTechEmail: colt4pro@aol.com
OrgTechRef: https://rdap.arin.net/registry/entity/LAZAR78-ARIN
Most recent complaints
Please help us keep Internet safer and cleaner by leaving a descriptive comment about 198.23.168.221 IP address
DNSBL* - is a list of IP addresses published through the Internet Domain Name Service (DNS) either as a zone file that can be used by DNS server software, or as a live DNS zone that can be queried in real-time. DNSBLs are most often used to publish the addresses of computers or networks linked to spamming; most mail server software can be configured to reject or flag messages which have been sent from a site listed on one or more such lists.
WHOIS** - is a query/response protocol that is widely used for querying databases in order to determine the registrant or assignee of Internet resources, such as a domain name, an IP address block, or an autonomous system number. WHOIS lookups were traditionally performed with a command line interface application, and network administrators predominantly still use this method, but many simplified web-based tools exist. WHOIS services are typically communicated using the Transmission Control Protocol (TCP). Servers listen to requests on the well-known port number 43.
** Approximate Geographic Location - This is NOT the exact geographical location of the person/organization with the given IP address. However, this should still give you a good idea about the area/region where this person/orgranization is located.
Complaint by ThomasRiz :
I get more port scans from this IP address than all other IP addresses that scan my ports combined. It accounts for about 60% of all the port scans my firewall reports. It is also the only IP address assigned to RCN that scans my ports. There are hundreds of IP addresses that are assigned to AT&T, Verizon, Comcast, Google, Akamai and others, that have scanned my ports, but this is the only IP address registered to RCN that scans my ports. Interestingly, scans drop to virtually zero on major holidays such as Christmas and New Year. I'm not sure what that means, other than whomever is doing it is probably not Jewish or Muslim. My firewall protects a residential network with no commercial services, and I have never worked for any government or even a government contractor, so it's pretty weird. Also, to the best of my knowledge, I don't have any enemies, or know anyone who thinks they have a score to settle with me. I'm a pretty mellow older man who has good relationships with everyone I've ever known, at least as far as I know. Anyway, there are days when it has mounted more than 200 port scans per day, and each intrusion attempt scans at least 5 ports, so that's a lot of ports it's scanning. And it's been going on for more than a year, so whatever's going on doesn't seem to end. So naturally, I'm curious as to who this I{ address is assigned.