128.140.23.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
128.140.23.74	attack	This is one of the many ip's ,all from the same city) that started a network attack from my dvr.	2020-03-28 06:25:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.140.23.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21795
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;128.140.23.99.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021401 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 04:03:34 CST 2025
;; MSG SIZE  rcvd: 106

Host info

99.23.140.128.in-addr.arpa domain name pointer static.99.23.140.128.clients.your-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
99.23.140.128.in-addr.arpa	name = static.99.23.140.128.clients.your-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
69.163.169.133	attackspam	69.163.169.133 - - [25/Sep/2020:00:54:58 +0100] "POST /wp-login.php HTTP/1.1" 200 4424 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 69.163.169.133 - - [25/Sep/2020:00:55:00 +0100] "POST /wp-login.php HTTP/1.1" 200 4424 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 69.163.169.133 - - [25/Sep/2020:00:55:01 +0100] "POST /wp-login.php HTTP/1.1" 200 4424 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-25 08:09:52
51.103.24.92	attackspam	Sep 25 02:13:21 ns3164893 sshd[31985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.103.24.92 Sep 25 02:13:23 ns3164893 sshd[31985]: Failed password for invalid user hyerelle from 51.103.24.92 port 41838 ssh2 ...	2020-09-25 08:14:44
115.98.176.106	attack	Listed on zen-spamhaus also barracudaCentral and abuseat.org / proto=6 . srcport=59708 . dstport=37215 . (3328)	2020-09-25 08:15:17
222.186.42.7	attack	Sep 25 01:20:51 rocket sshd[4140]: Failed password for root from 222.186.42.7 port 61166 ssh2 Sep 25 01:20:58 rocket sshd[4150]: Failed password for root from 222.186.42.7 port 22654 ssh2 ...	2020-09-25 08:25:17
134.209.103.181	attackbotsspam	Sep 24 14:16:54 web1 sshd\[4801\]: Invalid user pruebas from 134.209.103.181 Sep 24 14:16:54 web1 sshd\[4801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.103.181 Sep 24 14:16:56 web1 sshd\[4801\]: Failed password for invalid user pruebas from 134.209.103.181 port 41480 ssh2 Sep 24 14:21:05 web1 sshd\[5161\]: Invalid user demo2 from 134.209.103.181 Sep 24 14:21:05 web1 sshd\[5161\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.103.181	2020-09-25 08:44:42
114.80.55.163	attackbotsspam	Sep 24 21:53:40 mail sshd[6506]: Failed password for root from 114.80.55.163 port 43688 ssh2	2020-09-25 08:11:46
23.236.254.130	attack	Automatic report - Banned IP Access	2020-09-25 08:32:46
111.23.19.149	attackbotsspam	REQUESTED PAGE: /manager/html	2020-09-25 08:31:58
87.98.148.135	attackspambots	Sep 25 02:00:00 vpn01 sshd[13765]: Failed password for root from 87.98.148.135 port 55563 ssh2 ...	2020-09-25 08:36:13
52.188.147.7	attackspam	Sep 25 00:17:39 marvibiene sshd[44879]: Invalid user hdfds from 52.188.147.7 port 7113 Sep 25 00:17:39 marvibiene sshd[44879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.188.147.7 Sep 25 00:17:39 marvibiene sshd[44879]: Invalid user hdfds from 52.188.147.7 port 7113 Sep 25 00:17:41 marvibiene sshd[44879]: Failed password for invalid user hdfds from 52.188.147.7 port 7113 ssh2	2020-09-25 08:33:35
192.35.169.35	attack	" "	2020-09-25 08:34:26
94.102.51.28	attack	Sep 25 01:35:34 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=8621 PROTO=TCP SPT=57870 DPT=8054 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 25 01:38:07 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=24544 PROTO=TCP SPT=57870 DPT=10628 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 25 01:44:34 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=44780 PROTO=TCP SPT=57870 DPT=54888 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 25 01:48:43 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=94.102.51.28 DST=173.212.244.83 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=52104 PROTO=TCP SPT=57870 DPT=43034 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 25 01:48:58 *hidde ...	2020-09-25 08:26:17
83.48.101.184	attack	Sep 24 19:57:31 NPSTNNYC01T sshd[8979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.48.101.184 Sep 24 19:57:33 NPSTNNYC01T sshd[8979]: Failed password for invalid user caja01 from 83.48.101.184 port 37191 ssh2 Sep 24 19:59:52 NPSTNNYC01T sshd[9169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.48.101.184 ...	2020-09-25 08:38:59
123.13.221.191	attackspam	(sshd) Failed SSH login from 123.13.221.191 (CN/China/hn.kd.ny.adsl): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 24 19:25:52 optimus sshd[29664]: Invalid user oracle from 123.13.221.191 Sep 24 19:25:52 optimus sshd[29664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.13.221.191 Sep 24 19:25:54 optimus sshd[29664]: Failed password for invalid user oracle from 123.13.221.191 port 8760 ssh2 Sep 24 20:21:15 optimus sshd[8115]: Invalid user oracle from 123.13.221.191 Sep 24 20:21:16 optimus sshd[8115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.13.221.191	2020-09-25 08:38:05
106.75.254.109	attack	smtp probe/invalid login attempt	2020-09-25 08:08:02

Recently Reported IPs

170.228.186.132	124.42.63.25	65.178.116.18	208.216.43.128
93.175.37.235	161.230.203.155	196.175.234.64	198.181.124.99
36.47.57.245	58.92.98.117	132.76.76.1	206.5.113.175
66.200.88.42	75.182.76.186	133.238.122.215	107.208.107.163
120.187.224.191	194.85.41.32	224.190.171.243	19.26.12.164