128.199.150.140

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
128.199.150.11	attack	Exploited Host.	2020-07-26 04:18:24
128.199.150.228	attackbots	Apr 16 05:51:55 minden010 sshd[28265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 Apr 16 05:51:56 minden010 sshd[28265]: Failed password for invalid user albert from 128.199.150.228 port 59642 ssh2 Apr 16 05:55:53 minden010 sshd[29527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 ...	2020-04-16 12:34:03
128.199.150.11	attackbots	Apr 11 14:17:00 cvbnet sshd[28067]: Failed password for root from 128.199.150.11 port 44491 ssh2 Apr 11 14:21:05 cvbnet sshd[28106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.11 ...	2020-04-11 20:24:17
128.199.150.11	attackspam	2020-04-08T12:40:10.328780shield sshd\[4304\]: Invalid user gio from 128.199.150.11 port 61534 2020-04-08T12:40:10.332519shield sshd\[4304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.11 2020-04-08T12:40:12.521958shield sshd\[4304\]: Failed password for invalid user gio from 128.199.150.11 port 61534 ssh2 2020-04-08T12:42:02.388985shield sshd\[4656\]: Invalid user nginx from 128.199.150.11 port 21617 2020-04-08T12:42:02.393089shield sshd\[4656\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.11	2020-04-08 22:48:04
128.199.150.11	attackbots	Apr 6 17:18:47 legacy sshd[22557]: Failed password for root from 128.199.150.11 port 12920 ssh2 Apr 6 17:23:11 legacy sshd[22630]: Failed password for root from 128.199.150.11 port 15387 ssh2 ...	2020-04-06 23:32:58
128.199.150.11	attackspambots	SSH login attempts.	2020-04-04 15:09:06
128.199.150.11	attackspambots	$f2bV_matches	2020-04-03 17:08:54
128.199.150.228	attack	'Fail2Ban'	2020-04-02 03:32:03
128.199.150.11	attackspambots	SSH brute-force attempt	2020-03-31 18:22:01
128.199.150.215	attackbotsspam	(sshd) Failed SSH login from 128.199.150.215 (SG/Singapore/-): 5 in the last 3600 secs	2020-03-30 19:17:25
128.199.150.228	attackbots	Mar 29 09:15:50 firewall sshd[29575]: Invalid user admin from 128.199.150.228 Mar 29 09:15:52 firewall sshd[29575]: Failed password for invalid user admin from 128.199.150.228 port 42990 ssh2 Mar 29 09:20:28 firewall sshd[29911]: Invalid user access from 128.199.150.228 ...	2020-03-29 20:47:41
128.199.150.228	attack	Mar 24 18:28:55 sigma sshd\[12408\]: Invalid user discordbot from 128.199.150.228Mar 24 18:28:57 sigma sshd\[12408\]: Failed password for invalid user discordbot from 128.199.150.228 port 34518 ssh2 ...	2020-03-25 05:55:10
128.199.150.228	attackbotsspam	Mar 20 18:16:01 srv206 sshd[3185]: Invalid user administrator from 128.199.150.228 ...	2020-03-21 01:23:05
128.199.150.228	attack	Mar 19 18:57:43 plex sshd[6870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 user=root Mar 19 18:57:44 plex sshd[6870]: Failed password for root from 128.199.150.228 port 60056 ssh2 Mar 19 18:59:22 plex sshd[6909]: Invalid user cod2 from 128.199.150.228 port 47362 Mar 19 18:59:22 plex sshd[6909]: Invalid user cod2 from 128.199.150.228 port 47362	2020-03-20 03:54:38
128.199.150.228	attackbots	Invalid user ts3user from 128.199.150.228 port 39830	2020-03-12 04:44:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.199.150.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15905
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;128.199.150.140.		IN	A

;; AUTHORITY SECTION:
.			429	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 03:48:02 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 140.150.199.128.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.150.199.128.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
8.14.149.127	attackspam	$f2bV_matches	2020-03-24 05:23:35
92.63.194.155	attackbotsspam	[MK-Root1] Blocked by UFW	2020-03-24 05:16:28
2.184.42.45	attack	DATE:2020-03-23 16:43:24, IP:2.184.42.45, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-03-24 05:19:46
185.220.101.129	attack	Mar 23 19:31:54 sso sshd[30108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.129 Mar 23 19:31:56 sso sshd[30108]: Failed password for invalid user user from 185.220.101.129 port 37197 ssh2 ...	2020-03-24 05:08:40
142.4.214.151	attackbotsspam	Triggered by Fail2Ban at Ares web server	2020-03-24 05:25:23
120.92.35.5	attackspam	Total attacks: 2	2020-03-24 04:59:37
94.191.20.173	attackbots	Invalid user kernoops from 94.191.20.173 port 59500	2020-03-24 04:50:10
171.246.53.128	attackspam	Unauthorised access (Mar 23) SRC=171.246.53.128 LEN=44 TTL=46 ID=32583 TCP DPT=23 WINDOW=8038 SYN	2020-03-24 05:06:24
31.13.115.24	attackspambots	[Mon Mar 23 22:43:24.371524 2020] [:error] [pid 25293:tid 140519810295552] [client 31.13.115.24:47588] [client 31.13.115.24] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/favicon-32-32.png"] [unique_id "XnjZHLdSec56q6n39A6CEQAAAAE"] ...	2020-03-24 05:19:23
198.108.66.147	attackbotsspam	US_Merit Censys,_<177>1584978240 [1:2402000:5490] ET DROP Dshield Block Listed Source group 1 [Classification: Misc Attack] [Priority: 2]: {TCP} 198.108.66.147:48030	2020-03-24 04:50:37
2a00:1098:84::4	attack	Mar 23 21:01:44 l03 sshd[2343]: Invalid user liwenxuan from 2a00:1098:84::4 port 39638 ...	2020-03-24 05:18:40
133.130.98.177	attackbotsspam	2020-03-23T17:43:59.365794vps751288.ovh.net sshd\[26036\]: Invalid user cpaneleximfilter from 133.130.98.177 port 55458 2020-03-23T17:43:59.374004vps751288.ovh.net sshd\[26036\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v133-130-98-177.a027.g.tyo1.static.cnode.io 2020-03-23T17:44:01.765127vps751288.ovh.net sshd\[26036\]: Failed password for invalid user cpaneleximfilter from 133.130.98.177 port 55458 ssh2 2020-03-23T17:46:58.563305vps751288.ovh.net sshd\[26044\]: Invalid user lx from 133.130.98.177 port 51318 2020-03-23T17:46:58.573387vps751288.ovh.net sshd\[26044\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v133-130-98-177.a027.g.tyo1.static.cnode.io	2020-03-24 05:24:48
190.52.166.83	attack	Mar 23 20:52:18 mail sshd[4667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.52.166.83 Mar 23 20:52:20 mail sshd[4667]: Failed password for invalid user qz from 190.52.166.83 port 33462 ssh2 ...	2020-03-24 04:59:06
158.69.158.24	attackspambots	Mar 23 22:03:27 h1745522 sshd[29993]: Invalid user avalon from 158.69.158.24 port 54424 Mar 23 22:03:27 h1745522 sshd[29993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.158.24 Mar 23 22:03:27 h1745522 sshd[29993]: Invalid user avalon from 158.69.158.24 port 54424 Mar 23 22:03:27 h1745522 sshd[29993]: Failed password for invalid user avalon from 158.69.158.24 port 54424 ssh2 Mar 23 22:06:41 h1745522 sshd[30111]: Invalid user windisch from 158.69.158.24 port 49320 Mar 23 22:06:41 h1745522 sshd[30111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.158.24 Mar 23 22:06:41 h1745522 sshd[30111]: Invalid user windisch from 158.69.158.24 port 49320 Mar 23 22:06:44 h1745522 sshd[30111]: Failed password for invalid user windisch from 158.69.158.24 port 49320 ssh2 Mar 23 22:10:07 h1745522 sshd[30312]: Invalid user ye from 158.69.158.24 port 45002 ...	2020-03-24 05:12:36
103.21.53.11	attack	Mar 23 18:59:33 OPSO sshd\[26209\]: Invalid user american from 103.21.53.11 port 35264 Mar 23 18:59:33 OPSO sshd\[26209\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.53.11 Mar 23 18:59:35 OPSO sshd\[26209\]: Failed password for invalid user american from 103.21.53.11 port 35264 ssh2 Mar 23 19:01:25 OPSO sshd\[26661\]: Invalid user starwars from 103.21.53.11 port 34764 Mar 23 19:01:25 OPSO sshd\[26661\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.53.11	2020-03-24 05:12:10

Recently Reported IPs

128.199.125.243	128.199.151.12	128.199.202.174	60.162.131.227
114.43.0.8	128.199.3.197	128.199.35.122	128.199.35.242
128.199.39.96	128.199.4.242	128.199.4.78	128.199.41.250
128.199.43.138	128.199.43.21	128.199.44.105	128.199.45.6
128.199.47.114	128.199.5.135	128.199.5.21	128.199.5.221