128.199.99.42 - IPInfo

Basic Info

City: Singapore

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
128.199.99.163	attack	128.199.99.163 (SG/Singapore/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 13 12:48:15 server5 sshd[24412]: Failed password for root from 128.199.99.163 port 43600 ssh2 Oct 13 12:51:42 server5 sshd[26094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.83.83.109 user=root Oct 13 12:51:43 server5 sshd[26094]: Failed password for root from 117.83.83.109 port 52649 ssh2 Oct 13 12:48:12 server5 sshd[24412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.163 user=root Oct 13 12:53:18 server5 sshd[26635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.81.137.93 user=root Oct 13 12:52:32 server5 sshd[26263]: Failed password for root from 217.182.192.217 port 44804 ssh2 IP Addresses Blocked:	2020-10-14 04:54:31
128.199.99.163	attackbotsspam	Oct 13 11:57:50 buvik sshd[2660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.163 Oct 13 11:57:52 buvik sshd[2660]: Failed password for invalid user administrator from 128.199.99.163 port 45484 ssh2 Oct 13 12:01:54 buvik sshd[3705]: Invalid user angela from 128.199.99.163 ...	2020-10-13 20:25:28
128.199.99.163	attackspam	[f2b] sshd bruteforce, retries: 1	2020-10-13 02:21:48
128.199.99.163	attackspam	2020-10-12T09:25:13.340152vps1033 sshd[27428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.163 2020-10-12T09:25:13.333427vps1033 sshd[27428]: Invalid user yvette from 128.199.99.163 port 49436 2020-10-12T09:25:15.312037vps1033 sshd[27428]: Failed password for invalid user yvette from 128.199.99.163 port 49436 ssh2 2020-10-12T09:29:12.134942vps1033 sshd[3253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.163 user=root 2020-10-12T09:29:14.252085vps1033 sshd[3253]: Failed password for root from 128.199.99.163 port 54158 ssh2 ...	2020-10-12 17:47:17
128.199.99.204	attackspam	2 SSH login attempts.	2020-10-04 06:43:13
128.199.99.163	attackbots	Oct 3 19:33:12 con01 sshd[424559]: Failed password for invalid user teste from 128.199.99.163 port 34298 ssh2 Oct 3 19:37:01 con01 sshd[433245]: Invalid user test from 128.199.99.163 port 34050 Oct 3 19:37:01 con01 sshd[433245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.163 Oct 3 19:37:01 con01 sshd[433245]: Invalid user test from 128.199.99.163 port 34050 Oct 3 19:37:03 con01 sshd[433245]: Failed password for invalid user test from 128.199.99.163 port 34050 ssh2 ...	2020-10-04 02:50:49
128.199.99.204	attack	2020-10-03T13:32:46.970882abusebot-7.cloudsearch.cf sshd[6721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.204 user=root 2020-10-03T13:32:49.066237abusebot-7.cloudsearch.cf sshd[6721]: Failed password for root from 128.199.99.204 port 52915 ssh2 2020-10-03T13:37:59.524933abusebot-7.cloudsearch.cf sshd[6725]: Invalid user joe from 128.199.99.204 port 48688 2020-10-03T13:37:59.536259abusebot-7.cloudsearch.cf sshd[6725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.204 2020-10-03T13:37:59.524933abusebot-7.cloudsearch.cf sshd[6725]: Invalid user joe from 128.199.99.204 port 48688 2020-10-03T13:38:01.265500abusebot-7.cloudsearch.cf sshd[6725]: Failed password for invalid user joe from 128.199.99.204 port 48688 ssh2 2020-10-03T13:39:18.924279abusebot-7.cloudsearch.cf sshd[6727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.204 u ...	2020-10-03 22:51:03
128.199.99.163	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-03T05:55:41Z and 2020-10-03T06:03:13Z	2020-10-03 18:40:54
128.199.99.204	attackbots	2020-10-03T06:25:17.984726abusebot-4.cloudsearch.cf sshd[11829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.204 user=root 2020-10-03T06:25:20.249422abusebot-4.cloudsearch.cf sshd[11829]: Failed password for root from 128.199.99.204 port 42553 ssh2 2020-10-03T06:29:21.483264abusebot-4.cloudsearch.cf sshd[12039]: Invalid user user from 128.199.99.204 port 45698 2020-10-03T06:29:21.491935abusebot-4.cloudsearch.cf sshd[12039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.204 2020-10-03T06:29:21.483264abusebot-4.cloudsearch.cf sshd[12039]: Invalid user user from 128.199.99.204 port 45698 2020-10-03T06:29:23.254479abusebot-4.cloudsearch.cf sshd[12039]: Failed password for invalid user user from 128.199.99.204 port 45698 ssh2 2020-10-03T06:33:22.684966abusebot-4.cloudsearch.cf sshd[12050]: Invalid user user from 128.199.99.204 port 48837 ...	2020-10-03 14:34:29
128.199.99.204	attackspam	Invalid user video from 128.199.99.204 port 39880	2020-10-02 05:13:39
128.199.99.204	attack	Oct 1 05:28:23 george sshd[17521]: Failed password for invalid user elasticsearch from 128.199.99.204 port 52778 ssh2 Oct 1 05:32:17 george sshd[17610]: Invalid user lfs from 128.199.99.204 port 56540 Oct 1 05:32:17 george sshd[17610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.204 Oct 1 05:32:20 george sshd[17610]: Failed password for invalid user lfs from 128.199.99.204 port 56540 ssh2 Oct 1 05:36:24 george sshd[17654]: Invalid user prueba2 from 128.199.99.204 port 60297 ...	2020-10-01 21:32:06
128.199.99.204	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-01 13:47:13
128.199.99.204	attackbots	Sep 28 20:32:58 vpn01 sshd[12459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.204 Sep 28 20:33:00 vpn01 sshd[12459]: Failed password for invalid user oracle from 128.199.99.204 port 51353 ssh2 ...	2020-09-29 02:35:35
128.199.99.204	attackspam	Sep 28 12:35:17 cho sshd[3830977]: Invalid user anne from 128.199.99.204 port 50065 Sep 28 12:35:17 cho sshd[3830977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.99.204 Sep 28 12:35:17 cho sshd[3830977]: Invalid user anne from 128.199.99.204 port 50065 Sep 28 12:35:20 cho sshd[3830977]: Failed password for invalid user anne from 128.199.99.204 port 50065 ssh2 Sep 28 12:39:03 cho sshd[3831141]: Invalid user git from 128.199.99.204 port 49953 ...	2020-09-28 18:42:20
128.199.99.204	attackspam	2020-09-09 17:47:24.838121-0500 localhost sshd[28856]: Failed password for root from 128.199.99.204 port 60458 ssh2	2020-09-10 16:31:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.199.99.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29362
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;128.199.99.42.			IN	A

;; AUTHORITY SECTION:
.			297	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024050100 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 01 16:43:11 CST 2024
;; MSG SIZE  rcvd: 106

Host info

Host 42.99.199.128.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.99.199.128.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.114.26	attackbotsspam	Oct 17 21:53:59 vps01 sshd[28281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.26 Oct 17 21:54:02 vps01 sshd[28281]: Failed password for invalid user videolan from 106.12.114.26 port 45960 ssh2	2019-10-18 03:56:50
185.53.88.127	attack	Oct 17 21:53:43 mail kernel: [1055265.648918] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=185.53.88.127 DST=77.73.69.240 LEN=418 TOS=0x00 PREC=0x00 TTL=55 ID=12399 DF PROTO=UDP SPT=22153 DPT=5060 LEN=398 Oct 17 21:53:43 mail kernel: [1055265.648997] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=185.53.88.127 DST=77.73.69.240 LEN=418 TOS=0x00 PREC=0x00 TTL=55 ID=12401 DF PROTO=UDP SPT=22153 DPT=5062 LEN=398 Oct 17 21:53:43 mail kernel: [1055265.649016] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=185.53.88.127 DST=77.73.69.240 LEN=419 TOS=0x00 PREC=0x00 TTL=55 ID=12400 DF PROTO=UDP SPT=22153 DPT=5061 LEN=399 Oct 17 21:53:43 mail kernel: [1055265.649032] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=185.53.88.127 DST=77.73.69.240 LEN=418 TOS=0x00 PREC=0x00 TTL=55 ID=12402 DF PROTO=UDP SPT=22153 DPT=5063 LEN=398 Oct 17 21:53:43 mail kernel: [1055265.649251] [UFW BLOCK] IN=eth0 OUT= MAC=00:16	2019-10-18 04:11:19
188.166.171.252	attackspambots	2019-10-17T19:53:52.022174abusebot-6.cloudsearch.cf sshd\[32502\]: Invalid user user from 188.166.171.252 port 42036	2019-10-18 04:06:12
201.73.144.140	attackbots	Mar 15 14:43:32 odroid64 sshd\[6815\]: Invalid user vtdc from 201.73.144.140 Mar 15 14:43:32 odroid64 sshd\[6815\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.73.144.140 Mar 15 14:43:35 odroid64 sshd\[6815\]: Failed password for invalid user vtdc from 201.73.144.140 port 53217 ssh2 ...	2019-10-18 03:58:32
205.209.159.201	attack	10/17/2019-16:18:57.184351 205.209.159.201 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-18 04:21:46
106.12.119.148	attackbots	Oct 17 21:37:46 icinga sshd[6538]: Failed password for root from 106.12.119.148 port 42402 ssh2 Oct 17 21:53:55 icinga sshd[17412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.148 Oct 17 21:53:56 icinga sshd[17412]: Failed password for invalid user nnn from 106.12.119.148 port 41082 ssh2 ...	2019-10-18 04:00:46
159.65.151.216	attackbots	Oct 17 16:49:14 firewall sshd[9598]: Invalid user lexmark from 159.65.151.216 Oct 17 16:49:17 firewall sshd[9598]: Failed password for invalid user lexmark from 159.65.151.216 port 37770 ssh2 Oct 17 16:53:46 firewall sshd[9738]: Invalid user Rouge from 159.65.151.216 ...	2019-10-18 04:07:52
79.137.87.44	attackbots	2019-10-17T15:00:16.595699shield sshd\[8004\]: Invalid user twins from 79.137.87.44 port 52339 2019-10-17T15:00:16.599801shield sshd\[8004\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=44.ip-79-137-87.eu 2019-10-17T15:00:18.355182shield sshd\[8004\]: Failed password for invalid user twins from 79.137.87.44 port 52339 ssh2 2019-10-17T15:04:45.836555shield sshd\[8591\]: Invalid user cme from 79.137.87.44 port 44549 2019-10-17T15:04:45.840812shield sshd\[8591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=44.ip-79-137-87.eu	2019-10-18 03:51:18
67.229.145.226	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-18 03:49:35
54.39.98.253	attack	Oct 17 09:39:37 friendsofhawaii sshd\[16335\]: Invalid user worker123 from 54.39.98.253 Oct 17 09:39:37 friendsofhawaii sshd\[16335\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=253.ip-54-39-98.net Oct 17 09:39:39 friendsofhawaii sshd\[16335\]: Failed password for invalid user worker123 from 54.39.98.253 port 48810 ssh2 Oct 17 09:44:11 friendsofhawaii sshd\[16693\]: Invalid user qwe!@\#asd!@\#zxc from 54.39.98.253 Oct 17 09:44:11 friendsofhawaii sshd\[16693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=253.ip-54-39-98.net	2019-10-18 03:56:00
192.42.116.17	attackbots	Oct 17 21:09:59 rotator sshd\[2078\]: Failed password for root from 192.42.116.17 port 60102 ssh2Oct 17 21:10:01 rotator sshd\[2078\]: Failed password for root from 192.42.116.17 port 60102 ssh2Oct 17 21:10:04 rotator sshd\[2078\]: Failed password for root from 192.42.116.17 port 60102 ssh2Oct 17 21:10:06 rotator sshd\[2078\]: Failed password for root from 192.42.116.17 port 60102 ssh2Oct 17 21:10:10 rotator sshd\[2078\]: Failed password for root from 192.42.116.17 port 60102 ssh2Oct 17 21:10:12 rotator sshd\[2078\]: Failed password for root from 192.42.116.17 port 60102 ssh2 ...	2019-10-18 03:46:19
222.186.173.142	attack	SSH brutforce	2019-10-18 03:45:47
160.153.147.155	attack	notenfalter.de 160.153.147.155 \[17/Oct/2019:17:41:57 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4335 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/60.0.3112.113 Safari/537.36" NOTENFALTER.DE 160.153.147.155 \[17/Oct/2019:17:41:57 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4335 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/60.0.3112.113 Safari/537.36"	2019-10-18 03:55:42
118.25.150.90	attackbotsspam	Oct 14 18:21:02 euve59663 sshd[7756]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D118.= 25.150.90 user=3Duucp Oct 14 18:21:04 euve59663 sshd[7756]: Failed password for uucp from 118= .25.150.90 port 43493 ssh2 Oct 14 18:21:04 euve59663 sshd[7756]: Received disconnect from 118.25.1= 50.90: 11: Bye Bye [preauth] Oct 14 18:33:25 euve59663 sshd[2649]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D118.= 25.150.90 user=3Dr.r Oct 14 18:33:27 euve59663 sshd[2649]: Failed password for r.r from 118= .25.150.90 port 55810 ssh2 Oct 14 18:33:28 euve59663 sshd[2649]: Received disconnect from 118.25.1= 50.90: 11: Bye Bye [preauth] Oct 14 18:38:00 euve59663 sshd[2692]: Invalid user ftp_boot from 118.25= .150.90 Oct 14 18:38:00 euve59663 sshd[2692]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D118.= 25.150.90=20 Oct ........ -------------------------------	2019-10-18 03:43:16
189.213.93.108	attackspambots	Automatic report - Port Scan	2019-10-18 03:44:43

Recently Reported IPs

23.225.221.67	23.225.183.174	23.225.183.8	183.171.165.182
23.225.199.163	128.1.97.145	23.225.221.242	60.33.54.128
49.234.123.95	199.26.100.84	111.63.253.22	111.63.253.159
23.225.199.253	23.225.221.169	56.18.11.252	194.45.197.17
23.225.199.109	23.225.221.103	203.195.121.94	203.195.121.30