159.192.99.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: CAT Telecom Public Company Ltd

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	SSH brute force	2020-04-15 07:59:45
attack	Mar 23 20:40:30 work-partkepr sshd\[16394\]: Invalid user readonly from 159.192.99.3 port 50530 Mar 23 20:40:30 work-partkepr sshd\[16394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.99.3 ...	2020-03-24 05:40:44
attackspambots	Mar 6 17:27:15 server sshd\[31967\]: Invalid user test from 159.192.99.3 Mar 6 17:27:15 server sshd\[31967\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.99.3 Mar 6 17:27:17 server sshd\[31967\]: Failed password for invalid user test from 159.192.99.3 port 49022 ssh2 Mar 6 18:13:36 server sshd\[8197\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.99.3 user=root Mar 6 18:13:39 server sshd\[8197\]: Failed password for root from 159.192.99.3 port 55934 ssh2 ...	2020-03-07 00:00:51
attack	Jan 23 16:50:26 hcbbdb sshd\[5140\]: Invalid user rafaela from 159.192.99.3 Jan 23 16:50:26 hcbbdb sshd\[5140\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.99.3 Jan 23 16:50:29 hcbbdb sshd\[5140\]: Failed password for invalid user rafaela from 159.192.99.3 port 41928 ssh2 Jan 23 16:58:54 hcbbdb sshd\[6264\]: Invalid user upload from 159.192.99.3 Jan 23 16:58:54 hcbbdb sshd\[6264\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.99.3	2020-01-24 01:37:21
attackspam	Automatic report - Banned IP Access	2020-01-08 05:29:30
attack	Nov 27 06:25:11 l02a sshd[19071]: Invalid user backup from 159.192.99.3 Nov 27 06:25:11 l02a sshd[19071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.99.3 Nov 27 06:25:11 l02a sshd[19071]: Invalid user backup from 159.192.99.3 Nov 27 06:25:13 l02a sshd[19071]: Failed password for invalid user backup from 159.192.99.3 port 37788 ssh2	2019-11-27 18:48:34
attack	Sep 28 14:09:30 auw2 sshd\[17968\]: Invalid user testuser from 159.192.99.3 Sep 28 14:09:30 auw2 sshd\[17968\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.99.3 Sep 28 14:09:32 auw2 sshd\[17968\]: Failed password for invalid user testuser from 159.192.99.3 port 60918 ssh2 Sep 28 14:14:16 auw2 sshd\[18404\]: Invalid user katrina from 159.192.99.3 Sep 28 14:14:16 auw2 sshd\[18404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.99.3	2019-09-29 08:46:32
attack	Sep 11 03:33:27 thevastnessof sshd[24540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.99.3 ...	2019-09-11 11:56:46
attackspambots	$f2bV_matches	2019-09-03 14:19:54
attack	vps1:pam-generic	2019-08-25 03:19:07
attackbotsspam	Aug 22 12:56:23 localhost sshd\[457\]: Invalid user daniel from 159.192.99.3 port 37530 Aug 22 12:56:23 localhost sshd\[457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.99.3 Aug 22 12:56:25 localhost sshd\[457\]: Failed password for invalid user daniel from 159.192.99.3 port 37530 ssh2	2019-08-22 19:11:53

Comments on same subnet:

IP	Type	Details	Datetime
159.192.99.105	attackbotsspam	1594180026 - 07/08/2020 05:47:06 Host: 159.192.99.105/159.192.99.105 Port: 445 TCP Blocked	2020-07-08 11:57:48
159.192.99.242	attackspambots	20/6/2@06:08:03: FAIL: Alarm-Network address from=159.192.99.242 20/6/2@06:08:03: FAIL: Alarm-Network address from=159.192.99.242 ...	2020-06-02 18:59:07
159.192.99.105	attackspambots	Unauthorized connection attempt from IP address 159.192.99.105 on Port 445(SMB)	2020-02-27 17:05:15
159.192.99.149	attackbots	2019-07-18T06:54:40.295222stt-1.[munged] kernel: [7478899.559821] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:a8:41:08:00 SRC=159.192.99.149 DST=[mungedIP1] LEN=52 TOS=0x00 PREC=0x00 TTL=46 ID=8760 DF PROTO=TCP SPT=62271 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 2019-07-18T06:54:43.355428stt-1.[munged] kernel: [7478902.620009] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:a8:41:08:00 SRC=159.192.99.149 DST=[mungedIP1] LEN=52 TOS=0x00 PREC=0x00 TTL=46 ID=9771 DF PROTO=TCP SPT=62271 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 2019-07-18T06:54:49.354641stt-1.[munged] kernel: [7478908.619209] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:a8:41:08:00 SRC=159.192.99.149 DST=[mungedIP1] LEN=48 TOS=0x00 PREC=0x00 TTL=46 ID=12327 DF PROTO=TCP SPT=62271 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0	2019-07-18 23:07:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.192.99.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6194
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.192.99.3.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 22 19:11:47 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 3.99.192.159.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 3.99.192.159.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
64.227.25.170	attack	Apr 3 16:32:58 eventyay sshd[14776]: Failed password for root from 64.227.25.170 port 43770 ssh2 Apr 3 16:34:51 eventyay sshd[14831]: Failed password for root from 64.227.25.170 port 45604 ssh2 ...	2020-04-04 01:37:48
118.126.105.120	attackbotsspam	Apr 3 16:58:15 ns382633 sshd\[27535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.105.120 user=root Apr 3 16:58:17 ns382633 sshd\[27535\]: Failed password for root from 118.126.105.120 port 45182 ssh2 Apr 3 17:06:47 ns382633 sshd\[29227\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.105.120 user=root Apr 3 17:06:49 ns382633 sshd\[29227\]: Failed password for root from 118.126.105.120 port 37946 ssh2 Apr 3 17:09:49 ns382633 sshd\[29567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.105.120 user=root	2020-04-04 01:28:27
131.221.247.105	attackbotsspam	Invalid user el from 131.221.247.105 port 46234	2020-04-04 01:25:20
49.145.204.143	attack	Invalid user system from 49.145.204.143 port 46020	2020-04-04 01:42:33
14.63.168.78	attackbots	Apr 3 17:49:20 sshd\[18352\]: User root from 14.63.168.78 not allowed because not listed in AllowUsersApr 3 17:49:22 sshd\[18352\]: Failed password for invalid user root from 14.63.168.78 port 57516 ssh2 ...	2020-04-04 01:45:30
108.160.199.219	attack	Invalid user 22 from 108.160.199.219 port 53436	2020-04-04 01:30:08
185.223.28.243	attack	Invalid user test from 185.223.28.243 port 34324	2020-04-04 01:12:23
220.130.178.36	attackbots	Apr 3 17:37:26 OPSO sshd\[7470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.178.36 user=root Apr 3 17:37:29 OPSO sshd\[7470\]: Failed password for root from 220.130.178.36 port 54250 ssh2 Apr 3 17:41:31 OPSO sshd\[8167\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.178.36 user=root Apr 3 17:41:33 OPSO sshd\[8167\]: Failed password for root from 220.130.178.36 port 58502 ssh2 Apr 3 17:45:30 OPSO sshd\[8875\]: Invalid user xguest from 220.130.178.36 port 34544 Apr 3 17:45:30 OPSO sshd\[8875\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.178.36	2020-04-04 01:03:16
45.230.169.14	attackspam	Invalid user test from 45.230.169.14 port 60550	2020-04-04 01:43:00
192.241.175.250	attack	Invalid user tea from 192.241.175.250 port 56709	2020-04-04 01:49:01
198.100.146.98	attackspambots	Apr 3 18:47:31 pve sshd[25258]: Failed password for root from 198.100.146.98 port 33572 ssh2 Apr 3 18:51:30 pve sshd[25863]: Failed password for root from 198.100.146.98 port 45214 ssh2	2020-04-04 01:08:08
122.51.47.246	attackspam	Apr 3 11:18:51 vps46666688 sshd[11017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.47.246 Apr 3 11:18:52 vps46666688 sshd[11017]: Failed password for invalid user gk from 122.51.47.246 port 52234 ssh2 ...	2020-04-04 01:27:19
106.12.176.113	attack	Apr 3 16:15:02 lukav-desktop sshd\[25524\]: Invalid user ubuntu from 106.12.176.113 Apr 3 16:15:02 lukav-desktop sshd\[25524\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.176.113 Apr 3 16:15:04 lukav-desktop sshd\[25524\]: Failed password for invalid user ubuntu from 106.12.176.113 port 19804 ssh2 Apr 3 16:16:29 lukav-desktop sshd\[25582\]: Invalid user gufeifei from 106.12.176.113 Apr 3 16:16:29 lukav-desktop sshd\[25582\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.176.113	2020-04-04 01:33:38
3.14.81.36	attackspam	Invalid user wanz from 3.14.81.36 port 36260	2020-04-04 01:46:16
159.65.41.159	attackbots	k+ssh-bruteforce	2020-04-04 01:19:51

Recently Reported IPs

150.109.63.147	51.77.200.62	156.127.225.249	94.167.123.168
47.124.76.110	169.128.202.36	20.128.194.157	5.224.220.251
55.224.13.8	43.140.244.146	253.176.5.196	207.192.231.190
163.53.20.111	143.78.122.83	171.231.244.180	239.218.197.227
105.95.46.211	189.94.146.158	83.178.172.159	158.162.122.96