99.74.142.43 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: AT&T Corp.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 99.74.142.43 to port 81 [J]	2020-01-06 02:55:31

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 99.74.142.43
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62882
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;99.74.142.43.			IN	A

;; AUTHORITY SECTION:
.			548	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010501 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 06 02:55:29 CST 2020
;; MSG SIZE  rcvd: 116

Host info

43.142.74.99.in-addr.arpa domain name pointer 99-74-142-43.lightspeed.chtnsc.sbcglobal.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
43.142.74.99.in-addr.arpa	name = 99-74-142-43.lightspeed.chtnsc.sbcglobal.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.136.159.101	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-09-2019 04:45:28.	2019-09-26 17:41:06
118.69.78.29	attackspambots	Unauthorised access (Sep 26) SRC=118.69.78.29 LEN=40 TTL=46 ID=42430 TCP DPT=8080 WINDOW=60442 SYN Unauthorised access (Sep 26) SRC=118.69.78.29 LEN=40 TTL=46 ID=57715 TCP DPT=8080 WINDOW=41472 SYN Unauthorised access (Sep 26) SRC=118.69.78.29 LEN=40 TTL=47 ID=50290 TCP DPT=8080 WINDOW=54881 SYN Unauthorised access (Sep 26) SRC=118.69.78.29 LEN=40 TTL=46 ID=2750 TCP DPT=8080 WINDOW=41472 SYN Unauthorised access (Sep 26) SRC=118.69.78.29 LEN=40 TTL=47 ID=61037 TCP DPT=8080 WINDOW=54881 SYN Unauthorised access (Sep 25) SRC=118.69.78.29 LEN=40 TTL=49 ID=20093 TCP DPT=8080 WINDOW=60442 SYN Unauthorised access (Sep 25) SRC=118.69.78.29 LEN=40 TTL=49 ID=2461 TCP DPT=8080 WINDOW=60442 SYN Unauthorised access (Sep 25) SRC=118.69.78.29 LEN=40 TTL=46 ID=29659 TCP DPT=8080 WINDOW=41472 SYN Unauthorised access (Sep 24) SRC=118.69.78.29 LEN=40 TTL=46 ID=27295 TCP DPT=8080 WINDOW=60442 SYN Unauthorised access (Sep 23) SRC=118.69.78.29 LEN=40 TTL=47 ID=60848 TCP DPT=8080 WINDOW=23703 SYN	2019-09-26 17:36:21
213.77.247.173	attack	Brute force attempt	2019-09-26 16:55:38
112.35.88.241	attackbots	Sep 26 05:38:33 mail sshd\[24170\]: Invalid user factorio from 112.35.88.241 port 50182 Sep 26 05:38:33 mail sshd\[24170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.88.241 Sep 26 05:38:36 mail sshd\[24170\]: Failed password for invalid user factorio from 112.35.88.241 port 50182 ssh2 Sep 26 05:43:15 mail sshd\[24676\]: Invalid user polkituser from 112.35.88.241 port 60818 Sep 26 05:43:15 mail sshd\[24676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.88.241	2019-09-26 16:56:36
79.188.250.213	attackbots	Sep 24 16:10:35 localhost kernel: [3093653.499564] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=79.188.250.213 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=53 ID=19316 PROTO=TCP SPT=49699 DPT=52869 WINDOW=29346 RES=0x00 SYN URGP=0 Sep 24 16:10:35 localhost kernel: [3093653.499595] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=79.188.250.213 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=53 ID=19316 PROTO=TCP SPT=49699 DPT=52869 SEQ=758669438 ACK=0 WINDOW=29346 RES=0x00 SYN URGP=0 OPT (020405B4) Sep 25 23:45:49 localhost kernel: [3207367.775963] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=79.188.250.213 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=53 ID=17328 PROTO=TCP SPT=36443 DPT=52869 WINDOW=56579 RES=0x00 SYN URGP=0 Sep 25 23:45:49 localhost kernel: [3207367.775989] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=79.188.250.213 DST=[mungedIP2]	2019-09-26 17:22:37
54.39.193.26	attack	Sep 26 06:50:10 dedicated sshd[28542]: Invalid user he123 from 54.39.193.26 port 5305	2019-09-26 17:12:51
175.139.105.174	attackbotsspam	Sep 25 23:45:32 debian sshd\[2981\]: Invalid user mysql from 175.139.105.174 port 38013 Sep 25 23:45:32 debian sshd\[2981\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.105.174 Sep 25 23:45:34 debian sshd\[2981\]: Failed password for invalid user mysql from 175.139.105.174 port 38013 ssh2 ...	2019-09-26 17:29:52
98.24.65.198	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 26-09-2019 04:45:35.	2019-09-26 17:29:30
77.82.206.218	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 26-09-2019 04:45:34.	2019-09-26 17:31:44
52.186.168.121	attack	Sep 26 07:28:22 eventyay sshd[1885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.186.168.121 Sep 26 07:28:24 eventyay sshd[1885]: Failed password for invalid user ibm from 52.186.168.121 port 60932 ssh2 Sep 26 07:32:40 eventyay sshd[1940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.186.168.121 ...	2019-09-26 17:15:04
81.171.58.182	attack	\[2019-09-26 09:30:40\] NOTICE\[14660\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '81.171.58.182:64769' \(callid: 1832784954-1306307298-904183106\) - Failed to authenticate \[2019-09-26 09:30:40\] SECURITY\[1715\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-09-26T09:30:40.589+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="\",SessionID="1832784954-1306307298-904183106",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/81.171.58.182/64769",Challenge="1569483040/bdf4b8ac73d03971941b75372ea2e590",Response="f1ef8db92c3dae3a26db31ca2df0a096",ExpectedResponse="" \[2019-09-26 09:30:40\] NOTICE\[25634\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '81.171.58.182:64769' \(callid: 1832784954-1306307298-904183106\) - Failed to authenticate \[2019-09-26 09:30:40\] SECURITY\[1715\] res_security_log.c: SecurityEvent="ChallengeResponseF	2019-09-26 16:57:07
122.138.133.162	attack	Unauthorised access (Sep 26) SRC=122.138.133.162 LEN=40 TTL=49 ID=12409 TCP DPT=8080 WINDOW=6837 SYN	2019-09-26 17:17:48
113.224.219.143	attack	Unauthorised access (Sep 26) SRC=113.224.219.143 LEN=40 TTL=49 ID=60598 TCP DPT=8080 WINDOW=23072 SYN	2019-09-26 17:01:50
45.82.153.34	attackspam	09/26/2019-11:00:58.701790 45.82.153.34 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 42	2019-09-26 17:06:15
43.226.39.221	attackspam	Sep 26 04:29:25 game-panel sshd[1185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.39.221 Sep 26 04:29:27 game-panel sshd[1185]: Failed password for invalid user ee from 43.226.39.221 port 36654 ssh2 Sep 26 04:32:46 game-panel sshd[1266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.39.221	2019-09-26 17:21:08

Recently Reported IPs

77.42.85.193	77.42.74.114	67.165.168.54	111.90.150.4
59.24.12.205	59.13.78.186	50.237.128.182	50.199.160.137
24.198.49.230	50.81.26.231	46.201.233.6	239.161.206.48
46.27.171.179	30.207.250.155	254.116.213.167	41.214.152.106
28.221.158.172	25.196.251.153	36.90.90.155	35.239.59.252