158.37.99.199 - IPInfo

Basic Info

City: Bergen

Region: Vestland

Country: Norway

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.37.99.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3837
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;158.37.99.199.			IN	A

;; AUTHORITY SECTION:
.			361	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080901 1800 900 604800 86400

;; Query time: 81 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 10 08:02:57 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 199.99.37.158.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 199.99.37.158.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.186.4.114	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-30 18:49:23
186.116.140.180	attackspambots	Automatic report - Port Scan Attack	2020-09-30 18:48:37
91.231.247.64	attack	(smtpauth) Failed SMTP AUTH login from 91.231.247.64 (PL/Poland/91-231-247-64.tonetic.pl): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-30 00:02:57 plain authenticator failed for ([91.231.247.64]) [91.231.247.64]: 535 Incorrect authentication data (set_id=info)	2020-09-30 18:59:26
156.221.15.3	attack	DATE:2020-09-29 22:31:02, IP:156.221.15.3, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-30 18:49:51
202.100.185.138	attack	Unauthorised access (Sep 29) SRC=202.100.185.138 LEN=44 TTL=239 ID=869 TCP DPT=1433 WINDOW=1024 SYN	2020-09-30 18:23:33
123.233.116.36	attackspam	Port Scan ...	2020-09-30 18:58:18
20.191.88.144	attackspam	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-09-30 18:50:40
189.240.117.236	attack	Sep 30 07:40:16 abendstille sshd\[20400\]: Invalid user admin from 189.240.117.236 Sep 30 07:40:16 abendstille sshd\[20400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.117.236 Sep 30 07:40:18 abendstille sshd\[20400\]: Failed password for invalid user admin from 189.240.117.236 port 56488 ssh2 Sep 30 07:44:59 abendstille sshd\[24661\]: Invalid user lisa from 189.240.117.236 Sep 30 07:44:59 abendstille sshd\[24661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.117.236 ...	2020-09-30 18:41:55
117.248.170.28	attackspambots	Port probing on unauthorized port 23	2020-09-30 18:50:10
3.238.64.250	attack	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-30 18:56:55
73.60.226.40	attack	Sep 30 06:33:19 web1 sshd[1399]: Invalid user admin from 73.60.226.40 port 51855 Sep 30 06:33:19 web1 sshd[1399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.60.226.40 Sep 30 06:33:19 web1 sshd[1399]: Invalid user admin from 73.60.226.40 port 51855 Sep 30 06:33:21 web1 sshd[1399]: Failed password for invalid user admin from 73.60.226.40 port 51855 ssh2 Sep 30 06:33:23 web1 sshd[1426]: Invalid user admin from 73.60.226.40 port 51983 Sep 30 06:33:23 web1 sshd[1426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.60.226.40 Sep 30 06:33:23 web1 sshd[1426]: Invalid user admin from 73.60.226.40 port 51983 Sep 30 06:33:26 web1 sshd[1426]: Failed password for invalid user admin from 73.60.226.40 port 51983 ssh2 Sep 30 06:33:28 web1 sshd[1454]: Invalid user admin from 73.60.226.40 port 52120 ...	2020-09-30 18:47:49
210.245.36.114	attack	Brute forcing RDP port 3389	2020-09-30 18:45:51
114.204.218.154	attack	Brute force attempt	2020-09-30 18:56:17
192.3.41.181	attackspam	Sep 29 17:45:37 our-server-hostname sshd[12648]: reveeclipse mapping checking getaddrinfo for 192-3-41-181-host.colocrossing.com [192.3.41.181] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 29 17:45:42 our-server-hostname sshd[12648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.41.181 user=r.r Sep 29 17:45:42 our-server-hostname sshd[12648]: Failed password for r.r from 192.3.41.181 port 47234 ssh2 Sep 29 17:50:51 our-server-hostname sshd[13381]: reveeclipse mapping checking getaddrinfo for 192-3-41-181-host.colocrossing.com [192.3.41.181] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 29 17:50:51 our-server-hostname sshd[13381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.41.181 user=r.r Sep 29 17:50:53 our-server-hostname sshd[13381]: Failed password for r.r from 192.3.41.181 port 44558 ssh2 Sep 29 17:52:25 our-server-hostname sshd[13580]: reveeclipse mapping checking getaddrinfo ........ -------------------------------	2020-09-30 18:24:21
151.254.156.221	attackspam	1601411608 - 09/29/2020 22:33:28 Host: 151.254.156.221/151.254.156.221 Port: 445 TCP Blocked	2020-09-30 18:46:22

Recently Reported IPs

165.22.123.153	181.143.115.191	96.84.140.234	172.42.199.200
173.175.60.135	150.130.119.191	110.132.187.87	67.4.92.251
190.208.19.211	137.117.125.76	177.91.188.12	121.182.135.207
60.29.239.234	78.129.194.82	167.71.236.116	220.48.42.218
184.172.36.101	190.204.56.41	1.5.74.120	94.211.111.248