167.99.149.55 - IPInfo

Basic Info

City: North Bergen

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.99.149.11	attack	Automatic report generated by Wazuh	2020-10-10 03:56:19
167.99.149.11	attack	can 167.99.149.11 [09/Oct/2020:18:09:47 "-" "POST /wp-login.php 200 5780 167.99.149.11 [09/Oct/2020:18:42:33 "-" "GET /wp-login.php 200 9378 167.99.149.11 [09/Oct/2020:18:42:40 "-" "POST /wp-login.php 200 9495	2020-10-09 19:52:36

Type

Details

Datetime

167.99.149.11

attack

Automatic report generated by Wazuh

2020-10-10 03:56:19

167.99.149.11

attack

can 167.99.149.11 [09/Oct/2020:18:09:47 "-" "POST /wp-login.php 200 5780
167.99.149.11 [09/Oct/2020:18:42:33 "-" "GET /wp-login.php 200 9378
167.99.149.11 [09/Oct/2020:18:42:40 "-" "POST /wp-login.php 200 9495

2020-10-09 19:52:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.99.149.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58381
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.99.149.55.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025073100 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 01 01:00:21 CST 2025
;; MSG SIZE  rcvd: 106

Host info

55.149.99.167.in-addr.arpa domain name pointer portscanner-nyc1-05.prod.cyberresilience.io.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.149.99.167.in-addr.arpa	name = portscanner-nyc1-05.prod.cyberresilience.io.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.247.108.129	attack	\[2019-06-22 11:48:59\] SECURITY\[3671\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-06-22T11:48:59.089+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="\",SessionID="1199709953-1636542436-1149734787",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/77.247.108.129/57505",Challenge="1561196938/779835dab7dd38e9e3a8af255c2bcf26",Response="1df4453e2a5c71b87a3009c701bc51c8",ExpectedResponse="" \[2019-06-22 11:48:59\] SECURITY\[3671\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-06-22T11:48:59.177+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="\",SessionID="1199709953-1636542436-1149734787",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/77.247.108.129/57505",Challenge="1561196939/d15cdc8f78e4869cea89e7ac27b16a08",Response="abc425c8e24da0eb13a5b6523f67d037",ExpectedResponse="" \[2019-06-22 11:48:59\] SECURITY\[3671\] res_security_log.c: SecurityEvent="Challenge	2019-06-22 18:21:09
125.136.181.85	attackspambots	Autoban 125.136.181.85 AUTH/CONNECT	2019-06-22 18:12:05
94.127.179.177	attackbots	Brute forcing RDP port 3389	2019-06-22 17:45:06
191.53.221.81	attackbots	SMTP-sasl brute force ...	2019-06-22 18:35:51
58.20.185.12	attack	'IP reached maximum auth failures for a one day block'	2019-06-22 18:14:35
185.220.102.6	attack	Failed password for root from 185.220.102.6 port 34261 ssh2 Failed password for root from 185.220.102.6 port 34261 ssh2 error: maximum authentication attempts exceeded for root from 185.220.102.6 port 34261 ssh2 \[preauth\] pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.102.6 user=root Failed password for root from 185.220.102.6 port 45139 ssh2	2019-06-22 17:46:35
123.16.159.107	attackspam	Jun 22 07:26:34 srv-4 sshd\[29658\]: Invalid user admin from 123.16.159.107 Jun 22 07:26:34 srv-4 sshd\[29658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.16.159.107 Jun 22 07:26:36 srv-4 sshd\[29658\]: Failed password for invalid user admin from 123.16.159.107 port 40120 ssh2 ...	2019-06-22 18:06:39
187.162.31.205	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-06-22 18:24:28
189.112.216.181	attack	SMTP-sasl brute force ...	2019-06-22 18:17:19
172.73.183.34	attack	2019-06-22T09:55:32.229252ns1.unifynetsol.net webmin\[8918\]: Non-existent login as test from 172.73.183.34 2019-06-22T09:55:34.568259ns1.unifynetsol.net webmin\[8923\]: Non-existent login as test from 172.73.183.34 2019-06-22T09:55:38.147661ns1.unifynetsol.net webmin\[8929\]: Non-existent login as test from 172.73.183.34 2019-06-22T09:55:42.573045ns1.unifynetsol.net webmin\[9276\]: Non-existent login as test from 172.73.183.34 2019-06-22T09:55:47.858637ns1.unifynetsol.net webmin\[9509\]: Non-existent login as test from 172.73.183.34	2019-06-22 18:28:47
187.162.20.144	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-06-22 18:26:14
162.144.64.149	attackbotsspam	[2019-06-22 00:25:10] NOTICE[4006] chan_sip.c: Registration from '"14235" ' failed for '162.144.64.149:5117' - Wrong password [2019-06-22 00:25:10] SECURITY[4013] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-06-22T00:25:10.333-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="14235",SessionID="0x7fd8040027a0",LocalAddress="IPV4/UDP/142.93.153.17/5060",RemoteAddress="IPV4/UDP/162.144.64.149/5117",Challenge="614f5b3f",ReceivedChallenge="614f5b3f",ReceivedHash="4f43eac99765e32d2772b2e22bea17a6" [2019-06-22 00:25:10] NOTICE[4006] chan_sip.c: Registration from '"14235" ' failed for '162.144.64.149:5117' - Wrong password [2019-06-22 00:25:10] SECURITY[4013] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-06-22T00:25:10.533-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="14235",SessionID="0x7fd804052160",LocalAddress="IPV4/UDP/142.93.153.17/5060",RemoteAddress="IPV4/UDP/162.144.64.149/5117",Challe	2019-06-22 18:39:52
64.76.6.126	attackbots	Jun 22 08:27:53 vmd17057 sshd\[6973\]: Invalid user sui from 64.76.6.126 port 49731 Jun 22 08:27:53 vmd17057 sshd\[6973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.76.6.126 Jun 22 08:27:55 vmd17057 sshd\[6973\]: Failed password for invalid user sui from 64.76.6.126 port 49731 ssh2 ...	2019-06-22 18:33:58
171.241.60.190	attackspambots	SMB Server BruteForce Attack	2019-06-22 17:52:57
218.69.91.84	attack	Jun 22 05:26:23 MK-Soft-VM7 sshd\[28203\]: Invalid user postgres from 218.69.91.84 port 46231 Jun 22 05:26:23 MK-Soft-VM7 sshd\[28203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.69.91.84 Jun 22 05:26:25 MK-Soft-VM7 sshd\[28203\]: Failed password for invalid user postgres from 218.69.91.84 port 46231 ssh2 ...	2019-06-22 18:07:15

Recently Reported IPs

23.189.247.199	176.65.149.231	156.10.248.90	113.215.188.40
124.166.158.9	124.166.158.145	77.164.241.148	45.82.78.105
216.118.251.206	172.212.224.40	42.236.17.82	20.171.8.42
72.82.1.40	47.252.72.54	59.173.134.151	223.199.190.135
180.136.234.9	113.215.189.224	66.249.70.163	52.19.162.54