109.106.138.66

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
109.106.138.130	attackspam	Unauthorized connection attempt detected from IP address 109.106.138.130 to port 23 [J]	2020-01-20 17:57:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.106.138.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56268
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.106.138.66.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022801 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 01 03:47:00 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 66.138.106.109.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 66.138.106.109.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.93.4.174	attack	Nov 8 09:35:23 bouncer sshd\[3108\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.4.174 user=root Nov 8 09:35:26 bouncer sshd\[3108\]: Failed password for root from 111.93.4.174 port 38064 ssh2 Nov 8 09:39:57 bouncer sshd\[3135\]: Invalid user oracle from 111.93.4.174 port 46228 ...	2019-11-08 17:34:50
106.13.42.52	attackspam	Nov 8 09:09:05 server sshd\[1068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.42.52 user=root Nov 8 09:09:06 server sshd\[1068\]: Failed password for root from 106.13.42.52 port 44426 ssh2 Nov 8 09:21:51 server sshd\[4503\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.42.52 user=root Nov 8 09:21:53 server sshd\[4503\]: Failed password for root from 106.13.42.52 port 55762 ssh2 Nov 8 09:27:13 server sshd\[5884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.42.52 user=root ...	2019-11-08 17:36:11
46.38.144.32	attackspambots	2019-11-08T09:58:05.201565mail01 postfix/smtpd[5372]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-08T09:58:14.187908mail01 postfix/smtpd[10971]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-08T09:58:28.198970mail01 postfix/smtpd[5372]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-08 17:07:51
35.201.243.170	attack	Nov 8 10:29:12 dedicated sshd[26253]: Invalid user crepin from 35.201.243.170 port 3570	2019-11-08 17:35:37
185.219.135.194	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-11-08 17:00:17
196.219.95.170	attack	Honeypot attack, port: 23, PTR: host-196.219.95.170-static.tedata.net.	2019-11-08 16:59:51
52.130.67.162	attackbotsspam	Lines containing failures of 52.130.67.162 Nov 5 17:24:39 shared06 sshd[27876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.130.67.162 user=r.r Nov 5 17:24:41 shared06 sshd[27876]: Failed password for r.r from 52.130.67.162 port 50594 ssh2 Nov 5 17:24:41 shared06 sshd[27876]: Received disconnect from 52.130.67.162 port 50594:11: Bye Bye [preauth] Nov 5 17:24:41 shared06 sshd[27876]: Disconnected from authenticating user r.r 52.130.67.162 port 50594 [preauth] Nov 5 17:42:32 shared06 sshd[32699]: Invalid user www from 52.130.67.162 port 33440 Nov 5 17:42:32 shared06 sshd[32699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.130.67.162 Nov 5 17:42:33 shared06 sshd[32699]: Failed password for invalid user www from 52.130.67.162 port 33440 ssh2 Nov 5 17:42:33 shared06 sshd[32699]: Received disconnect from 52.130.67.162 port 33440:11: Bye Bye [preauth] Nov 5 17:42:33 shared06 ........ ------------------------------	2019-11-08 17:10:33
132.145.213.82	attack	2019-11-08T07:24:05.297808lon01.zurich-datacenter.net sshd\[9248\]: Invalid user uwmadmin from 132.145.213.82 port 25525 2019-11-08T07:24:05.303420lon01.zurich-datacenter.net sshd\[9248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.213.82 2019-11-08T07:24:07.668040lon01.zurich-datacenter.net sshd\[9248\]: Failed password for invalid user uwmadmin from 132.145.213.82 port 25525 ssh2 2019-11-08T07:27:38.804736lon01.zurich-datacenter.net sshd\[9305\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.213.82 user=root 2019-11-08T07:27:40.744636lon01.zurich-datacenter.net sshd\[9305\]: Failed password for root from 132.145.213.82 port 44526 ssh2 ...	2019-11-08 17:16:21
81.12.159.146	attackbots	Nov 8 09:37:52 * sshd[6661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.12.159.146 Nov 8 09:37:54 * sshd[6661]: Failed password for invalid user oracle from 81.12.159.146 port 43714 ssh2	2019-11-08 17:02:30
218.78.88.97	attackbots	Port scan: Attack repeated for 24 hours	2019-11-08 17:32:34
95.168.192.114	attackbots	Automatic report - XMLRPC Attack	2019-11-08 17:12:31
106.51.231.38	attackbotsspam	POST /wp-login.php HTTP/1.1 200 1827 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0	2019-11-08 17:09:20
103.14.111.18	attackbotsspam	Nov 6 07:32:11 mxgate1 postfix/postscreen[20497]: CONNECT from [103.14.111.18]:56770 to [176.31.12.44]:25 Nov 6 07:32:11 mxgate1 postfix/dnsblog[20502]: addr 103.14.111.18 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 6 07:32:11 mxgate1 postfix/dnsblog[20499]: addr 103.14.111.18 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 6 07:32:11 mxgate1 postfix/dnsblog[20500]: addr 103.14.111.18 listed by domain bl.spamcop.net as 127.0.0.2 Nov 6 07:32:11 mxgate1 postfix/dnsblog[20498]: addr 103.14.111.18 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 6 07:32:11 mxgate1 postfix/dnsblog[20501]: addr 103.14.111.18 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 6 07:32:12 mxgate1 postfix/postscreen[20497]: PREGREET 22 after 0.28 from [103.14.111.18]:56770: EHLO [103.14.111.18] Nov 6 07:32:12 mxgate1 postfix/postscreen[20497]: DNSBL rank 6 for [103.14.111.18]:56770 Nov x@x Nov 6 07:32:12 mxgate1 postfix/postscreen[20497]: HANGUP after 0.87 from [103......... -------------------------------	2019-11-08 17:28:43
174.138.191.165	attackspambots	k+ssh-bruteforce	2019-11-08 17:18:38
187.178.158.66	attackbots	Automatic report - Port Scan Attack	2019-11-08 17:04:55

Recently Reported IPs

109.106.138.28	109.106.138.62	109.106.139.149	109.106.139.199
109.106.139.109	109.106.139.227	109.106.139.52	109.106.139.77
109.106.139.86	109.106.139.91	109.106.139.55	109.106.139.245
109.106.193.22	109.106.196.10	109.106.194.42	109.106.195.42
109.106.196.122	109.106.196.126	109.106.196.142	109.106.196.250