109.175.67.139

Basic Info

City: unknown

Region: unknown

Country: Bosnia and Herzegovina

Internet Service Provider: BH Telecom d.d. Sarajevo

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	PHI,WP GET /wp-login.php GET /wp-login.php	2019-12-09 21:38:33

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.175.67.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32618
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.175.67.139.			IN	A

;; AUTHORITY SECTION:
.			377	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120900 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 09 21:38:29 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 139.67.175.109.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.67.175.109.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.172.135.62	attack	Unauthorized connection attempt detected from IP address 167.172.135.62 to port 2220 [J]	2020-01-28 02:21:54
159.65.141.44	attackspambots	Jan 27 00:50:03 ghostname-secure sshd[2456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.141.44 user=r.r Jan 27 00:50:05 ghostname-secure sshd[2456]: Failed password for r.r from 159.65.141.44 port 43296 ssh2 Jan 27 00:50:06 ghostname-secure sshd[2456]: Received disconnect from 159.65.141.44: 11: Bye Bye [preauth] Jan 27 00:53:09 ghostname-secure sshd[2578]: Failed password for invalid user pentarun from 159.65.141.44 port 33224 ssh2 Jan 27 00:53:10 ghostname-secure sshd[2578]: Received disconnect from 159.65.141.44: 11: Bye Bye [preauth] Jan 27 00:54:03 ghostname-secure sshd[2621]: Failed password for invalid user nagioxxxxxxx from 159.65.141.44 port 41090 ssh2 Jan 27 00:54:03 ghostname-secure sshd[2621]: Received disconnect from 159.65.141.44: 11: Bye Bye [preauth] Jan 27 00:54:56 ghostname-secure sshd[2699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.141.44 user=r........ -------------------------------	2020-01-28 02:16:30
59.111.105.9	attackspambots	#5614 - [59.111.105.96] Closing connection (IP still banned) #5614 - [59.111.105.96] Closing connection (IP still banned) #5614 - [59.111.105.96] Closing connection (IP still banned) #5614 - [59.111.105.96] Closing connection (IP still banned) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=59.111.105.9	2020-01-28 02:36:21
185.173.35.25	attack	993/tcp 2323/tcp 3000/tcp... [2019-11-29/2020-01-27]55pkt,40pt.(tcp),2pt.(udp)	2020-01-28 02:44:16
187.178.144.147	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-28 02:41:04
198.108.66.32	attack	3306/tcp 1911/tcp 5903/tcp... [2019-12-02/2020-01-27]9pkt,8pt.(tcp)	2020-01-28 02:27:16
93.34.231.80	attack	2019-06-22 04:00:02 1heVJx-0007NN-6Z SMTP connection from 93-34-231-80.ip51.fastwebnet.it \[93.34.231.80\]:53199 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 04:00:31 1heVKP-0007Pl-U6 SMTP connection from 93-34-231-80.ip51.fastwebnet.it \[93.34.231.80\]:52806 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 04:00:44 1heVKd-0007QM-KE SMTP connection from 93-34-231-80.ip51.fastwebnet.it \[93.34.231.80\]:52597 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 02:43:33
93.34.159.72	attackbotsspam	2019-01-27 18:20:55 H=93-34-159-72.ip50.fastwebnet.it \[93.34.159.72\]:38385 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-27 18:21:26 H=93-34-159-72.ip50.fastwebnet.it \[93.34.159.72\]:38673 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-27 18:21:41 H=93-34-159-72.ip50.fastwebnet.it \[93.34.159.72\]:38842 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-28 02:46:26
150.223.10.13	attack	Unauthorized connection attempt detected from IP address 150.223.10.13 to port 2220 [J]	2020-01-28 02:37:12
170.130.187.50	attackbots	161/udp 21/tcp 88/tcp... [2019-11-26/2020-01-27]53pkt,12pt.(tcp),1pt.(udp)	2020-01-28 02:39:52
156.251.174.140	attack	Jan 27 07:47:14 hostnameis sshd[12477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.251.174.140 user=r.r Jan 27 07:47:16 hostnameis sshd[12477]: Failed password for r.r from 156.251.174.140 port 42690 ssh2 Jan 27 07:47:16 hostnameis sshd[12477]: Received disconnect from 156.251.174.140: 11: Bye Bye [preauth] Jan 27 08:03:39 hostnameis sshd[12661]: Invalid user whq from 156.251.174.140 Jan 27 08:03:39 hostnameis sshd[12661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.251.174.140 Jan 27 08:03:42 hostnameis sshd[12661]: Failed password for invalid user whq from 156.251.174.140 port 45018 ssh2 Jan 27 08:03:42 hostnameis sshd[12661]: Received disconnect from 156.251.174.140: 11: Bye Bye [preauth] Jan 27 08:07:27 hostnameis sshd[12693]: Invalid user kant from 156.251.174.140 Jan 27 08:07:27 hostnameis sshd[12693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0........ ------------------------------	2020-01-28 02:32:04
222.186.175.140	attackspam	Jan 27 13:37:14 ny01 sshd[19292]: Failed password for root from 222.186.175.140 port 53730 ssh2 Jan 27 13:37:27 ny01 sshd[19292]: error: maximum authentication attempts exceeded for root from 222.186.175.140 port 53730 ssh2 [preauth] Jan 27 13:37:33 ny01 sshd[19319]: Failed password for root from 222.186.175.140 port 22918 ssh2	2020-01-28 02:40:42
93.211.38.2	attackbotsspam	2019-06-22 10:55:11 1hebnh-00006n-Ha SMTP connection from p5dd32602.dip0.t-ipconnect.de \[93.211.38.2\]:23431 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 10:55:26 1hebnw-00006v-A4 SMTP connection from p5dd32602.dip0.t-ipconnect.de \[93.211.38.2\]:23520 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 10:55:37 1hebo7-00007T-5C SMTP connection from p5dd32602.dip0.t-ipconnect.de \[93.211.38.2\]:23588 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 02:55:45
138.68.234.162	attackbots	Dec 23 09:53:06 dallas01 sshd[11766]: Failed password for root from 138.68.234.162 port 41534 ssh2 Dec 23 09:59:09 dallas01 sshd[15870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.234.162 Dec 23 09:59:11 dallas01 sshd[15870]: Failed password for invalid user keirsten from 138.68.234.162 port 49138 ssh2	2020-01-28 02:56:05
51.75.133.250	attack	Jan 27 18:38:06 MainVPS sshd[6634]: Invalid user prueba from 51.75.133.250 port 43210 Jan 27 18:38:06 MainVPS sshd[6634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.133.250 Jan 27 18:38:06 MainVPS sshd[6634]: Invalid user prueba from 51.75.133.250 port 43210 Jan 27 18:38:09 MainVPS sshd[6634]: Failed password for invalid user prueba from 51.75.133.250 port 43210 ssh2 Jan 27 18:40:58 MainVPS sshd[12359]: Invalid user ubuntu from 51.75.133.250 port 46794 ...	2020-01-28 02:18:47

Recently Reported IPs

63.251.227.101	209.141.50.178	37.238.130.50	86.57.222.146
163.172.105.89	120.132.11.151	67.225.59.148	79.158.65.194
37.128.219.17	36.46.75.118	187.189.238.1	125.44.191.62
95.213.184.201	47.112.85.235	104.219.234.53	129.191.21.220
5.178.87.50	137.74.60.104	157.55.39.30	59.89.26.89