167.99.138.106

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.99.138.138	attackspambots	1568890456 - 09/19/2019 12:54:16 Host: 167.99.138.138/167.99.138.138 Port: 5060 UDP Blocked	2019-09-19 22:24:56
167.99.138.184	attack	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-08 04:47:35
167.99.138.153	attackspambots	$f2bV_matches_ltvn	2019-08-08 04:13:09
167.99.138.153	attackspambots	Aug 1 20:18:38 eventyay sshd[1571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.138.153 Aug 1 20:18:40 eventyay sshd[1571]: Failed password for invalid user tomcat from 167.99.138.153 port 52062 ssh2 Aug 1 20:24:31 eventyay sshd[2819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.138.153 ...	2019-08-02 02:35:32
167.99.138.153	attackspambots	Jul 29 01:51:32 mail sshd\[26270\]: Failed password for root from 167.99.138.153 port 45142 ssh2 Jul 29 02:10:24 mail sshd\[26893\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.138.153 user=root ...	2019-07-29 11:07:51
167.99.138.153	attack	Jul 27 18:15:00 plusreed sshd[7621]: Invalid user edong!@#g from 167.99.138.153 ...	2019-07-28 06:59:52
167.99.138.153	attackspambots	Jul 12 21:55:46 mail sshd\[23043\]: Invalid user anurag from 167.99.138.153 port 55424 Jul 12 21:55:46 mail sshd\[23043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.138.153 Jul 12 21:55:48 mail sshd\[23043\]: Failed password for invalid user anurag from 167.99.138.153 port 55424 ssh2 Jul 12 22:02:58 mail sshd\[24719\]: Invalid user postgres from 167.99.138.153 port 57242 Jul 12 22:02:58 mail sshd\[24719\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.138.153	2019-07-13 06:34:58
167.99.138.153	attackspam	Jul 12 11:35:39 mail sshd\[13002\]: Invalid user svetlana from 167.99.138.153 port 38084 Jul 12 11:35:39 mail sshd\[13002\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.138.153 Jul 12 11:35:40 mail sshd\[13002\]: Failed password for invalid user svetlana from 167.99.138.153 port 38084 ssh2 Jul 12 11:42:50 mail sshd\[14253\]: Invalid user lhy from 167.99.138.153 port 39906 Jul 12 11:42:50 mail sshd\[14253\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.138.153	2019-07-12 18:02:35
167.99.138.153	attack	Jul 12 08:40:49 mail sshd\[9271\]: Invalid user lena from 167.99.138.153 port 46192 Jul 12 08:40:49 mail sshd\[9271\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.138.153 Jul 12 08:40:51 mail sshd\[9271\]: Failed password for invalid user lena from 167.99.138.153 port 46192 ssh2 Jul 12 08:48:10 mail sshd\[10724\]: Invalid user jenkins from 167.99.138.153 port 48002 Jul 12 08:48:10 mail sshd\[10724\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.138.153	2019-07-12 14:59:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.99.138.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51024
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.99.138.106.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 15:45:13 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 106.138.99.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.138.99.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
84.33.106.0	attackbotsspam	Automatic report - Banned IP Access	2020-07-27 22:51:59
178.138.96.218	attackbots	178.138.96.218 - - [27/Jul/2020:13:53:32 +0200] "POST /xmlrpc.php HTTP/1.1" 403 5 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 178.138.96.218 - - [27/Jul/2020:13:54:32 +0200] "POST /xmlrpc.php HTTP/1.1" 403 5 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-07-27 22:50:56
167.86.123.214	attackbotsspam	POST /_asterisk/VPD0OTXFF8VVER3.php HTTP/1.1	2020-07-27 23:14:41
180.30.70.53	attackbots	Jul 27 13:54:00 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=180.30.70.53 DST=79.143.186.54 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=62071 PROTO=TCP SPT=61925 DPT=8080 WINDOW=14600 RES=0x00 SYN URGP=0 Jul 27 13:54:01 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=180.30.70.53 DST=79.143.186.54 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=62072 PROTO=TCP SPT=61925 DPT=8080 WINDOW=14600 RES=0x00 SYN URGP=0 Jul 27 13:54:03 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=180.30.70.53 DST=79.143.186.54 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=62073 PROTO=TCP SPT=61925 DPT=8080 WINDOW=14600 RES=0x00 SYN URGP=0	2020-07-27 23:05:43
94.102.49.159	attack	[H1] Blocked by UFW	2020-07-27 23:08:02
111.198.54.177	attackspam	$f2bV_matches	2020-07-27 23:10:07
119.156.29.42	attack	IP 119.156.29.42 attacked honeypot on port: 1433 at 7/27/2020 4:53:32 AM	2020-07-27 23:04:30
80.178.98.181	attackbotsspam	Automatic report - Banned IP Access	2020-07-27 22:49:16
51.91.212.81	attackspambots	TCP (SYN) 51.91.212.81:42931 -> port 5938, len 44	2020-07-27 23:04:11
212.83.132.45	attack	[2020-07-27 10:50:04] NOTICE[1248] chan_sip.c: Registration from '"688"' failed for '212.83.132.45:5797' - Wrong password [2020-07-27 10:50:04] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-27T10:50:04.039-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="688",SessionID="0x7f272002baf8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.132.45/5797",Challenge="1dbbf2c5",ReceivedChallenge="1dbbf2c5",ReceivedHash="ade9c7af551b14c9cfe629e0aa163c5b" [2020-07-27 10:51:00] NOTICE[1248] chan_sip.c: Registration from '"686"' failed for '212.83.132.45:5702' - Wrong password [2020-07-27 10:51:00] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-27T10:51:00.273-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="686",SessionID="0x7f2720048e48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.132 ...	2020-07-27 22:54:59
139.59.69.76	attack	$f2bV_matches	2020-07-27 22:41:17
35.227.170.34	attack	35.227.170.34 - - [27/Jul/2020:16:13:09 +0200] "GET /wp-login.php HTTP/1.1" 200 5738 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.227.170.34 - - [27/Jul/2020:16:13:20 +0200] "POST /wp-login.php HTTP/1.1" 200 6055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.227.170.34 - - [27/Jul/2020:16:13:28 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-27 23:13:36
157.230.132.100	attack	Jul 27 19:41:40 gw1 sshd[10463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.132.100 Jul 27 19:41:42 gw1 sshd[10463]: Failed password for invalid user kbkim from 157.230.132.100 port 42164 ssh2 ...	2020-07-27 22:59:34
175.139.190.165	attackbots	Dovecot Invalid User Login Attempt.	2020-07-27 23:08:51
222.186.42.136	attackbots	2020-07-27T16:45:39.089452vps751288.ovh.net sshd\[1223\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root 2020-07-27T16:45:40.554438vps751288.ovh.net sshd\[1223\]: Failed password for root from 222.186.42.136 port 43328 ssh2 2020-07-27T16:45:42.408331vps751288.ovh.net sshd\[1223\]: Failed password for root from 222.186.42.136 port 43328 ssh2 2020-07-27T16:45:44.536993vps751288.ovh.net sshd\[1223\]: Failed password for root from 222.186.42.136 port 43328 ssh2 2020-07-27T16:45:56.266093vps751288.ovh.net sshd\[1225\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root	2020-07-27 23:00:32

Recently Reported IPs

64.33.142.184	210.89.58.111	172.5.52.204	45.79.125.161
123.212.138.165	113.160.249.72	177.72.94.131	204.44.85.110
201.18.144.234	163.123.141.121	172.113.120.29	103.136.40.66
177.92.141.16	47.196.94.213	117.215.247.181	45.165.214.120
178.23.149.205	211.243.183.102	121.61.106.208	221.227.158.154