5.107.66.149 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.107.66.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38793
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;5.107.66.149.			IN	A

;; AUTHORITY SECTION:
.			395	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 17:47:17 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 149.66.107.5.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.66.107.5.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.112.128.104	attack	Aug 12 04:10:23 srv1 postfix/smtpd[17469]: connect from knowing.sahostnameenthouse.com[217.112.128.104] Aug 12 04:10:23 srv1 postfix/smtpd[17405]: connect from knowing.sahostnameenthouse.com[217.112.128.104] Aug x@x Aug 12 04:10:30 srv1 postfix/smtpd[17405]: disconnect from knowing.sahostnameenthouse.com[217.112.128.104] Aug x@x Aug 12 04:10:36 srv1 postfix/smtpd[17469]: disconnect from knowing.sahostnameenthouse.com[217.112.128.104] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=217.112.128.104	2019-08-12 20:20:09
217.112.128.99	attackspambots	Aug 12 01:04:42 srv1 postfix/smtpd[611]: connect from nut.sahostnameenthouse.com[217.112.128.99] Aug x@x Aug 12 01:04:47 srv1 postfix/smtpd[611]: disconnect from nut.sahostnameenthouse.com[217.112.128.99] Aug 12 01:05:22 srv1 postfix/smtpd[30227]: connect from nut.sahostnameenthouse.com[217.112.128.99] Aug x@x Aug 12 01:05:27 srv1 postfix/smtpd[30227]: disconnect from nut.sahostnameenthouse.com[217.112.128.99] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=217.112.128.99	2019-08-12 20:19:36
118.190.133.175	attackspam	Aug 12 03:33:26 host sshd[29536]: Invalid user user from 118.190.133.175 port 54582 Aug 12 03:33:26 host sshd[29536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.190.133.175 Aug 12 03:33:28 host sshd[29536]: Failed password for invalid user user from 118.190.133.175 port 54582 ssh2 Aug 12 03:33:28 host sshd[29536]: Received disconnect from 118.190.133.175 port 54582:11: Bye Bye [preauth] Aug 12 03:33:28 host sshd[29536]: Disconnected from invalid user user 118.190.133.175 port 54582 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=118.190.133.175	2019-08-12 20:14:11
217.112.128.142	attackbots	Aug 12 04:03:11 srv1 postfix/smtpd[16655]: connect from nod.beautisleeprh.com[217.112.128.142] Aug x@x Aug 12 04:03:16 srv1 postfix/smtpd[16655]: disconnect from nod.beautisleeprh.com[217.112.128.142] Aug 12 04:04:15 srv1 postfix/smtpd[14984]: connect from nod.beautisleeprh.com[217.112.128.142] Aug x@x Aug 12 04:04:20 srv1 postfix/smtpd[14984]: disconnect from nod.beautisleeprh.com[217.112.128.142] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=217.112.128.142	2019-08-12 20:08:38
139.199.84.234	attackspambots	Aug 12 02:58:56 shared07 sshd[21600]: Invalid user mella from 139.199.84.234 Aug 12 02:58:56 shared07 sshd[21600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.84.234 Aug 12 02:58:58 shared07 sshd[21600]: Failed password for invalid user mella from 139.199.84.234 port 60842 ssh2 Aug 12 02:58:58 shared07 sshd[21600]: Received disconnect from 139.199.84.234 port 60842:11: Bye Bye [preauth] Aug 12 02:58:58 shared07 sshd[21600]: Disconnected from 139.199.84.234 port 60842 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=139.199.84.234	2019-08-12 20:17:32
104.236.131.54	attack	$f2bV_matches	2019-08-12 20:29:10
85.209.0.115	attackbotsspam	Port scan on 10 port(s): 24302 26169 27234 29813 30453 39474 44279 50887 51134 54172	2019-08-12 20:23:07
141.98.9.67	attackbots	Aug 12 12:28:02 mail postfix/smtpd\[13915\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 12 12:29:12 mail postfix/smtpd\[13482\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 12 12:30:22 mail postfix/smtpd\[13743\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 12 12:31:33 mail postfix/smtpd\[13482\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 12 12:32:44 mail postfix/smtpd\[13482\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 12 12:33:53 mail postfix/smtpd\[13482\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 12 12:35:04 mail postfix/smtpd\[13915\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 12 12:36:13 mail postfix/smtpd\[13907\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 12 12:39:45	2019-08-12 20:43:28
54.39.150.116	attack	Aug 12 14:26:36 [munged] sshd[10447]: Invalid user ft from 54.39.150.116 port 33424 Aug 12 14:26:36 [munged] sshd[10447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.150.116	2019-08-12 20:30:02
176.31.253.55	attackbots	Aug 12 02:26:35 *** sshd[30459]: Invalid user harley from 176.31.253.55	2019-08-12 20:09:00
5.141.136.177	attackbots	Aug 12 05:25:19 www sshd\[63151\]: Failed password for root from 5.141.136.177 port 50766 ssh2Aug 12 05:25:38 www sshd\[63153\]: Failed password for root from 5.141.136.177 port 50780 ssh2Aug 12 05:25:56 www sshd\[63156\]: Failed password for root from 5.141.136.177 port 50796 ssh2 ...	2019-08-12 20:26:17
122.155.223.113	attack	Aug 12 11:34:58 shadeyouvpn sshd[5611]: Invalid user usuario from 122.155.223.113 Aug 12 11:34:58 shadeyouvpn sshd[5611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.223.113 Aug 12 11:35:01 shadeyouvpn sshd[5611]: Failed password for invalid user usuario from 122.155.223.113 port 60404 ssh2 Aug 12 11:35:01 shadeyouvpn sshd[5611]: Received disconnect from 122.155.223.113: 11: Bye Bye [preauth] Aug 12 11:43:50 shadeyouvpn sshd[13798]: Invalid user SinusBot from 122.155.223.113 Aug 12 11:43:50 shadeyouvpn sshd[13798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.223.113 Aug 12 11:43:52 shadeyouvpn sshd[13798]: Failed password for invalid user SinusBot from 122.155.223.113 port 33296 ssh2 Aug 12 11:43:52 shadeyouvpn sshd[13798]: Received disconnect from 122.155.223.113: 11: Bye Bye [preauth] Aug 12 11:44:55 shadeyouvpn sshd[14291]: Invalid user angelina from 122.155.223......... -------------------------------	2019-08-12 20:35:26
142.44.210.154	attack	Aug 12 14:09:46 myhostname sshd[10427]: Invalid user iam from 142.44.210.154 Aug 12 14:09:46 myhostname sshd[10427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.210.154 Aug 12 14:09:48 myhostname sshd[10427]: Failed password for invalid user iam from 142.44.210.154 port 45016 ssh2 Aug 12 14:09:48 myhostname sshd[10427]: Received disconnect from 142.44.210.154 port 45016:11: Bye Bye [preauth] Aug 12 14:09:48 myhostname sshd[10427]: Disconnected from 142.44.210.154 port 45016 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=142.44.210.154	2019-08-12 20:52:20
46.161.27.87	attackbots	Aug 12 14:11:01 h2177944 kernel: \[3935626.844314\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.161.27.87 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=3773 PROTO=TCP SPT=48938 DPT=3303 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 12 14:11:01 h2177944 kernel: \[3935627.108175\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.161.27.87 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=47524 PROTO=TCP SPT=48938 DPT=3073 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 12 14:18:08 h2177944 kernel: \[3936053.519543\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.161.27.87 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=2822 PROTO=TCP SPT=48938 DPT=3305 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 12 14:22:06 h2177944 kernel: \[3936291.596728\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.161.27.87 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=18435 PROTO=TCP SPT=48938 DPT=3130 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 12 14:26:09 h2177944 kernel: \[3936534.575964\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.161.27.87 DST=85.214.117.9 LEN=40	2019-08-12 20:46:57
184.105.139.74	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-12 20:09:40

Recently Reported IPs

5.11.22.49	5.11.236.163	5.105.178.194	5.105.10.91
5.11.68.223	5.11.77.207	5.112.140.55	5.11.74.184
5.11.73.102	5.110.156.199	5.112.80.35	5.112.189.68
5.112.41.109	5.113.139.123	5.11.71.32	20.15.149.129
5.113.45.177	5.113.69.252	5.113.224.200	5.113.95.251