JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.246.66.109

140.246.66.109 was found in our database!

This IP was reported 633 times. Confidence of Abuse is 2%: ?

ISP	CHINANET SHANDONG PROVINCE NETWORK
Usage Type	Commercial
ASN	AS58519
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Guiyang, Guizhou

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.246.66.109

Whois 140.246.66.109

IP Abuse Reports for 140.246.66.109:

This IP address has been reported a total of 633 times from 316 distinct sources. 140.246.66.109 was first reported on December 6th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 agentics	2026-06-10 02:58:41 (2 weeks ago)	140.246.66.109 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale ... show more 140.246.66.109 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale industrial operation attempting unrelenting brute-force login attempts for months on end - between all CIDR ranges in the botnet, our servers receive over 800 authentication attempts per minute on smtp, imap and relative mail ports, as well as ssh, and other protocols. IP INFO: - IP 140.246.66.109 - Anycast false - City N/A - Region N/A - Region Code N/A - Country N/A (N/A) - Continent N/A (N/A) - Range N/A - Provider N/A - Organisation N/A - Proxy N/A - Type N/A show less	Port Scan
🇹🇷 rtbh.com.tr	2025-01-10 20:51:03 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-01-09 20:50:58 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 Brent Wadleigh	2025-01-09 17:50:46 (1 year ago)	IP attempted SSH bruteforce on port 22. Detected and banned by CrowdSec.	Brute-Force SSH
🇮🇳 Parth Maniar	2025-01-09 09:57:29 (1 year ago)	This IP address carried out 224 port scanning attempts on 06-01-2025. For more information or to rep ... show more This IP address carried out 224 port scanning attempts on 06-01-2025. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇮🇳 Parth Maniar	2025-01-09 09:35:36 (1 year ago)	This IP address carried out 18 SSH credential attack (attempts) on 06-01-2025. For more information ... show more This IP address carried out 18 SSH credential attack (attempts) on 06-01-2025. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
🇨🇦 James Calum	2025-01-08 18:57:11 (1 year ago)	Jan 8 18:57:09 Sildom2 sshd[101062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu ... show more Jan 8 18:57:09 Sildom2 sshd[101062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.66.109 Jan 8 18:57:11 Sildom2 sshd[101062]: Failed password for invalid user roger from 140.246.66.109 port 45138 ssh2 ... show less	Brute-Force SSH
🇺🇸 shaunc	2025-01-08 16:38:58 (1 year ago)	Jan 8 10:38:54 mailman sshd[20364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eui ... show more Jan 8 10:38:54 mailman sshd[20364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.66.109 Jan 8 10:38:56 mailman sshd[20364]: Failed password for invalid user liming from 140.246.66.109 port 35174 ssh2 Jan 8 10:38:57 mailman sshd[20364]: Disconnected from 140.246.66.109 port 35174 [preauth] show less	Brute-Force SSH
🇩🇪 ksol-hostmaster	2025-01-08 15:52:46 (1 year ago)	Jan 8 16:52:45 ksol sshd[46866]: Received disconnect from 140.246.66.109 port 51128:11: Bye Bye [pr ... show more Jan 8 16:52:45 ksol sshd[46866]: Received disconnect from 140.246.66.109 port 51128:11: Bye Bye [preauth] ... show less	SSH
🇺🇸 wordpresshosting.solutions	2025-01-08 15:35:42 (1 year ago)	SSH brute-force detected	Brute-Force SSH
🇩🇪 georgengelmann	2025-01-08 11:00:54 (1 year ago)	2025-01-08T10:59:51.638618+00:00 slpdb sshd[64854]: pam_unix(sshd:auth): authentication failure; log ... show more 2025-01-08T10:59:51.638618+00:00 slpdb sshd[64854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.66.109 2025-01-08T10:59:53.778331+00:00 slpdb sshd[64854]: Failed password for invalid user sphinx from 140.246.66.109 port 43144 ssh2 2025-01-08T11:00:52.192489+00:00 slpdb sshd[65212]: Invalid user contabilidade from 140.246.66.109 port 52882 2025-01-08T11:00:52.199898+00:00 slpdb sshd[65212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.66.109 2025-01-08T11:00:54.379272+00:00 slpdb sshd[65212]: Failed password for invalid user contabilidade from 140.246.66.109 port 52882 ssh2 ... show less	Brute-Force SSH
🇩🇪 pigro	2025-01-08 09:38:34 (1 year ago)	Jan 8 10:36:28 vps-07b0f6cf sshd[1942002]: User root from 140.246.66.109 not allowed because not li ... show more Jan 8 10:36:28 vps-07b0f6cf sshd[1942002]: User root from 140.246.66.109 not allowed because not listed in AllowUsers Jan 8 10:38:33 vps-07b0f6cf sshd[1942043]: User root from 140.246.66.109 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇺🇸 amit177	2025-01-08 09:00:55 (1 year ago)		Brute-Force SSH
🇷🇺 unitrq	2025-01-08 07:32:50 (1 year ago)	2025-01-08T07:25:57.987192+00:00 nordgron.com sshd-session[1167094]: Invalid user mainuser from 140. ... show more 2025-01-08T07:25:57.987192+00:00 nordgron.com sshd-session[1167094]: Invalid user mainuser from 140.246.66.109 port 53276 2025-01-08T07:26:55.261740+00:00 nordgron.com sshd-session[1167142]: Invalid user system from 140.246.66.109 port 34426 2025-01-08T07:29:34.857939+00:00 nordgron.com sshd-session[1167224]: Invalid user Guest from 140.246.66.109 port 34296 2025-01-08T07:31:20.045983+00:00 nordgron.com sshd-session[1167284]: Invalid user dell from 140.246.66.109 port 53048 2025-01-08T07:32:11.375922+00:00 nordgron.com sshd-session[1167295]: Invalid user erfan from 140.246.66.109 port 34190 ... show less	Brute-Force SSH
🇷🇺 unitrq	2025-01-08 07:15:51 (1 year ago)	2025-01-08T07:11:17.834147+00:00 nordgron.com sshd-session[1166691]: Invalid user git from 140.246.6 ... show more 2025-01-08T07:11:17.834147+00:00 nordgron.com sshd-session[1166691]: Invalid user git from 140.246.66.109 port 42164 2025-01-08T07:12:31.020544+00:00 nordgron.com sshd-session[1166726]: Invalid user exit from 140.246.66.109 port 53794 2025-01-08T07:13:31.720633+00:00 nordgron.com sshd-session[1166791]: Invalid user guest from 140.246.66.109 port 34946 2025-01-08T07:14:21.381765+00:00 nordgron.com sshd-session[1166830]: Invalid user ab from 140.246.66.109 port 44332 2025-01-08T07:15:13.173423+00:00 nordgron.com sshd-session[1166856]: Invalid user pgadmin from 140.246.66.109 port 53710 ... show less	Brute-Force SSH

Showing 1 to 15 of 633 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 179.49.187.185

🇧🇷 179.49.184.97

🇨🇦 85.217.149.49

🇺🇸 66.132.195.93

🇸🇬 218.185.241.137

🇧🇷 207.248.17.111

🇹🇭 203.172.162.100

🇹🇼 198.235.24.58

🇺🇸 198.46.253.100

🇧🇷 179.49.186.2

🇧🇷 179.49.184.226

🇧🇷 179.49.184.107

🇺🇸 172.236.228.202

🇷🇺 109.63.134.29

🇳🇱 91.199.163.144

🇺🇿 84.54.72.14

🇱🇹 45.227.254.170

🇺🇸 38.129.126.106

🇬🇧 35.203.211.251

🇺🇸 18.224.200.189