109.111.138.153

Basic Info

City: Kaliningrad

Region: Kaliningrad Oblast

Country: Russia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.111.138.153
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9478
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.111.138.153.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011501 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 16 02:02:26 CST 2022
;; MSG SIZE  rcvd: 108

Host info

153.138.111.109.in-addr.arpa domain name pointer ppp109-111-138-153.tis-dialog.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
153.138.111.109.in-addr.arpa	name = ppp109-111-138-153.tis-dialog.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.247.108.14	attackspambots	77.247.108.14 was recorded 33 times by 8 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 33, 89, 1052	2020-01-10 07:07:56
103.135.38.109	attack	Jan 10 03:13:47 our-server-hostname postfix/smtpd[32403]: connect from unknown[103.135.38.109] Jan x@x Jan 10 03:13:50 our-server-hostname postfix/smtpd[32403]: lost connection after RCPT from unknown[103.135.38.109] Jan 10 03:13:50 our-server-hostname postfix/smtpd[32403]: disconnect from unknown[103.135.38.109] Jan 10 03:17:06 our-server-hostname postfix/smtpd[32492]: connect from unknown[103.135.38.109] Jan x@x Jan 10 03:17:08 our-server-hostname postfix/smtpd[32492]: lost connection after RCPT from unknown[103.135.38.109] Jan 10 03:17:08 our-server-hostname postfix/smtpd[32492]: disconnect from unknown[103.135.38.109] Jan 10 03:17:15 our-server-hostname postfix/smtpd[32491]: connect from unknown[103.135.38.109] Jan x@x Jan 10 03:17:17 our-server-hostname postfix/smtpd[32491]: lost connection after RCPT from unknown[103.135.38.109] Jan 10 03:17:17 our-server-hostname postfix/smtpd[32491]: disconnect from unknown[103.135.38.109] Jan 10 03:21:26 our-server-hostname pos........ -------------------------------	2020-01-10 06:56:44
117.131.60.51	attackspam	$f2bV_matches	2020-01-10 07:01:35
50.237.139.58	attack	Unauthorized connection attempt detected from IP address 50.237.139.58 to port 22	2020-01-10 06:40:32
183.62.225.103	attackbots	Jan 9 22:25:04 vpn01 sshd[21436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.62.225.103 Jan 9 22:25:06 vpn01 sshd[21436]: Failed password for invalid user hduser from 183.62.225.103 port 43232 ssh2 ...	2020-01-10 06:52:10
159.203.74.227	attackspam	Jan 9 23:07:32 meumeu sshd[26914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.227 Jan 9 23:07:34 meumeu sshd[26914]: Failed password for invalid user kgergo from 159.203.74.227 port 47590 ssh2 Jan 9 23:10:09 meumeu sshd[27409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.227 ...	2020-01-10 06:42:08
39.86.15.194	attack	Honeypot hit.	2020-01-10 06:46:24
218.92.0.184	attackbots	Jan 10 00:11:48 vps647732 sshd[12417]: Failed password for root from 218.92.0.184 port 34979 ssh2 Jan 10 00:12:01 vps647732 sshd[12417]: Failed password for root from 218.92.0.184 port 34979 ssh2 Jan 10 00:12:01 vps647732 sshd[12417]: error: maximum authentication attempts exceeded for root from 218.92.0.184 port 34979 ssh2 [preauth] ...	2020-01-10 07:15:05
49.88.112.113	attack	Jan 9 18:16:04 plusreed sshd[23592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Jan 9 18:16:06 plusreed sshd[23592]: Failed password for root from 49.88.112.113 port 18855 ssh2 ...	2020-01-10 07:18:12
201.122.102.21	attackspam	Jan 9 23:41:18 www sshd\[8311\]: Invalid user efu from 201.122.102.21Jan 9 23:41:20 www sshd\[8311\]: Failed password for invalid user efu from 201.122.102.21 port 56314 ssh2Jan 9 23:42:55 www sshd\[8319\]: Invalid user nagios from 201.122.102.21Jan 9 23:42:57 www sshd\[8319\]: Failed password for invalid user nagios from 201.122.102.21 port 41956 ssh2 ...	2020-01-10 06:48:17
176.113.115.50	attack	firewall-block, port(s): 3391/tcp, 12000/tcp, 14000/tcp, 28000/tcp, 30303/tcp, 32954/tcp, 33113/tcp	2020-01-10 07:01:20
71.6.167.142	attackspambots	Unauthorized connection attempt detected from IP address 71.6.167.142 to port 8009	2020-01-10 06:51:03
222.186.175.150	attack	IP blocked	2020-01-10 07:18:49
185.53.88.108	attack	Jan 9 22:29:49 debian-2gb-nbg1-2 kernel: \[864701.578497\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.53.88.108 DST=195.201.40.59 LEN=441 TOS=0x00 PREC=0x00 TTL=54 ID=10085 DF PROTO=UDP SPT=5061 DPT=5060 LEN=421	2020-01-10 06:49:51
123.21.3.196	attack	Brute-force attempt banned	2020-01-10 06:50:08

Recently Reported IPs

81.152.1.76	243.3.223.133	232.134.177.171	230.71.25.33
250.72.159.143	3.42.162.51	22.97.99.124	82.145.18.105
187.66.16.1	200.56.129.39	44.95.216.231	195.255.130.8
191.131.210.141	63.66.129.181	225.114.239.36	37.45.52.26
250.113.82.220	223.152.25.83	194.150.235.149	27.211.251.116