109.197.229.138

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.197.229.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37501
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.197.229.138.		IN	A

;; AUTHORITY SECTION:
.			393	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052100 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 21 19:58:53 CST 2022
;; MSG SIZE  rcvd: 108

Host info

138.229.197.109.in-addr.arpa domain name pointer www.netgts.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.229.197.109.in-addr.arpa	name = www.netgts.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.35.51.23	attackbots	Oct 3 23:13:47 websrv1.derweidener.de postfix/smtpd[703184]: warning: unknown[193.35.51.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 3 23:13:47 websrv1.derweidener.de postfix/smtpd[703184]: lost connection after AUTH from unknown[193.35.51.23] Oct 3 23:13:52 websrv1.derweidener.de postfix/smtpd[703184]: lost connection after AUTH from unknown[193.35.51.23] Oct 3 23:13:56 websrv1.derweidener.de postfix/smtpd[703955]: lost connection after AUTH from unknown[193.35.51.23] Oct 3 23:14:01 websrv1.derweidener.de postfix/smtpd[703184]: lost connection after AUTH from unknown[193.35.51.23]	2020-10-04 09:06:53
178.62.8.193	attackbotsspam	2020-10-02T21:35:45.851875shield sshd\[17650\]: Invalid user dl from 178.62.8.193 port 48140 2020-10-02T21:35:45.861960shield sshd\[17650\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.8.193 2020-10-02T21:35:48.054758shield sshd\[17650\]: Failed password for invalid user dl from 178.62.8.193 port 48140 ssh2 2020-10-02T21:39:49.802051shield sshd\[18043\]: Invalid user ubuntu from 178.62.8.193 port 60092 2020-10-02T21:39:49.810254shield sshd\[18043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.8.193	2020-10-04 09:05:43
186.115.221.65	attackspam	1601671002 - 10/02/2020 22:36:42 Host: 186.115.221.65/186.115.221.65 Port: 445 TCP Blocked ...	2020-10-04 09:21:55
193.93.195.75	attack	(mod_security) mod_security (id:210730) triggered by 193.93.195.75 (RU/Russia/-): 5 in the last 300 secs	2020-10-04 09:01:46
157.245.154.123	attackbots	Oct 3 16:50:10 theomazars sshd[8180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.154.123 user=root Oct 3 16:50:12 theomazars sshd[8180]: Failed password for root from 157.245.154.123 port 50672 ssh2	2020-10-04 09:14:01
88.252.122.184	attack	445/tcp [2020-10-02]1pkt	2020-10-04 08:56:17
212.129.47.117	attackbots	Icarus honeypot on github	2020-10-04 09:05:04
51.116.190.185	attackspam	Configuration snooping (/.env), accessed by IP not domain: 51.116.190.185 - - [02/Oct/2020:20:50:45 +0100] "GET /.env HTTP/1.1" 404 243 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"	2020-10-04 09:25:33
124.156.119.150	attack	Invalid user office from 124.156.119.150 port 33868	2020-10-04 08:50:51
129.204.121.113	attackspam	Sep 29 05:22:08 ghostname-secure sshd[24149]: Failed password for invalid user b from 129.204.121.113 port 48926 ssh2 Sep 29 05:22:08 ghostname-secure sshd[24149]: Received disconnect from 129.204.121.113: 11: Bye Bye [preauth] Sep 29 05:33:49 ghostname-secure sshd[24237]: Connection closed by 129.204.121.113 [preauth] Sep 29 05:37:18 ghostname-secure sshd[24308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.121.113 user=r.r Sep 29 05:37:20 ghostname-secure sshd[24308]: Failed password for r.r from 129.204.121.113 port 41428 ssh2 Sep 29 05:37:20 ghostname-secure sshd[24308]: Received disconnect from 129.204.121.113: 11: Bye Bye [preauth] Sep 29 05:41:45 ghostname-secure sshd[24448]: Failed password for invalid user nagios from 129.204.121.113 port 60934 ssh2 Sep 29 05:41:45 ghostname-secure sshd[24448]: Received disconnect from 129.204.121.113: 11: Bye Bye [preauth] Sep 29 05:46:01 ghostname-secure sshd[24493]: Failed ........ -------------------------------	2020-10-04 08:53:37
106.13.130.166	attack	Automatic report - Banned IP Access	2020-10-04 08:51:20
94.153.224.202	attack	94.153.224.202 - - [04/Oct/2020:02:47:05 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [04/Oct/2020:02:47:07 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [04/Oct/2020:02:47:08 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-04 09:11:57
103.127.206.179	attackspam	Oct 4 03:02:38 * sshd[13403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.127.206.179 Oct 4 03:02:40 * sshd[13403]: Failed password for invalid user alex from 103.127.206.179 port 49792 ssh2	2020-10-04 09:18:50
203.189.151.117	attackbots	22/tcp 8291/tcp... [2020-10-02]5pkt,2pt.(tcp)	2020-10-04 09:00:24
154.83.16.63	attackbots	SSH auth scanning - multiple failed logins	2020-10-04 09:08:29

Recently Reported IPs

109.197.120.2	109.197.253.237	109.197.48.26	109.197.49.26
109.198.104.205	109.198.104.236	109.198.14.52	109.198.191.181
109.198.192.130	109.199.115.62	109.199.184.11	109.199.20.16
109.199.20.4	109.199.231.45	109.199.234.1	109.200.18.66
109.201.132.54	109.201.134.213	109.201.135.40	109.202.108.149