109.198.2.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Serbia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
109.198.203.13	attack	Port Scan ...	2020-09-21 21:19:48
109.198.203.13	attack	Port Scan ...	2020-09-21 13:06:18
109.198.203.13	attackbotsspam	Port Scan ...	2020-09-21 04:58:02
109.198.222.209	attack	port scan and connect, tcp 23 (telnet)	2019-09-11 17:21:31
109.198.216.156	attack	Unauthorized connection attempt from IP address 109.198.216.156 on Port 445(SMB)	2019-07-06 06:49:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.198.2.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46298
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.198.2.55.			IN	A

;; AUTHORITY SECTION:
.			262	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 00:24:27 CST 2022
;; MSG SIZE  rcvd: 105

Host info

55.2.198.109.in-addr.arpa domain name pointer static-109-198-2-55.cpe.sn.co.rs.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.2.198.109.in-addr.arpa	name = static-109-198-2-55.cpe.sn.co.rs.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.140	attackspam	Oct 12 21:46:23 hpm sshd\[32113\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Oct 12 21:46:25 hpm sshd\[32113\]: Failed password for root from 222.186.175.140 port 2974 ssh2 Oct 12 21:46:29 hpm sshd\[32113\]: Failed password for root from 222.186.175.140 port 2974 ssh2 Oct 12 21:46:51 hpm sshd\[32154\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Oct 12 21:46:53 hpm sshd\[32154\]: Failed password for root from 222.186.175.140 port 17468 ssh2	2019-10-13 15:47:15
125.32.1.146	attackspam	Oct 13 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=125.32.1.146, lip=REMOVED, TLS: Disconnected, session=\ Oct 13 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 7 secs\): user=\, method=PLAIN, rip=125.32.1.146, lip=REMOVED, TLS: Disconnected, session=\<1fuMAMKUtrt9IAGS\> Oct 13 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=125.32.1.146, lip=REMOVED, TLS: Disconnected, session=\	2019-10-13 15:37:47
222.231.4.221	attackspambots	The IP address [222.231.4.221] experienced 5 failed attempts when attempting to log into SSH	2019-10-13 16:12:58
183.82.118.131	attackbots	2019-10-13T09:13:22.306228 sshd[9582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.118.131 user=root 2019-10-13T09:13:24.355671 sshd[9582]: Failed password for root from 183.82.118.131 port 37115 ssh2 2019-10-13T09:18:02.914059 sshd[9668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.118.131 user=root 2019-10-13T09:18:04.737412 sshd[9668]: Failed password for root from 183.82.118.131 port 56893 ssh2 2019-10-13T09:22:45.058219 sshd[9716]: Invalid user 123 from 183.82.118.131 port 48437 ...	2019-10-13 15:56:05
154.83.13.119	attackspambots	Oct 7 20:14:38 web1 sshd[18742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.83.13.119 user=r.r Oct 7 20:14:40 web1 sshd[18742]: Failed password for r.r from 154.83.13.119 port 40676 ssh2 Oct 7 20:14:41 web1 sshd[18742]: Received disconnect from 154.83.13.119: 11: Bye Bye [preauth] Oct 7 20:39:39 web1 sshd[20915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.83.13.119 user=r.r Oct 7 20:39:41 web1 sshd[20915]: Failed password for r.r from 154.83.13.119 port 16649 ssh2 Oct 7 20:39:42 web1 sshd[20915]: Received disconnect from 154.83.13.119: 11: Bye Bye [preauth] Oct 7 20:44:20 web1 sshd[21304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.83.13.119 user=r.r Oct 7 20:44:22 web1 sshd[21304]: Failed password for r.r from 154.83.13.119 port 58147 ssh2 Oct 7 20:44:22 web1 sshd[21304]: Received disconnect from 154.83.13.119: 1........ -------------------------------	2019-10-13 15:52:06
218.70.174.23	attackspambots	Oct 13 04:00:50 plusreed sshd[13414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.70.174.23 user=root Oct 13 04:00:52 plusreed sshd[13414]: Failed password for root from 218.70.174.23 port 52078 ssh2 ...	2019-10-13 16:04:22
114.115.240.97	attackspambots	Oct 7 19:04:37 hostnameis sshd[42092]: reveeclipse mapping checking getaddrinfo for ecs-114-115-240-97.compute.hwclouds-dns.com [114.115.240.97] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 7 19:04:37 hostnameis sshd[42092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.115.240.97 user=r.r Oct 7 19:04:39 hostnameis sshd[42092]: Failed password for r.r from 114.115.240.97 port 40436 ssh2 Oct 7 19:04:40 hostnameis sshd[42092]: Received disconnect from 114.115.240.97: 11: Bye Bye [preauth] Oct 7 19:13:07 hostnameis sshd[42162]: reveeclipse mapping checking getaddrinfo for ecs-114-115-240-97.compute.hwclouds-dns.com [114.115.240.97] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 7 19:13:07 hostnameis sshd[42162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.115.240.97 user=r.r Oct 7 19:13:09 hostnameis sshd[42162]: Failed password for r.r from 114.115.240.97 port 34372 ssh2 Oct 7 19:13........ ------------------------------	2019-10-13 15:35:47
159.203.74.227	attackspam	Oct 12 18:19:05 wbs sshd\[929\]: Invalid user Elephant@123 from 159.203.74.227 Oct 12 18:19:05 wbs sshd\[929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.227 Oct 12 18:19:07 wbs sshd\[929\]: Failed password for invalid user Elephant@123 from 159.203.74.227 port 42930 ssh2 Oct 12 18:22:56 wbs sshd\[1311\]: Invalid user Bet2017 from 159.203.74.227 Oct 12 18:22:56 wbs sshd\[1311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.227	2019-10-13 15:45:24
134.209.99.209	attackbots	Oct 9 10:12:13 zn006 sshd[4790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.99.209 user=r.r Oct 9 10:12:15 zn006 sshd[4790]: Failed password for r.r from 134.209.99.209 port 43352 ssh2 Oct 9 10:12:15 zn006 sshd[4790]: Received disconnect from 134.209.99.209: 11: Bye Bye [preauth] Oct 9 10:25:50 zn006 sshd[6217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.99.209 user=r.r Oct 9 10:25:53 zn006 sshd[6217]: Failed password for r.r from 134.209.99.209 port 42416 ssh2 Oct 9 10:25:53 zn006 sshd[6217]: Received disconnect from 134.209.99.209: 11: Bye Bye [preauth] Oct 9 10:30:08 zn006 sshd[6710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.99.209 user=r.r Oct 9 10:30:10 zn006 sshd[6710]: Failed password for r.r from 134.209.99.209 port 56652 ssh2 Oct 9 10:30:10 zn006 sshd[6710]: Received disconnect from 134.209......... -------------------------------	2019-10-13 16:06:52
37.59.45.134	attackbotsspam	[portscan] Port scan	2019-10-13 16:02:52
104.210.222.38	attack	F2B jail: sshd. Time: 2019-10-13 06:39:43, Reported by: VKReport	2019-10-13 16:00:25
130.61.23.32	attackbots	Brute force SMTP login attempts.	2019-10-13 15:39:43
69.3.118.101	attackbots	Oct 13 09:11:57 vps sshd[27357]: Failed password for root from 69.3.118.101 port 61489 ssh2 Oct 13 09:33:53 vps sshd[28245]: Failed password for root from 69.3.118.101 port 58221 ssh2 ...	2019-10-13 16:00:38
62.234.91.173	attackbotsspam	Oct 13 06:56:30 localhost sshd\[10207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.91.173 user=root Oct 13 06:56:33 localhost sshd\[10207\]: Failed password for root from 62.234.91.173 port 47380 ssh2 Oct 13 07:02:11 localhost sshd\[10405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.91.173 user=root Oct 13 07:02:13 localhost sshd\[10405\]: Failed password for root from 62.234.91.173 port 38522 ssh2 Oct 13 07:07:55 localhost sshd\[10630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.91.173 user=root ...	2019-10-13 15:36:24
14.116.207.212	attackbotsspam	Unauthorized connection attempt from IP address 14.116.207.212 on Port 445(SMB)	2019-10-13 15:32:08

Recently Reported IPs

49.82.114.63	177.223.108.79	187.188.24.3	61.52.88.214
181.48.70.30	106.12.122.50	60.214.80.81	115.55.52.69
190.103.192.56	2.176.170.208	179.27.73.234	95.174.125.31
82.156.47.242	176.114.189.81	190.215.220.38	96.18.89.244
103.134.113.122	125.127.53.216	49.232.155.44	222.175.139.188