138.109.231.111

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.109.231.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44829
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.109.231.111.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022602 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 11:31:30 CST 2025
;; MSG SIZE  rcvd: 108

Host info

Host 111.231.109.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 111.231.109.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.45.142.15	attackbotsspam	Jun 8 05:15:10 zimbra sshd[5048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=r.r Jun 8 05:15:12 zimbra sshd[5048]: Failed password for r.r from 119.45.142.15 port 59904 ssh2 Jun 8 05:15:16 zimbra sshd[5048]: Received disconnect from 119.45.142.15 port 59904:11: Bye Bye [preauth] Jun 8 05:15:16 zimbra sshd[5048]: Disconnected from 119.45.142.15 port 59904 [preauth] Jun 8 05:37:58 zimbra sshd[23781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=r.r Jun 8 05:38:00 zimbra sshd[23781]: Failed password for r.r from 119.45.142.15 port 59488 ssh2 Jun 8 05:38:00 zimbra sshd[23781]: Received disconnect from 119.45.142.15 port 59488:11: Bye Bye [preauth] Jun 8 05:38:00 zimbra sshd[23781]: Disconnected from 119.45.142.15 port 59488 [preauth] Jun 8 05:43:09 zimbra sshd[28151]: Connection closed by 119.45.142.15 port 54628 [preauth] Jun 8 05:47:48 ........ -------------------------------	2020-06-09 06:31:43
1.214.215.236	attack	Jun 9 00:13:05 abendstille sshd\[12640\]: Invalid user chef from 1.214.215.236 Jun 9 00:13:05 abendstille sshd\[12640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.215.236 Jun 9 00:13:07 abendstille sshd\[12640\]: Failed password for invalid user chef from 1.214.215.236 port 60786 ssh2 Jun 9 00:16:41 abendstille sshd\[16302\]: Invalid user guodaojing from 1.214.215.236 Jun 9 00:16:41 abendstille sshd\[16302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.215.236 ...	2020-06-09 06:49:32
188.166.117.213	attackbotsspam	2020-06-08 20:01:14,165 fail2ban.actions [937]: NOTICE [sshd] Ban 188.166.117.213 2020-06-08 20:39:34,301 fail2ban.actions [937]: NOTICE [sshd] Ban 188.166.117.213 2020-06-08 21:15:00,597 fail2ban.actions [937]: NOTICE [sshd] Ban 188.166.117.213 2020-06-08 21:51:14,780 fail2ban.actions [937]: NOTICE [sshd] Ban 188.166.117.213 2020-06-08 22:24:40,147 fail2ban.actions [937]: NOTICE [sshd] Ban 188.166.117.213 ...	2020-06-09 06:29:10
213.33.195.214	attack	SSH brute-force: detected 10 distinct username(s) / 14 distinct password(s) within a 24-hour window.	2020-06-09 06:46:48
45.138.72.166	attack	" "	2020-06-09 06:45:21
54.223.114.32	attackspambots	Jun 8 23:56:00 vpn01 sshd[17044]: Failed password for root from 54.223.114.32 port 50036 ssh2 ...	2020-06-09 06:23:08
194.182.65.100	attackbotsspam	Jun 8 22:24:42 ajax sshd[14986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.182.65.100 Jun 8 22:24:44 ajax sshd[14986]: Failed password for invalid user user from 194.182.65.100 port 33010 ssh2	2020-06-09 06:44:06
221.178.124.130	attack	IP 221.178.124.130 attacked honeypot on port: 139 at 6/8/2020 9:24:24 PM	2020-06-09 06:36:39
198.71.238.20	attack	198.71.238.20 - - [08/Jun/2020:22:41:36 +0200] "POST /xmlrpc.php HTTP/1.1" 403 1024 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" 198.71.238.20 - - [08/Jun/2020:22:41:36 +0200] "POST /xmlrpc.php HTTP/1.1" 403 1024 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" ...	2020-06-09 06:22:22
115.159.198.41	attackbotsspam	web-1 [ssh_2] SSH Attack	2020-06-09 06:27:45
182.61.172.57	attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-09 06:45:04
221.178.124.62	attackspam	IP 221.178.124.62 attacked honeypot on port: 139 at 6/8/2020 9:24:25 PM	2020-06-09 06:35:21
152.136.203.208	attack	2020-06-08T23:59:55+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-06-09 06:36:13
193.112.191.228	attack	Jun 8 22:56:21 PorscheCustomer sshd[5748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.191.228 Jun 8 22:56:23 PorscheCustomer sshd[5748]: Failed password for invalid user zhangpw from 193.112.191.228 port 57110 ssh2 Jun 8 22:59:54 PorscheCustomer sshd[5825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.191.228 ...	2020-06-09 06:24:07
190.200.225.111	attack	1591647893 - 06/08/2020 22:24:53 Host: 190.200.225.111/190.200.225.111 Port: 445 TCP Blocked	2020-06-09 06:21:10

Recently Reported IPs

174.93.214.149	244.32.111.140	72.53.245.13	248.0.138.204
32.198.62.133	28.235.131.130	211.248.139.130	210.51.252.241
125.206.227.11	213.31.244.215	176.29.147.85	145.225.170.83
24.0.245.34	188.161.125.63	131.120.29.7	240.238.172.233
241.48.67.3	225.6.173.191	131.252.122.82	157.94.148.243