138.219.111.198

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.219.111.21	attackbots	Automatic report - Port Scan Attack	2020-03-21 18:45:14
138.219.111.3	attackspam	Unauthorized connection attempt detected from IP address 138.219.111.3 to port 23	2020-03-17 21:58:31
138.219.111.42	attackbots	unauthorized connection attempt	2020-02-07 13:51:07
138.219.111.27	attack	unauthorized connection attempt	2020-01-17 18:49:31
138.219.111.161	attackbotsspam	Unauthorized connection attempt detected from IP address 138.219.111.161 to port 8080	2020-01-06 04:42:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.219.111.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58855
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.219.111.198.		IN	A

;; AUTHORITY SECTION:
.			494	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:43:06 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 198.111.219.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 198.111.219.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.52.245.82	attack	Jul 9 05:57:36 smtp postfix/smtpd[73587]: NOQUEUE: reject: RCPT from unknown[103.52.245.82]: 554 5.7.1 Service unavailable; Client host [103.52.245.82] blocked using cbl.abuseat.org; Blocked - see http://www.abuseat.org/lookup.cgi?ip=103.52.245.82; from= to= proto=ESMTP helo=<[103.52.245.82]> ...	2020-07-09 12:59:47
45.183.193.1	attack	$f2bV_matches	2020-07-09 13:13:22
218.92.0.215	attack	Jul 9 07:04:32 eventyay sshd[16997]: Failed password for root from 218.92.0.215 port 42594 ssh2 Jul 9 07:04:47 eventyay sshd[17006]: Failed password for root from 218.92.0.215 port 10615 ssh2 ...	2020-07-09 13:06:35
14.245.17.84	attackbotsspam	1594267078 - 07/09/2020 05:57:58 Host: 14.245.17.84/14.245.17.84 Port: 445 TCP Blocked	2020-07-09 12:33:17
167.99.224.160	attackspambots	Jul 9 06:40:20 vmd17057 sshd[10245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.224.160 Jul 9 06:40:22 vmd17057 sshd[10245]: Failed password for invalid user dbadmin from 167.99.224.160 port 35558 ssh2 ...	2020-07-09 13:11:37
95.243.136.198	attack	2020-07-09T04:34:24.843222shield sshd\[5564\]: Invalid user veda from 95.243.136.198 port 57116 2020-07-09T04:34:24.846868shield sshd\[5564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-95-243-136-198.business.telecomitalia.it 2020-07-09T04:34:26.268749shield sshd\[5564\]: Failed password for invalid user veda from 95.243.136.198 port 57116 ssh2 2020-07-09T04:37:07.452184shield sshd\[5976\]: Invalid user xiaoguo from 95.243.136.198 port 64317 2020-07-09T04:37:07.455815shield sshd\[5976\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-95-243-136-198.business.telecomitalia.it	2020-07-09 12:45:54
168.0.97.222	attackbots	Honeypot attack, port: 445, PTR: 168-0-97-222.static.n-multimidia.com.br.	2020-07-09 13:06:17
106.13.6.116	attackbots	Jul 9 06:22:20 PorscheCustomer sshd[18477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.6.116 Jul 9 06:22:22 PorscheCustomer sshd[18477]: Failed password for invalid user loan from 106.13.6.116 port 60330 ssh2 Jul 9 06:24:44 PorscheCustomer sshd[18543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.6.116 ...	2020-07-09 12:39:47
173.236.224.115	attack	173.236.224.115 - - [09/Jul/2020:04:57:50 +0100] "POST /wp-login.php HTTP/1.1" 200 1993 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 173.236.224.115 - - [09/Jul/2020:04:57:51 +0100] "POST /wp-login.php HTTP/1.1" 200 1993 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 173.236.224.115 - - [09/Jul/2020:04:57:52 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-09 12:41:44
222.186.169.192	attackbots	Jul 9 06:43:05 minden010 sshd[11737]: Failed password for root from 222.186.169.192 port 64188 ssh2 Jul 9 06:43:18 minden010 sshd[11737]: Failed password for root from 222.186.169.192 port 64188 ssh2 Jul 9 06:43:18 minden010 sshd[11737]: error: maximum authentication attempts exceeded for root from 222.186.169.192 port 64188 ssh2 [preauth] ...	2020-07-09 12:55:44
104.248.224.124	attack	104.248.224.124 - - [09/Jul/2020:04:57:32 +0100] "POST /wp-login.php HTTP/1.1" 200 1968 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.224.124 - - [09/Jul/2020:04:57:33 +0100] "POST /wp-login.php HTTP/1.1" 200 1972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.224.124 - - [09/Jul/2020:04:57:33 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-09 13:02:47
185.175.32.201	attack	Honeypot attack, port: 445, PTR: dynamic-185-175-32-201.israelinternet.co.il.	2020-07-09 12:50:53
163.47.146.233	attackbotsspam	Unauthorised access (Jul 9) SRC=163.47.146.233 LEN=40 TTL=236 ID=5117 TCP DPT=1433 WINDOW=1024 SYN	2020-07-09 13:15:46
217.182.205.27	attack	2020-07-09T06:03:07.531760sd-86998 sshd[11347]: Invalid user zhangchunzhi from 217.182.205.27 port 56292 2020-07-09T06:03:07.537179sd-86998 sshd[11347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-dfbeacd0.vps.ovh.net 2020-07-09T06:03:07.531760sd-86998 sshd[11347]: Invalid user zhangchunzhi from 217.182.205.27 port 56292 2020-07-09T06:03:09.609725sd-86998 sshd[11347]: Failed password for invalid user zhangchunzhi from 217.182.205.27 port 56292 ssh2 2020-07-09T06:09:47.504211sd-86998 sshd[12031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-dfbeacd0.vps.ovh.net user=sshd 2020-07-09T06:09:49.822712sd-86998 sshd[12031]: Failed password for sshd from 217.182.205.27 port 34178 ssh2 ...	2020-07-09 13:10:00
171.227.8.8	attack	Automatic report - Port Scan Attack	2020-07-09 12:38:48

Recently Reported IPs

138.219.111.2	138.219.111.233	138.219.111.200	138.219.111.229
138.219.111.223	138.219.111.206	138.219.111.202	138.219.111.32
138.219.111.220	138.219.111.52	138.219.111.44	118.175.229.157
138.219.111.72	138.219.111.60	138.219.111.56	138.219.111.70
138.219.111.8	138.219.111.78	138.219.111.86	138.219.111.98