137.226.11.130

Basic Info

City: Aachen

Region: North Rhine-Westphalia

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
137.226.113.10	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-12 01:59:28
137.226.113.10	attackbots	Port scan denied	2020-09-11 17:50:45
137.226.113.56	attackbotsspam	4843/tcp 1883/tcp 8883/tcp... [2020-06-14/08-11]44pkt,5pt.(tcp)	2020-08-12 07:49:20
137.226.113.56	attackspam	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 4840 [T]	2020-07-20 06:50:01
137.226.113.56	attackbots	Port Scan ...	2020-07-14 02:14:02
137.226.113.9	attackspambots	port scan and connect, tcp 443 (https)	2020-06-06 21:06:05
137.226.113.56	attackbots	srv02 Mass scanning activity detected Target: 102(iso-tsap) ..	2020-06-01 20:17:23
137.226.113.27	attackbots	mozilla/5.0+zgrab/0.x+(compatible;+researchscan/t12sns;++http://researchscan.comsys.rwth-aachen.de)	2020-05-31 07:27:51
137.226.113.31	attackspambots	Port Scan detected from 137.226.113.31 (DE/Germany/researchscan23.comsys.rwth-aachen.de). 5 hits in the last 35 seconds	2020-05-25 17:19:31
137.226.113.10	attack	137.226.113.10	2020-04-14 12:57:11
137.226.113.56	attack	Apr 13 15:48:24 debian-2gb-nbg1-2 kernel: \[9044698.686856\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=137.226.113.56 DST=195.201.40.59 LEN=64 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=TCP SPT=47703 DPT=102 WINDOW=65535 RES=0x00 SYN URGP=0	2020-04-14 01:14:48
137.226.113.56	attackbots	" "	2020-04-06 00:29:43
137.226.113.10	attack	Mar 5 21:51:17 debian-2gb-nbg1-2 kernel: \[5700646.129243\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=137.226.113.10 DST=195.201.40.59 LEN=1228 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=50832 DPT=443 LEN=1208	2020-03-06 05:32:53
137.226.113.56	attack	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 102 [J]	2020-03-03 00:36:56
137.226.113.56	attackbots	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 4840 [J]	2020-03-02 02:31:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.226.11.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59260
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;137.226.11.130.			IN	A

;; AUTHORITY SECTION:
.			118	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062100 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 21 17:21:08 CST 2022
;; MSG SIZE  rcvd: 107

Host info

130.11.226.137.in-addr.arpa domain name pointer kff130.ghi.rwth-aachen.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.11.226.137.in-addr.arpa	name = kff130.ghi.rwth-aachen.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.77.77.162	attackbots	(eximsyntax) Exim syntax errors from 222.77.77.162 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-04-01 01:59:54 SMTP call from [222.77.77.162] dropped: too many syntax or protocol errors (last command was "?\034?\032?\027?\031?\034?\033?\030?\032?\026?\016?\r?\v?\f? ?")	2020-04-01 07:51:03
27.254.136.29	attackbotsspam	Apr 1 00:42:26 [HOSTNAME] sshd[21855]: User removed from 27.254.136.29 not allowed because not listed in AllowUsers Apr 1 00:42:26 [HOSTNAME] sshd[21855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.136.29 user=removed Apr 1 00:42:28 [HOSTNAME] sshd[21855]: Failed password for invalid user removed from 27.254.136.29 port 48480 ssh2 ...	2020-04-01 08:08:43
68.183.31.138	attack	firewall-block, port(s): 17490/tcp	2020-04-01 07:47:37
103.100.211.119	attackbots	Apr 1 01:44:20 vps sshd[843488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.100.211.119 user=root Apr 1 01:44:22 vps sshd[843488]: Failed password for root from 103.100.211.119 port 58719 ssh2 Apr 1 01:48:34 vps sshd[866372]: Invalid user so from 103.100.211.119 port 36966 Apr 1 01:48:34 vps sshd[866372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.100.211.119 Apr 1 01:48:36 vps sshd[866372]: Failed password for invalid user so from 103.100.211.119 port 36966 ssh2 ...	2020-04-01 07:55:15
111.101.138.126	attackbotsspam	Brute force SMTP login attempted. ...	2020-04-01 07:57:09
95.110.229.194	attackbotsspam	Invalid user liuzhenfeng from 95.110.229.194 port 56784	2020-04-01 08:13:46
106.12.109.33	attack	Invalid user zabbix from 106.12.109.33 port 39130	2020-04-01 08:17:45
190.144.135.118	attackbots	Apr 1 01:17:43 pve sshd[5354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.144.135.118 Apr 1 01:17:45 pve sshd[5354]: Failed password for invalid user !qasdfv123 from 190.144.135.118 port 44204 ssh2 Apr 1 01:22:44 pve sshd[6169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.144.135.118	2020-04-01 08:12:59
45.142.195.2	attackspambots	Rude login attack (1747 tries in 1d)	2020-04-01 07:59:23
67.205.153.16	attackbotsspam	Scanned 3 times in the last 24 hours on port 22	2020-04-01 08:10:38
51.178.50.244	attack	(sshd) Failed SSH login from 51.178.50.244 (FR/France/244.ip-51-178-50.eu): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 1 00:58:50 ubnt-55d23 sshd[12541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.50.244 user=root Apr 1 00:58:52 ubnt-55d23 sshd[12541]: Failed password for root from 51.178.50.244 port 46668 ssh2	2020-04-01 08:20:16
110.87.106.72	attackspam	Brute force SMTP login attempted. ...	2020-04-01 08:09:55
117.107.163.240	attack	$f2bV_matches	2020-04-01 08:14:15
110.88.116.170	attackbotsspam	Brute force SMTP login attempted. ...	2020-04-01 08:07:16
222.186.30.76	attack	2020-03-31T23:57:44.911320abusebot.cloudsearch.cf sshd[8961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root 2020-03-31T23:57:46.799506abusebot.cloudsearch.cf sshd[8961]: Failed password for root from 222.186.30.76 port 34862 ssh2 2020-03-31T23:57:48.768585abusebot.cloudsearch.cf sshd[8961]: Failed password for root from 222.186.30.76 port 34862 ssh2 2020-03-31T23:57:44.911320abusebot.cloudsearch.cf sshd[8961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root 2020-03-31T23:57:46.799506abusebot.cloudsearch.cf sshd[8961]: Failed password for root from 222.186.30.76 port 34862 ssh2 2020-03-31T23:57:48.768585abusebot.cloudsearch.cf sshd[8961]: Failed password for root from 222.186.30.76 port 34862 ssh2 2020-03-31T23:57:44.911320abusebot.cloudsearch.cf sshd[8961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.7 ...	2020-04-01 08:09:10

Recently Reported IPs

137.226.11.90	137.226.11.203	137.226.11.213	137.226.12.13
137.226.12.23	137.226.12.108	137.226.12.147	222.124.205.138
137.226.12.157	137.226.12.167	137.226.13.55	137.226.13.65
137.226.13.76	137.226.13.95	137.226.13.145	137.226.13.154
137.226.13.184	137.226.13.243	137.226.6.212	137.226.190.118