137.226.11.220

Basic Info

City: Aachen

Region: North Rhine-Westphalia

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
137.226.113.10	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-12 01:59:28
137.226.113.10	attackbots	Port scan denied	2020-09-11 17:50:45
137.226.113.56	attackbotsspam	4843/tcp 1883/tcp 8883/tcp... [2020-06-14/08-11]44pkt,5pt.(tcp)	2020-08-12 07:49:20
137.226.113.56	attackspam	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 4840 [T]	2020-07-20 06:50:01
137.226.113.56	attackbots	Port Scan ...	2020-07-14 02:14:02
137.226.113.9	attackspambots	port scan and connect, tcp 443 (https)	2020-06-06 21:06:05
137.226.113.56	attackbots	srv02 Mass scanning activity detected Target: 102(iso-tsap) ..	2020-06-01 20:17:23
137.226.113.27	attackbots	mozilla/5.0+zgrab/0.x+(compatible;+researchscan/t12sns;++http://researchscan.comsys.rwth-aachen.de)	2020-05-31 07:27:51
137.226.113.31	attackspambots	Port Scan detected from 137.226.113.31 (DE/Germany/researchscan23.comsys.rwth-aachen.de). 5 hits in the last 35 seconds	2020-05-25 17:19:31
137.226.113.10	attack	137.226.113.10	2020-04-14 12:57:11
137.226.113.56	attack	Apr 13 15:48:24 debian-2gb-nbg1-2 kernel: \[9044698.686856\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=137.226.113.56 DST=195.201.40.59 LEN=64 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=TCP SPT=47703 DPT=102 WINDOW=65535 RES=0x00 SYN URGP=0	2020-04-14 01:14:48
137.226.113.56	attackbots	" "	2020-04-06 00:29:43
137.226.113.10	attack	Mar 5 21:51:17 debian-2gb-nbg1-2 kernel: \[5700646.129243\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=137.226.113.10 DST=195.201.40.59 LEN=1228 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=50832 DPT=443 LEN=1208	2020-03-06 05:32:53
137.226.113.56	attack	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 102 [J]	2020-03-03 00:36:56
137.226.113.56	attackbots	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 4840 [J]	2020-03-02 02:31:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.226.11.220
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27074
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;137.226.11.220.			IN	A

;; AUTHORITY SECTION:
.			297	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062402 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 25 08:54:32 CST 2022
;; MSG SIZE  rcvd: 107

Host info

220.11.226.137.in-addr.arpa domain name pointer kff220.ghi.rwth-aachen.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
220.11.226.137.in-addr.arpa	name = kff220.ghi.rwth-aachen.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.82.77.245	attack	80.82.77.245 was recorded 11 times by 6 hosts attempting to connect to the following ports: 1041,1032,1042. Incident counter (4h, 24h, all-time): 11, 81, 18229	2020-01-20 01:00:49
185.175.93.34	attackspam	Portscan or hack attempt detected by psad/fwsnort	2020-01-20 00:55:20
190.22.247.96	attackbots	Lines containing failures of 190.22.247.96 Jan 19 14:17:38 kmh-vmh-001-fsn07 sshd[5830]: Did not receive identification string from 190.22.247.96 port 44026 Jan 19 14:22:30 kmh-vmh-001-fsn07 sshd[14934]: Received disconnect from 190.22.247.96 port 45580:11: Bye Bye [preauth] Jan 19 14:22:30 kmh-vmh-001-fsn07 sshd[14934]: Disconnected from 190.22.247.96 port 45580 [preauth] Jan 19 14:39:04 kmh-vmh-001-fsn07 sshd[11284]: Invalid user admin from 190.22.247.96 port 48170 Jan 19 14:39:04 kmh-vmh-001-fsn07 sshd[11284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.22.247.96 Jan 19 14:39:06 kmh-vmh-001-fsn07 sshd[11284]: Failed password for invalid user admin from 190.22.247.96 port 48170 ssh2 Jan 19 14:39:07 kmh-vmh-001-fsn07 sshd[11284]: Received disconnect from 190.22.247.96 port 48170:11: Bye Bye [preauth] Jan 19 14:39:07 kmh-vmh-001-fsn07 sshd[11284]: Disconnected from invalid user admin 190.22.247.96 port 48170 [preauth] Jan ........ ------------------------------	2020-01-20 01:00:24
84.205.228.2	attack	Unauthorized connection attempt detected from IP address 84.205.228.2 to port 2220 [J]	2020-01-20 01:09:47
49.146.44.251	attackspam	1579438541 - 01/19/2020 13:55:41 Host: 49.146.44.251/49.146.44.251 Port: 445 TCP Blocked	2020-01-20 01:01:13
188.166.150.17	attackbotsspam	2020-01-19T13:32:49.888141abusebot-8.cloudsearch.cf sshd[6794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.150.17 user=root 2020-01-19T13:32:52.212853abusebot-8.cloudsearch.cf sshd[6794]: Failed password for root from 188.166.150.17 port 48709 ssh2 2020-01-19T13:35:18.522855abusebot-8.cloudsearch.cf sshd[7121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.150.17 user=root 2020-01-19T13:35:20.630371abusebot-8.cloudsearch.cf sshd[7121]: Failed password for root from 188.166.150.17 port 33431 ssh2 2020-01-19T13:37:44.818326abusebot-8.cloudsearch.cf sshd[7439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.150.17 user=root 2020-01-19T13:37:47.302176abusebot-8.cloudsearch.cf sshd[7439]: Failed password for root from 188.166.150.17 port 46379 ssh2 2020-01-19T13:40:15.791100abusebot-8.cloudsearch.cf sshd[7813]: Invalid user amoreno from 1 ...	2020-01-20 00:38:00
45.143.221.27	attack	Jan 19 17:20:05 debian-2gb-nbg1-2 kernel: \[1710093.536532\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.143.221.27 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=57675 PROTO=TCP SPT=50780 DPT=22 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-20 00:43:18
171.100.86.68	attackspam	Unauthorized connection attempt detected from IP address 171.100.86.68 to port 81 [J]	2020-01-20 01:10:35
119.236.46.70	attackbotsspam	Unauthorized connection attempt detected from IP address 119.236.46.70 to port 5555 [J]	2020-01-20 01:07:39
62.210.167.192	attackspambots	firewall-block, port(s): 5090/udp	2020-01-20 00:40:22
118.175.46.191	attackbots	Unauthorized connection attempt detected from IP address 118.175.46.191 to port 445 [T]	2020-01-20 00:39:14
112.21.191.244	attack	Unauthorized connection attempt detected from IP address 112.21.191.244 to port 2220 [J]	2020-01-20 01:15:10
113.254.177.52	attackbots	Honeypot attack, port: 5555, PTR: 52-177-254-113-on-nets.com.	2020-01-20 00:48:17
178.211.96.40	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-01-20 00:34:07
89.165.3.29	attack	Honeypot attack, port: 445, PTR: adsl-89-165-3-29.sabanet.ir.	2020-01-20 00:46:20

Recently Reported IPs

137.226.96.82	137.226.74.228	45.35.12.122	207.249.96.104
137.226.106.146	137.226.116.215	137.226.149.43	137.226.104.136
167.71.205.44	188.143.232.71	165.232.156.83	68.56.63.49
168.253.78.194	189.135.31.163	169.229.135.61	190.179.166.141
142.93.239.193	103.151.125.9	169.229.139.80	169.229.136.110