137.226.135.168

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.226.135.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29598
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;137.226.135.168.		IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061201 1800 900 604800 86400

;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 13 03:36:36 CST 2022
;; MSG SIZE  rcvd: 108

Host info

168.135.226.137.in-addr.arpa domain name pointer nb168.geo.rwth-aachen.de.
168.135.226.137.in-addr.arpa domain name pointer geo-168.geo.rwth-aachen.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
168.135.226.137.in-addr.arpa	name = nb168.geo.rwth-aachen.de.
168.135.226.137.in-addr.arpa	name = geo-168.geo.rwth-aachen.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.231.49.76	attack	Unauthorised access (Aug 12) SRC=222.231.49.76 LEN=48 TTL=115 ID=7753 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-12 18:44:28
128.14.230.200	attack	Aug 12 08:14:33 hidden sshd[26393]: Failed password for hidden from 128.14.230.200 port 53514 ssh2 Aug 12 08:19:12 hidden sshd[26465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.14.230.200 user=root Aug 12 08:19:15 hidden sshd[26465]: Failed password for hidden from 128.14.230.200 port 36338 ssh2 Aug 12 08:23:54 hidden sshd[32978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.14.230.200 user=root Aug 12 08:23:56 hidden sshd[32978]: Failed password for hidden from 128.14.230.200 port 47394 ssh2	2020-08-12 18:04:55
178.128.233.69	attackspam	Aug 12 11:10:27 nextcloud sshd\[8884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.233.69 user=root Aug 12 11:10:28 nextcloud sshd\[8884\]: Failed password for root from 178.128.233.69 port 60126 ssh2 Aug 12 11:14:55 nextcloud sshd\[13993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.233.69 user=root	2020-08-12 18:04:32
61.177.172.54	attackbotsspam	Aug 12 20:05:25 localhost sshd[1325535]: Unable to negotiate with 61.177.172.54 port 48118: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-08-12 18:39:56
190.145.78.65	attack	Failed password for root from 190.145.78.65 port 36966 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.78.65 user=root Failed password for root from 190.145.78.65 port 48416 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.78.65 user=root Failed password for root from 190.145.78.65 port 59854 ssh2	2020-08-12 18:45:39
167.71.38.104	attackbotsspam	Brute force attempt	2020-08-12 18:57:14
178.252.145.2	attack	20/8/11@23:47:25: FAIL: Alarm-Intrusion address from=178.252.145.2 ...	2020-08-12 18:40:32
14.140.95.157	attackspam	Failed password for root from 14.140.95.157 port 44006 ssh2	2020-08-12 19:05:20
2.226.157.66	attackbots	Aug 12 06:10:25 roki-contabo sshd\[24218\]: Invalid user pi from 2.226.157.66 Aug 12 06:10:25 roki-contabo sshd\[24218\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.226.157.66 Aug 12 06:10:25 roki-contabo sshd\[24221\]: Invalid user pi from 2.226.157.66 Aug 12 06:10:25 roki-contabo sshd\[24221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.226.157.66 Aug 12 06:10:27 roki-contabo sshd\[24218\]: Failed password for invalid user pi from 2.226.157.66 port 55030 ssh2 ...	2020-08-12 18:46:09
77.247.178.200	attackspambots	[2020-08-12 05:13:51] NOTICE[1185][C-0000157d] chan_sip.c: Call from '' (77.247.178.200:63273) to extension '011442037693601' rejected because extension not found in context 'public'. [2020-08-12 05:13:51] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-12T05:13:51.569-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442037693601",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.178.200/63273",ACLName="no_extension_match" [2020-08-12 05:13:51] NOTICE[1185][C-0000157e] chan_sip.c: Call from '' (77.247.178.200:63409) to extension '011442037693601' rejected because extension not found in context 'public'. ...	2020-08-12 18:06:14
185.14.184.143	attack	Aug 12 07:14:15 web sshd[156026]: Failed password for root from 185.14.184.143 port 56228 ssh2 Aug 12 07:19:27 web sshd[156045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.14.184.143 user=root Aug 12 07:19:29 web sshd[156045]: Failed password for root from 185.14.184.143 port 39914 ssh2 ...	2020-08-12 18:40:48
104.224.180.87	attack	Aug 9 23:44:19 CT3029 sshd[28570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.224.180.87 user=r.r Aug 9 23:44:21 CT3029 sshd[28570]: Failed password for r.r from 104.224.180.87 port 37414 ssh2 Aug 9 23:44:21 CT3029 sshd[28570]: Received disconnect from 104.224.180.87 port 37414:11: Bye Bye [preauth] Aug 9 23:44:21 CT3029 sshd[28570]: Disconnected from 104.224.180.87 port 37414 [preauth] Aug 10 00:07:11 CT3029 sshd[28631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.224.180.87 user=r.r Aug 10 00:07:13 CT3029 sshd[28631]: Failed password for r.r from 104.224.180.87 port 33700 ssh2 Aug 10 00:07:13 CT3029 sshd[28631]: Received disconnect from 104.224.180.87 port 33700:11: Bye Bye [preauth] Aug 10 00:07:13 CT3029 sshd[28631]: Disconnected from 104.224.180.87 port 33700 [preauth] Aug 10 00:18:38 CT3029 sshd[28653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ........ -------------------------------	2020-08-12 18:58:09
106.12.175.226	attack	Aug 12 06:17:45 eventyay sshd[4318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.175.226 Aug 12 06:17:47 eventyay sshd[4318]: Failed password for invalid user yd2008slkui from 106.12.175.226 port 35470 ssh2 Aug 12 06:23:10 eventyay sshd[4479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.175.226 ...	2020-08-12 18:03:44
171.249.136.114	attack	SSH Server BruteForce Attack	2020-08-12 18:59:05
194.170.156.9	attackspam	fail2ban detected brute force on sshd	2020-08-12 18:37:35

Recently Reported IPs

137.226.135.47	137.226.135.218	137.226.136.54	137.226.136.137
137.226.136.180	137.226.137.162	137.226.137.13	137.226.137.253
137.226.135.101	137.226.76.79	137.226.79.194	141.212.122.202
137.226.115.224	137.226.62.0	221.230.232.187	137.226.76.222
137.226.79.93	221.230.222.188	137.226.75.200	137.226.81.98