137.226.148.104

Basic Info

City: Aachen

Region: North Rhine-Westphalia

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.226.148.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65517
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;137.226.148.104.		IN	A

;; AUTHORITY SECTION:
.			341	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062100 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 21 17:09:22 CST 2022
;; MSG SIZE  rcvd: 108

Host info

104.148.226.137.in-addr.arpa domain name pointer 148-104.oih.rwth-aachen.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
104.148.226.137.in-addr.arpa	name = 148-104.oih.rwth-aachen.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
121.123.148.220	attackbotsspam	Jul 5 09:56:23 debian-2gb-nbg1-2 kernel: \[16194398.333222\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=121.123.148.220 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=236 ID=45170 PROTO=TCP SPT=43924 DPT=4970 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-05 17:45:13
181.114.107.36	attack	trying to access non-authorized port	2020-07-05 17:31:04
161.35.104.69	attack	161.35.104.69 - - [05/Jul/2020:05:50:01 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 161.35.104.69 - - [05/Jul/2020:05:50:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1912 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 161.35.104.69 - - [05/Jul/2020:05:50:04 +0100] "POST /wp-login.php HTTP/1.1" 200 1949 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-05 17:56:39
79.137.79.167	attackspambots	srv02 SSH BruteForce Attacks 22 ..	2020-07-05 17:36:17
5.61.30.54	attack	SSH invalid-user multiple login attempts	2020-07-05 18:04:38
106.54.19.67	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-05T03:43:35Z and 2020-07-05T03:51:06Z	2020-07-05 17:23:08
51.91.212.79	attackspambots	port scan and connect, tcp 8443 (https-alt)	2020-07-05 17:55:21
178.22.123.208	attack	$f2bV_matches	2020-07-05 18:01:46
117.28.246.38	attack	Jul 5 08:39:47 h1745522 sshd[29513]: Invalid user admin from 117.28.246.38 port 49828 Jul 5 08:39:47 h1745522 sshd[29513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.28.246.38 Jul 5 08:39:47 h1745522 sshd[29513]: Invalid user admin from 117.28.246.38 port 49828 Jul 5 08:39:49 h1745522 sshd[29513]: Failed password for invalid user admin from 117.28.246.38 port 49828 ssh2 Jul 5 08:44:12 h1745522 sshd[29657]: Invalid user sandeep from 117.28.246.38 port 58244 Jul 5 08:44:12 h1745522 sshd[29657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.28.246.38 Jul 5 08:44:12 h1745522 sshd[29657]: Invalid user sandeep from 117.28.246.38 port 58244 Jul 5 08:44:14 h1745522 sshd[29657]: Failed password for invalid user sandeep from 117.28.246.38 port 58244 ssh2 Jul 5 08:48:28 h1745522 sshd[29838]: Invalid user vanesa from 117.28.246.38 port 38428 ...	2020-07-05 17:45:26
124.107.161.108	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-07-05 17:50:16
125.166.92.226	attackbots	20/7/4@23:50:42: FAIL: Alarm-Network address from=125.166.92.226 20/7/4@23:50:43: FAIL: Alarm-Network address from=125.166.92.226 ...	2020-07-05 17:48:59
167.99.74.187	attackbotsspam	Jul 5 03:49:27 ny01 sshd[26113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.74.187 Jul 5 03:49:29 ny01 sshd[26113]: Failed password for invalid user admin from 167.99.74.187 port 34966 ssh2 Jul 5 03:53:35 ny01 sshd[26602]: Failed password for root from 167.99.74.187 port 60432 ssh2	2020-07-05 17:23:22
80.98.249.181	attackspambots	Jul 4 23:43:56 web9 sshd\[9180\]: Invalid user le from 80.98.249.181 Jul 4 23:43:56 web9 sshd\[9180\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.98.249.181 Jul 4 23:43:57 web9 sshd\[9180\]: Failed password for invalid user le from 80.98.249.181 port 46040 ssh2 Jul 4 23:48:31 web9 sshd\[9815\]: Invalid user bhd from 80.98.249.181 Jul 4 23:48:31 web9 sshd\[9815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.98.249.181	2020-07-05 17:59:08
128.199.210.252	attack	Jul 5 00:12:09 dignus sshd[14847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.210.252 Jul 5 00:12:11 dignus sshd[14847]: Failed password for invalid user remoto from 128.199.210.252 port 54161 ssh2 Jul 5 00:15:44 dignus sshd[15211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.210.252 user=root Jul 5 00:15:47 dignus sshd[15211]: Failed password for root from 128.199.210.252 port 16808 ssh2 Jul 5 00:19:10 dignus sshd[15595]: Invalid user test2 from 128.199.210.252 port 43959 ...	2020-07-05 17:49:43
78.63.109.160	attack	Automatic report - XMLRPC Attack	2020-07-05 17:59:25

Recently Reported IPs

137.226.103.157	137.226.148.145	137.226.149.1	137.226.149.66
137.226.148.186	137.226.150.50	169.229.69.186	137.226.12.178
137.226.10.151	137.226.103.251	137.226.104.1	137.226.103.255
137.226.141.0	137.226.11.190	186.237.131.122	137.226.9.160
137.226.8.171	137.226.11.93	137.226.13.146	137.226.21.213