138.122.2.7 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.122.222.207	attack	Attempted Brute Force (dovecot)	2020-10-08 00:48:42
138.122.222.207	attackspambots	Attempted Brute Force (dovecot)	2020-10-07 16:57:44
138.122.222.239	attackspam	Sep 16 18:09:37 mail.srvfarm.net postfix/smtpd[3597748]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed: Sep 16 18:09:37 mail.srvfarm.net postfix/smtpd[3597748]: lost connection after AUTH from 138-122-222-239.lanteca.com.br[138.122.222.239] Sep 16 18:18:04 mail.srvfarm.net postfix/smtps/smtpd[3600179]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed: Sep 16 18:18:04 mail.srvfarm.net postfix/smtps/smtpd[3600179]: lost connection after AUTH from 138-122-222-239.lanteca.com.br[138.122.222.239] Sep 16 18:18:34 mail.srvfarm.net postfix/smtps/smtpd[3584298]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed:	2020-09-18 01:50:56
138.122.222.213	attack	Sep 16 18:33:38 mail.srvfarm.net postfix/smtps/smtpd[3600946]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:33:39 mail.srvfarm.net postfix/smtps/smtpd[3600946]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:38:10 mail.srvfarm.net postfix/smtps/smtpd[3601499]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed:	2020-09-18 01:34:33
138.122.222.239	attack	Sep 16 18:09:37 mail.srvfarm.net postfix/smtpd[3597748]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed: Sep 16 18:09:37 mail.srvfarm.net postfix/smtpd[3597748]: lost connection after AUTH from 138-122-222-239.lanteca.com.br[138.122.222.239] Sep 16 18:18:04 mail.srvfarm.net postfix/smtps/smtpd[3600179]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed: Sep 16 18:18:04 mail.srvfarm.net postfix/smtps/smtpd[3600179]: lost connection after AUTH from 138-122-222-239.lanteca.com.br[138.122.222.239] Sep 16 18:18:34 mail.srvfarm.net postfix/smtps/smtpd[3584298]: warning: 138-122-222-239.lanteca.com.br[138.122.222.239]: SASL PLAIN authentication failed:	2020-09-17 17:52:04
138.122.222.213	attack	Sep 16 18:33:38 mail.srvfarm.net postfix/smtps/smtpd[3600946]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:33:39 mail.srvfarm.net postfix/smtps/smtpd[3600946]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:38:10 mail.srvfarm.net postfix/smtps/smtpd[3601499]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed:	2020-09-17 17:36:03
138.122.222.213	attack	Sep 16 18:33:38 mail.srvfarm.net postfix/smtps/smtpd[3600946]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:33:39 mail.srvfarm.net postfix/smtps/smtpd[3600946]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed: Sep 16 18:37:53 mail.srvfarm.net postfix/smtpd[3601766]: lost connection after AUTH from 138-122-222-213.lanteca.com.br[138.122.222.213] Sep 16 18:38:10 mail.srvfarm.net postfix/smtps/smtpd[3601499]: warning: 138-122-222-213.lanteca.com.br[138.122.222.213]: SASL PLAIN authentication failed:	2020-09-17 08:42:48
138.122.222.207	attackbotsspam	Aug 16 05:21:35 mail.srvfarm.net postfix/smtps/smtpd[1874192]: warning: 138-122-222-207.lanteca.com.br[138.122.222.207]: SASL PLAIN authentication failed: Aug 16 05:21:36 mail.srvfarm.net postfix/smtps/smtpd[1874192]: lost connection after AUTH from 138-122-222-207.lanteca.com.br[138.122.222.207] Aug 16 05:26:15 mail.srvfarm.net postfix/smtps/smtpd[1888818]: warning: 138-122-222-207.lanteca.com.br[138.122.222.207]: SASL PLAIN authentication failed: Aug 16 05:26:15 mail.srvfarm.net postfix/smtps/smtpd[1888818]: lost connection after AUTH from 138-122-222-207.lanteca.com.br[138.122.222.207] Aug 16 05:29:00 mail.srvfarm.net postfix/smtpd[1888504]: warning: 138-122-222-207.lanteca.com.br[138.122.222.207]: SASL PLAIN authentication failed:	2020-08-16 13:01:31
138.122.211.101	attackbotsspam	Automatic report - Port Scan Attack	2020-08-06 17:42:01
138.122.222.82	attackbotsspam	SASL PLAIN auth failed: ruser=...	2020-07-16 09:09:03
138.122.20.255	attackbots	Automatic report - Port Scan Attack	2020-05-21 22:24:10
138.122.20.93	attackbotsspam	DATE:2020-05-13 14:34:32, IP:138.122.20.93, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-05-14 01:44:14
138.122.202.200	attack	fail2ban	2020-04-12 22:29:28
138.122.202.200	attackspambots	(sshd) Failed SSH login from 138.122.202.200 (CO/Colombia/Departamento del Valle del Cauca/Buenaventura/dsl-emcali-138.122.202.200.emcali.net.co/[AS10299 EMPRESAS MUNICIPALES DE CALI E.I.C.E. E.S.P.]): 1 in the last 3600 secs	2020-04-09 06:43:42
138.122.202.200	attackspam	Mar 1 14:16:45 MK-Soft-VM7 sshd[4915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.122.202.200 Mar 1 14:16:47 MK-Soft-VM7 sshd[4915]: Failed password for invalid user andoria from 138.122.202.200 port 48186 ssh2 ...	2020-03-02 05:09:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.122.2.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10699
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.122.2.7.			IN	A

;; AUTHORITY SECTION:
.			355	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:24:04 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 7.2.122.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 7.2.122.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.204.147.26	attackbotsspam	Jun 30 18:48:54 mailman dovecot: imap-login: Disconnected (auth failed, 1 attempts): user=, method=PLAIN, rip=113.204.147.26, lip=[munged], TLS	2019-07-01 10:11:05
186.29.183.89	attack	Jun 30 23:02:00 wildwolf wplogin[2145]: 186.29.183.89 informnapalm.org [2019-06-30 23:02:00+0000] "POST //wp/wp-login.php HTTP/1.1" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "" "chelsea" Jun 30 23:02:07 wildwolf wplogin[32763]: 186.29.183.89 informnapalm.org [2019-06-30 23:02:07+0000] "POST //wp/xmlrpc.php HTTP/1.1" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "admin" "" Jun 30 23:15:03 wildwolf wplogin[2180]: 186.29.183.89 informnapalm.org [2019-06-30 23:15:03+0000] "POST //user/wp-login.php HTTP/1.1" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "" "hello" Jun 30 23:15:08 wildwolf wplogin[32753]: 186.29.183.89 informnapalm.org [2019-06-30 23:15:08+0000] "POST //user/xmlrpc.php HTTP/1.1" "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "admin" "" Jun 30 23:16:13 wildwolf wplogin[32477]: 186.29.183.89 informnapalm.org [2019........ ------------------------------	2019-07-01 10:36:32
197.155.141.120	spambotsattackproxynormal	Test	2019-07-01 09:52:08
185.139.68.114	attackspambots	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	2019-07-01 10:15:48
197.155.141.120	spambotsattackproxynormal	Yes	2019-07-01 10:00:02
189.110.148.91	attackspambots	Jul 1 01:42:57 *** sshd[15726]: Invalid user corinne from 189.110.148.91	2019-07-01 10:18:40
199.59.150.99	attackspambots	Brute force attack stopped by firewall	2019-07-01 10:08:51
219.157.232.202	attackspambots	2019-07-01T05:51:21.943823enmeeting.mahidol.ac.th sshd\[12686\]: User root from 219.157.232.202 not allowed because not listed in AllowUsers 2019-07-01T05:51:22.072914enmeeting.mahidol.ac.th sshd\[12686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.157.232.202 user=root 2019-07-01T05:51:24.317450enmeeting.mahidol.ac.th sshd\[12686\]: Failed password for invalid user root from 219.157.232.202 port 52417 ssh2 ...	2019-07-01 10:05:23
218.3.210.2	attackspambots	Brute force attack stopped by firewall	2019-07-01 09:59:42
159.89.172.190	attack	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	2019-07-01 10:16:50
66.249.79.142	attackbots	Automatic report - Web App Attack	2019-07-01 09:55:20
116.62.217.151	attackbotsspam	Port scan on 1 port(s): 53	2019-07-01 10:30:50
197.232.8.135	attack	Brute force attack stopped by firewall	2019-07-01 09:57:00
104.238.116.19	attack	2019-07-01T02:28:27.964123abusebot-6.cloudsearch.cf sshd\[18978\]: Invalid user john from 104.238.116.19 port 42026	2019-07-01 10:38:39
112.27.128.13	attackbots	Brute force attack stopped by firewall	2019-07-01 10:01:32

Recently Reported IPs

138.122.194.93	138.122.194.185	138.122.194.221	138.122.194.233
138.122.194.83	138.122.194.43	138.122.194.192	138.122.194.67
138.122.194.4	138.122.20.89	138.122.20.86	118.174.82.92
138.122.211.1	138.122.209.229	138.122.20.90	138.122.202.215
138.122.202.210	138.122.211.86	118.174.82.98	138.122.204.205