138.122.97.204

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: IENTC S de RL de CV

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jun 28 07:43:56 mail.srvfarm.net postfix/smtps/smtpd[3992742]: warning: unknown[138.122.97.204]: SASL PLAIN authentication failed: Jun 28 07:43:57 mail.srvfarm.net postfix/smtps/smtpd[3992742]: lost connection after AUTH from unknown[138.122.97.204] Jun 28 07:50:05 mail.srvfarm.net postfix/smtpd[3997359]: warning: unknown[138.122.97.204]: SASL PLAIN authentication failed: Jun 28 07:50:05 mail.srvfarm.net postfix/smtpd[3997359]: lost connection after AUTH from unknown[138.122.97.204] Jun 28 07:52:29 mail.srvfarm.net postfix/smtps/smtpd[3991414]: warning: unknown[138.122.97.204]: SASL PLAIN authentication failed:	2020-07-01 19:13:58

Type

Details

Datetime

attack

Jun 28 07:43:56 mail.srvfarm.net postfix/smtps/smtpd[3992742]: warning: unknown[138.122.97.204]: SASL PLAIN authentication failed: 
Jun 28 07:43:57 mail.srvfarm.net postfix/smtps/smtpd[3992742]: lost connection after AUTH from unknown[138.122.97.204]
Jun 28 07:50:05 mail.srvfarm.net postfix/smtpd[3997359]: warning: unknown[138.122.97.204]: SASL PLAIN authentication failed: 
Jun 28 07:50:05 mail.srvfarm.net postfix/smtpd[3997359]: lost connection after AUTH from unknown[138.122.97.204]
Jun 28 07:52:29 mail.srvfarm.net postfix/smtps/smtpd[3991414]: warning: unknown[138.122.97.204]: SASL PLAIN authentication failed:

2020-07-01 19:13:58

Comments on same subnet:

IP	Type	Details	Datetime
138.122.97.206	attackbotsspam	Sep 17 06:17:36 mail.srvfarm.net postfix/smtps/smtpd[4029249]: warning: unknown[138.122.97.206]: SASL PLAIN authentication failed: Sep 17 06:17:37 mail.srvfarm.net postfix/smtps/smtpd[4029249]: lost connection after AUTH from unknown[138.122.97.206] Sep 17 06:19:05 mail.srvfarm.net postfix/smtpd[4047681]: warning: unknown[138.122.97.206]: SASL PLAIN authentication failed: Sep 17 06:19:05 mail.srvfarm.net postfix/smtpd[4047681]: lost connection after AUTH from unknown[138.122.97.206] Sep 17 06:22:35 mail.srvfarm.net postfix/smtpd[4031508]: warning: unknown[138.122.97.206]: SASL PLAIN authentication failed:	2020-09-18 01:51:09
138.122.97.206	attackspam	Sep 17 06:17:36 mail.srvfarm.net postfix/smtps/smtpd[4029249]: warning: unknown[138.122.97.206]: SASL PLAIN authentication failed: Sep 17 06:17:37 mail.srvfarm.net postfix/smtps/smtpd[4029249]: lost connection after AUTH from unknown[138.122.97.206] Sep 17 06:19:05 mail.srvfarm.net postfix/smtpd[4047681]: warning: unknown[138.122.97.206]: SASL PLAIN authentication failed: Sep 17 06:19:05 mail.srvfarm.net postfix/smtpd[4047681]: lost connection after AUTH from unknown[138.122.97.206] Sep 17 06:22:35 mail.srvfarm.net postfix/smtpd[4031508]: warning: unknown[138.122.97.206]: SASL PLAIN authentication failed:	2020-09-17 17:52:29
138.122.97.121	attackspambots	(LocalIPAttack) Local IP Attack From 138.122.97.121 (MX/Mexico/138-122-97-121.internet.static.ientc.mx): 1 in the last 3600 secs	2020-09-15 02:27:29
138.122.97.121	attack	(LocalIPAttack) Local IP Attack From 138.122.97.121 (MX/Mexico/138-122-97-121.internet.static.ientc.mx): 1 in the last 3600 secs	2020-09-14 18:13:42
138.122.97.128	attack	Sep 13 00:03:47 mail.srvfarm.net postfix/smtps/smtpd[659258]: warning: unknown[138.122.97.128]: SASL PLAIN authentication failed: Sep 13 00:03:48 mail.srvfarm.net postfix/smtps/smtpd[659258]: lost connection after AUTH from unknown[138.122.97.128] Sep 13 00:06:00 mail.srvfarm.net postfix/smtpd[828038]: warning: unknown[138.122.97.128]: SASL PLAIN authentication failed: Sep 13 00:06:00 mail.srvfarm.net postfix/smtpd[828038]: lost connection after AUTH from unknown[138.122.97.128] Sep 13 00:06:17 mail.srvfarm.net postfix/smtps/smtpd[657911]: warning: unknown[138.122.97.128]: SASL PLAIN authentication failed:	2020-09-14 01:40:29
138.122.97.242	attackbotsspam	Sep 12 18:41:59 mail.srvfarm.net postfix/smtps/smtpd[549459]: warning: unknown[138.122.97.242]: SASL PLAIN authentication failed: Sep 12 18:42:00 mail.srvfarm.net postfix/smtps/smtpd[549459]: lost connection after AUTH from unknown[138.122.97.242] Sep 12 18:45:27 mail.srvfarm.net postfix/smtpd[552118]: warning: unknown[138.122.97.242]: SASL PLAIN authentication failed: Sep 12 18:45:28 mail.srvfarm.net postfix/smtpd[552118]: lost connection after AUTH from unknown[138.122.97.242] Sep 12 18:48:07 mail.srvfarm.net postfix/smtps/smtpd[551663]: warning: unknown[138.122.97.242]: SASL PLAIN authentication failed:	2020-09-14 01:28:29
138.122.97.128	attack	Sep 13 00:03:47 mail.srvfarm.net postfix/smtps/smtpd[659258]: warning: unknown[138.122.97.128]: SASL PLAIN authentication failed: Sep 13 00:03:48 mail.srvfarm.net postfix/smtps/smtpd[659258]: lost connection after AUTH from unknown[138.122.97.128] Sep 13 00:06:00 mail.srvfarm.net postfix/smtpd[828038]: warning: unknown[138.122.97.128]: SASL PLAIN authentication failed: Sep 13 00:06:00 mail.srvfarm.net postfix/smtpd[828038]: lost connection after AUTH from unknown[138.122.97.128] Sep 13 00:06:17 mail.srvfarm.net postfix/smtps/smtpd[657911]: warning: unknown[138.122.97.128]: SASL PLAIN authentication failed:	2020-09-13 17:36:11
138.122.97.242	attack	Sep 12 18:41:59 mail.srvfarm.net postfix/smtps/smtpd[549459]: warning: unknown[138.122.97.242]: SASL PLAIN authentication failed: Sep 12 18:42:00 mail.srvfarm.net postfix/smtps/smtpd[549459]: lost connection after AUTH from unknown[138.122.97.242] Sep 12 18:45:27 mail.srvfarm.net postfix/smtpd[552118]: warning: unknown[138.122.97.242]: SASL PLAIN authentication failed: Sep 12 18:45:28 mail.srvfarm.net postfix/smtpd[552118]: lost connection after AUTH from unknown[138.122.97.242] Sep 12 18:48:07 mail.srvfarm.net postfix/smtps/smtpd[551663]: warning: unknown[138.122.97.242]: SASL PLAIN authentication failed:	2020-09-13 17:20:59
138.122.97.118	attackspambots	Sep 5 16:17:25 mailman postfix/smtpd[11570]: warning: unknown[138.122.97.118]: SASL PLAIN authentication failed: authentication failure	2020-09-06 21:30:25
138.122.97.118	attackbots	Sep 5 16:17:25 mailman postfix/smtpd[11570]: warning: unknown[138.122.97.118]: SASL PLAIN authentication failed: authentication failure	2020-09-06 13:05:22
138.122.97.118	attackspam	Sep 5 16:17:25 mailman postfix/smtpd[11570]: warning: unknown[138.122.97.118]: SASL PLAIN authentication failed: authentication failure	2020-09-06 05:23:29
138.122.97.41	attackbotsspam	Unauthorized SMTP/IMAP/POP3 connection attempt	2020-08-28 08:34:53
138.122.97.217	attackbots	Aug 27 05:36:19 mail.srvfarm.net postfix/smtps/smtpd[1361543]: warning: unknown[138.122.97.217]: SASL PLAIN authentication failed: Aug 27 05:36:19 mail.srvfarm.net postfix/smtps/smtpd[1361543]: lost connection after AUTH from unknown[138.122.97.217] Aug 27 05:38:55 mail.srvfarm.net postfix/smtps/smtpd[1357934]: warning: unknown[138.122.97.217]: SASL PLAIN authentication failed: Aug 27 05:38:56 mail.srvfarm.net postfix/smtps/smtpd[1357934]: lost connection after AUTH from unknown[138.122.97.217] Aug 27 05:40:15 mail.srvfarm.net postfix/smtpd[1362764]: warning: unknown[138.122.97.217]: SASL PLAIN authentication failed:	2020-08-28 07:33:13
138.122.97.175	attack	Aug 16 05:30:45 mail.srvfarm.net postfix/smtpd[1887224]: warning: unknown[138.122.97.175]: SASL PLAIN authentication failed: Aug 16 05:30:45 mail.srvfarm.net postfix/smtpd[1887224]: lost connection after AUTH from unknown[138.122.97.175] Aug 16 05:30:54 mail.srvfarm.net postfix/smtps/smtpd[1890604]: warning: unknown[138.122.97.175]: SASL PLAIN authentication failed: Aug 16 05:30:54 mail.srvfarm.net postfix/smtps/smtpd[1890604]: lost connection after AUTH from unknown[138.122.97.175] Aug 16 05:33:48 mail.srvfarm.net postfix/smtps/smtpd[1888820]: warning: unknown[138.122.97.175]: SASL PLAIN authentication failed:	2020-08-16 13:01:49
138.122.97.5	attackbotsspam	Aug 15 00:01:01 mail.srvfarm.net postfix/smtpd[741824]: warning: unknown[138.122.97.5]: SASL PLAIN authentication failed: Aug 15 00:01:02 mail.srvfarm.net postfix/smtpd[741824]: lost connection after AUTH from unknown[138.122.97.5] Aug 15 00:07:00 mail.srvfarm.net postfix/smtpd[738028]: warning: unknown[138.122.97.5]: SASL PLAIN authentication failed: Aug 15 00:07:00 mail.srvfarm.net postfix/smtpd[738028]: lost connection after AUTH from unknown[138.122.97.5] Aug 15 00:09:53 mail.srvfarm.net postfix/smtpd[843403]: warning: unknown[138.122.97.5]: SASL PLAIN authentication failed:	2020-08-15 17:21:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.122.97.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55716
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.122.97.204.			IN	A

;; AUTHORITY SECTION:
.			491	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070101 1800 900 604800 86400

;; Query time: 132 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 01 19:13:54 CST 2020
;; MSG SIZE  rcvd: 118

Host info

204.97.122.138.in-addr.arpa domain name pointer 138-122-97-204.internet.static.ientc.mx.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
204.97.122.138.in-addr.arpa	name = 138-122-97-204.internet.static.ientc.mx.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.213.96.241	attackbotsspam	Sep 8 05:38:53 plex sshd[7301]: Invalid user password from 129.213.96.241 port 26007	2019-09-08 12:01:22
54.36.150.159	attackspambots	Automatic report - Banned IP Access	2019-09-08 11:29:02
119.146.150.134	attackbotsspam	Sep 7 20:40:03 xtremcommunity sshd\[60245\]: Invalid user ubuntu from 119.146.150.134 port 45277 Sep 7 20:40:03 xtremcommunity sshd\[60245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.150.134 Sep 7 20:40:05 xtremcommunity sshd\[60245\]: Failed password for invalid user ubuntu from 119.146.150.134 port 45277 ssh2 Sep 7 20:43:53 xtremcommunity sshd\[60414\]: Invalid user oracle from 119.146.150.134 port 60584 Sep 7 20:43:53 xtremcommunity sshd\[60414\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.150.134 ...	2019-09-08 11:05:59
59.179.17.140	attackspambots	Sep 8 05:04:41 ubuntu-2gb-nbg1-dc3-1 sshd[29906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.179.17.140 Sep 8 05:04:43 ubuntu-2gb-nbg1-dc3-1 sshd[29906]: Failed password for invalid user testing from 59.179.17.140 port 48358 ssh2 ...	2019-09-08 11:58:15
88.247.166.174	attack	Automatic report - Port Scan Attack	2019-09-08 11:54:33
111.93.62.26	attackspambots	Brute force SMTP login attempted. ...	2019-09-08 11:00:44
193.31.117.56	attack	MagicSpam Rule: from_blacklist; Spammer IP: 193.31.117.56	2019-09-08 11:29:43
153.36.242.143	attack	Sep 8 06:39:58 site3 sshd\[160948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root Sep 8 06:40:00 site3 sshd\[160948\]: Failed password for root from 153.36.242.143 port 59665 ssh2 Sep 8 06:40:09 site3 sshd\[160951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root Sep 8 06:40:11 site3 sshd\[160951\]: Failed password for root from 153.36.242.143 port 54959 ssh2 Sep 8 06:40:15 site3 sshd\[160951\]: Failed password for root from 153.36.242.143 port 54959 ssh2 ...	2019-09-08 11:42:44
183.150.149.9	attackspambots	SSH authentication failure	2019-09-08 11:04:46
150.95.212.72	attack	Sep 7 12:49:42 sachi sshd\[1297\]: Invalid user 103 from 150.95.212.72 Sep 7 12:49:42 sachi sshd\[1297\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v150-95-212-72.873a.static.cnode.io Sep 7 12:49:44 sachi sshd\[1297\]: Failed password for invalid user 103 from 150.95.212.72 port 43970 ssh2 Sep 7 12:54:05 sachi sshd\[1694\]: Invalid user test1234 from 150.95.212.72 Sep 7 12:54:05 sachi sshd\[1694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v150-95-212-72.873a.static.cnode.io	2019-09-08 12:07:55
5.135.182.84	attack	2019-09-08T03:50:06.372610abusebot-7.cloudsearch.cf sshd\[22856\]: Invalid user ts3 from 5.135.182.84 port 33012	2019-09-08 12:09:46
104.254.95.152	attackspambots	(From connor.melrose@outlook.com) Hi, Thanks for the connect. I have found when a business owner, professional, coach or consultant is asked what they need more than anything in their business, you get the same two answers every time... more clients and more revenue. Our Online Business Building System is designed to make Your Business Stand Out From Your Competition... And Dominate Your Market Right From The Start. Gain access to our Complimentary four part video series on how to generate more leads than your business can handle. The four videos are packed with expert advice, designed to help you experience an immediate increase in your bottom-line revenue so we can prove to you that our system will produce real results for your business. See first hand exactly how we help hundreds of business owners worldwide to attract more clients and increase their revenue. Put Us To The Test…Click The Link Below: http://bit.ly/YourBusinessGrowth2019 Cheers, Michael Your Business Gro	2019-09-08 11:52:10
178.128.223.34	attack	Sep 7 20:18:50 ny01 sshd[25244]: Failed password for root from 178.128.223.34 port 50506 ssh2 Sep 7 20:27:55 ny01 sshd[27129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.223.34 Sep 7 20:27:57 ny01 sshd[27129]: Failed password for invalid user webuser from 178.128.223.34 port 47398 ssh2	2019-09-08 12:10:13
51.254.53.32	attack	Sep 7 23:58:11 hcbbdb sshd\[14442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.53.32 user=root Sep 7 23:58:13 hcbbdb sshd\[14442\]: Failed password for root from 51.254.53.32 port 50284 ssh2 Sep 8 00:02:36 hcbbdb sshd\[14989\]: Invalid user cssserver from 51.254.53.32 Sep 8 00:02:36 hcbbdb sshd\[14989\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.53.32 Sep 8 00:02:38 hcbbdb sshd\[14989\]: Failed password for invalid user cssserver from 51.254.53.32 port 38246 ssh2	2019-09-08 11:56:12
153.35.93.158	attackbotsspam	Sep 7 17:39:04 web1 sshd\[31466\]: Invalid user server1 from 153.35.93.158 Sep 7 17:39:04 web1 sshd\[31466\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.35.93.158 Sep 7 17:39:07 web1 sshd\[31466\]: Failed password for invalid user server1 from 153.35.93.158 port 55444 ssh2 Sep 7 17:42:33 web1 sshd\[32072\]: Invalid user test from 153.35.93.158 Sep 7 17:42:33 web1 sshd\[32072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.35.93.158	2019-09-08 11:48:44

Recently Reported IPs

120.120.17.69	222.102.154.87	158.214.125.105	88.118.138.69
173.60.19.205	207.70.238.149	15.195.170.168	200.197.113.227
53.119.158.242	150.170.240.177	20.65.120.92	206.0.30.100
24.118.14.213	48.116.117.12	20.32.197.16	137.253.146.160
103.89.233.142	40.19.108.211	44.216.220.140	222.235.135.241