138.97.226.148

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.97.226.131	attack	Jun 16 05:18:10 mail.srvfarm.net postfix/smtpd[935946]: warning: 138-97-226-131.llnet.com.br[138.97.226.131]: SASL PLAIN authentication failed: Jun 16 05:18:11 mail.srvfarm.net postfix/smtpd[935946]: lost connection after AUTH from 138-97-226-131.llnet.com.br[138.97.226.131] Jun 16 05:19:42 mail.srvfarm.net postfix/smtpd[938186]: warning: 138-97-226-131.llnet.com.br[138.97.226.131]: SASL PLAIN authentication failed: Jun 16 05:19:43 mail.srvfarm.net postfix/smtpd[938186]: lost connection after AUTH from 138-97-226-131.llnet.com.br[138.97.226.131] Jun 16 05:24:44 mail.srvfarm.net postfix/smtpd[915630]: warning: 138-97-226-131.llnet.com.br[138.97.226.131]: SASL PLAIN authentication failed:	2020-06-16 16:33:02
138.97.226.109	attackbotsspam	Automatic report - Port Scan Attack	2020-02-05 00:19:03
138.97.226.134	attackspam	unauthorized connection attempt	2020-01-12 15:11:12
138.97.226.244	attackbotsspam	failed_logins	2019-08-10 14:26:07
138.97.226.132	attackspam	failed_logins	2019-08-01 14:33:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.97.226.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14000
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.97.226.148.			IN	A

;; AUTHORITY SECTION:
.			529	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:58:58 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 148.226.97.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.226.97.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.222.34.211	attackspam	Nov 2 06:16:42 mockhub sshd[10532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.34.211 Nov 2 06:16:44 mockhub sshd[10532]: Failed password for invalid user nie from 92.222.34.211 port 55886 ssh2 ...	2019-11-02 21:44:26
109.13.191.98	attackspambots	Automatic report - Web App Attack	2019-11-02 21:41:34
222.186.180.8	attackbots	Nov 2 14:38:10 MK-Soft-VM5 sshd[24656]: Failed password for root from 222.186.180.8 port 19478 ssh2 Nov 2 14:38:15 MK-Soft-VM5 sshd[24656]: Failed password for root from 222.186.180.8 port 19478 ssh2 ...	2019-11-02 21:38:24
172.93.205.52	attackbots	Lines containing failures of 172.93.205.52 Oct 31 11:08:42 shared04 postfix/smtpd[1206]: connect from kurt.hh-prinz-mario.com[172.93.205.52] Oct 31 11:08:43 shared04 policyd-spf[1574]: prepend Received-SPF: Permerror (mailfrom) identhostnamey=mailfrom; client-ip=172.93.205.52; helo=kurt.hh-prinz-mario.com; envelope-from=x@x Oct 31 11:08:43 shared04 postfix/smtpd[1206]: 967592E00254: client=kurt.hh-prinz-mario.com[172.93.205.52] Oct 31 11:08:44 shared04 postfix/smtpd[1206]: disconnect from kurt.hh-prinz-mario.com[172.93.205.52] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quhostname=1 commands=7 Oct x@x Nov 1 04:47:35 shared04 postfix/smtpd[31744]: connect from kurt.hh-prinz-mario.com[172.93.205.52] Nov 1 04:47:36 shared04 policyd-spf[473]: prepend Received-SPF: Permerror (mailfrom) identhostnamey=mailfrom; client-ip=172.93.205.52; helo=kurt.hh-prinz-mario.com; envelope-from=x@x Nov x@x Nov 1 04:47:36 shared04 postfix/smtpd[31744]: disconnect from kurt.hh-prinz-mario.com[172........ ------------------------------	2019-11-02 21:25:38
149.202.45.205	attackbots	Nov 2 12:49:29 mail sshd[4700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.45.205 user=root Nov 2 12:49:31 mail sshd[4700]: Failed password for root from 149.202.45.205 port 60438 ssh2 Nov 2 12:57:09 mail sshd[16553]: Invalid user vicky from 149.202.45.205 ...	2019-11-02 21:58:38
122.51.116.169	attackspam	Nov 2 14:06:20 dedicated sshd[7963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.116.169 user=root Nov 2 14:06:22 dedicated sshd[7963]: Failed password for root from 122.51.116.169 port 19231 ssh2 Nov 2 14:11:53 dedicated sshd[8890]: Invalid user farid from 122.51.116.169 port 56447 Nov 2 14:11:53 dedicated sshd[8890]: Invalid user farid from 122.51.116.169 port 56447	2019-11-02 21:43:27
121.157.207.91	attack	Last failed login: Sat Nov 2 21:24:29 CST 2019 from 198.144.184.34 on ssh:notty	2019-11-02 21:26:31
167.71.215.72	attackbotsspam	Nov 2 13:17:16 game-panel sshd[18615]: Failed password for root from 167.71.215.72 port 44507 ssh2 Nov 2 13:21:21 game-panel sshd[18742]: Failed password for root from 167.71.215.72 port 26948 ssh2	2019-11-02 21:30:02
211.232.39.8	attackspambots	Nov 2 15:12:15 sauna sshd[178721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.232.39.8 Nov 2 15:12:17 sauna sshd[178721]: Failed password for invalid user tiberio from 211.232.39.8 port 26104 ssh2 ...	2019-11-02 21:44:59
195.58.123.109	attack	2019-11-02T14:05:01.482482scmdmz1 sshd\[18000\]: Invalid user judge from 195.58.123.109 port 53106 2019-11-02T14:05:01.485202scmdmz1 sshd\[18000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host.195.58.123.109.bitcom.se 2019-11-02T14:05:03.360676scmdmz1 sshd\[18000\]: Failed password for invalid user judge from 195.58.123.109 port 53106 ssh2 ...	2019-11-02 21:25:01
47.75.248.114	attack	11/02/2019-09:23:56.364121 47.75.248.114 Protocol: 6 ET SCAN Potential SSH Scan	2019-11-02 21:31:11
121.7.25.140	attack	PostgreSQL port 5432	2019-11-02 21:29:43
213.230.118.162	attackspambots	Nov 2 12:50:36 mxgate1 postfix/postscreen[2377]: CONNECT from [213.230.118.162]:1588 to [176.31.12.44]:25 Nov 2 12:50:36 mxgate1 postfix/dnsblog[2639]: addr 213.230.118.162 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 2 12:50:36 mxgate1 postfix/dnsblog[2639]: addr 213.230.118.162 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 2 12:50:36 mxgate1 postfix/dnsblog[2641]: addr 213.230.118.162 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 2 12:50:36 mxgate1 postfix/dnsblog[2640]: addr 213.230.118.162 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 2 12:50:36 mxgate1 postfix/postscreen[2377]: PREGREET 24 after 0.15 from [213.230.118.162]:1588: EHLO [213.230.118.162] Nov 2 12:50:36 mxgate1 postfix/postscreen[2377]: DNSBL rank 4 for [213.230.118.162]:1588 Nov x@x Nov 2 12:50:37 mxgate1 postfix/postscreen[2377]: HANGUP after 0.49 from [213.230.118.162]:1588 in tests after SMTP handshake Nov 2 12:50:37 mxgate1 postfix/postscreen[2377]: DISCONNECT ........ -------------------------------	2019-11-02 21:52:19
5.187.2.88	attackbotsspam	slow and persistent scanner	2019-11-02 21:32:04
101.89.166.204	attackbots	SSH Bruteforce attack	2019-11-02 22:02:44

Recently Reported IPs

138.97.226.118	138.97.226.166	138.97.226.186	138.97.226.18
138.97.226.201	118.190.73.168	138.97.226.198	138.97.226.190
138.97.226.223	138.97.226.22	138.97.226.233	138.97.226.219
138.97.226.238	138.97.226.231	138.97.226.237	138.97.226.242
138.97.226.240	138.97.226.245	138.97.226.247	138.97.226.30