134.61.145.24 - IPInfo

基本信息:

城市(city): Aachen

省份(region): North Rhine-Westphalia

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): RWTH Aachen University

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.61.145.24
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60438
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.61.145.24.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 26 01:12:38 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

24.145.61.134.in-addr.arpa domain name pointer 145-024.eduroam.rwth-aachen.de.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
24.145.61.134.in-addr.arpa	name = 145-024.eduroam.rwth-aachen.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
84.204.168.242	attack	Oct 4 21:22:39 ip-172-31-61-156 sshd[5858]: Failed password for root from 84.204.168.242 port 60834 ssh2 Oct 4 21:22:38 ip-172-31-61-156 sshd[5858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.204.168.242 user=root Oct 4 21:22:39 ip-172-31-61-156 sshd[5858]: Failed password for root from 84.204.168.242 port 60834 ssh2 Oct 4 21:29:47 ip-172-31-61-156 sshd[6462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.204.168.242 user=root Oct 4 21:29:48 ip-172-31-61-156 sshd[6462]: Failed password for root from 84.204.168.242 port 35916 ssh2 ...	2020-10-06 03:00:56
220.85.229.105	attack	8080/udp [2020-10-04]1pkt	2020-10-06 03:14:48
104.206.128.42	attackbots	TCP (SYN) 104.206.128.42:50739 -> port 23, len 44	2020-10-06 02:55:43
193.95.81.121	attack	Lines containing failures of 193.95.81.121 (max 1000) Oct 5 17:06:14 localhost sshd[2646]: User r.r from 193.95.81.121 not allowed because listed in DenyUsers Oct 5 17:06:15 localhost sshd[2646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.95.81.121 user=r.r Oct 5 17:06:17 localhost sshd[2646]: Failed password for invalid user r.r from 193.95.81.121 port 11224 ssh2 Oct 5 17:06:18 localhost sshd[2646]: Received disconnect from 193.95.81.121 port 11224:11: Bye Bye [preauth] Oct 5 17:06:18 localhost sshd[2646]: Disconnected from invalid user r.r 193.95.81.121 port 11224 [preauth] Oct 5 17:32:02 localhost sshd[10480]: User r.r from 193.95.81.121 not allowed because listed in DenyUsers Oct 5 17:32:02 localhost sshd[10480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.95.81.121 user=r.r Oct 5 17:32:04 localhost sshd[10480]: Failed password for invalid user r.r from 193.95.8........ ------------------------------	2020-10-06 03:08:37
93.65.212.115	attackspambots	DATE:2020-10-04 22:31:35, IP:93.65.212.115, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-06 03:16:34
110.78.138.66	attackspam	"Test Inject em'a=0"	2020-10-06 03:15:47
14.29.190.237	attackbotsspam	14.29.190.237 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 5 08:19:15 server2 sshd[17148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.195.191 user=root Oct 5 08:17:31 server2 sshd[15734]: Failed password for root from 223.4.71.151 port 58692 ssh2 Oct 5 08:17:41 server2 sshd[15902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.0.127 user=root Oct 5 08:17:44 server2 sshd[15902]: Failed password for root from 140.143.0.127 port 55256 ssh2 Oct 5 08:19:17 server2 sshd[17148]: Failed password for root from 129.28.195.191 port 46704 ssh2 Oct 5 08:19:21 server2 sshd[17175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.190.237 user=root IP Addresses Blocked: 129.28.195.191 (CN/China/-) 223.4.71.151 (CN/China/-) 140.143.0.127 (CN/China/-)	2020-10-06 02:45:38
223.99.22.141	attack	SSH Brute Force	2020-10-06 02:57:13
14.29.254.239	attackbots	detected by Fail2Ban	2020-10-06 02:58:42
123.59.195.16	attackspambots	Oct 5 17:40:40 fhem-rasp sshd[25961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.59.195.16 user=root Oct 5 17:40:42 fhem-rasp sshd[25961]: Failed password for root from 123.59.195.16 port 51842 ssh2 ...	2020-10-06 02:52:42
85.209.0.102	attack	Oct 5 15:35:20 vps46666688 sshd[20387]: Failed password for root from 85.209.0.102 port 57388 ssh2 ...	2020-10-06 02:46:50
176.212.104.28	attack	Found on CINS badguys / proto=6 . srcport=3293 . dstport=23 Telnet . (3496)	2020-10-06 02:58:14
111.74.11.82	attackspam	Oct 5 19:46:38 myhostname sshd[3262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.74.11.82 user=r.r Oct 5 19:46:40 myhostname sshd[3262]: Failed password for r.r from 111.74.11.82 port 2307 ssh2 Oct 5 19:46:40 myhostname sshd[3262]: Received disconnect from 111.74.11.82 port 2307:11: Bye Bye [preauth] Oct 5 19:46:40 myhostname sshd[3262]: Disconnected from 111.74.11.82 port 2307 [preauth] Oct 5 19:55:38 myhostname sshd[13536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.74.11.82 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=111.74.11.82	2020-10-06 02:49:57
186.94.121.105	attack	20/10/4@16:34:42: FAIL: Alarm-Network address from=186.94.121.105 ...	2020-10-06 02:54:14
149.129.126.156	attack	"Test Inject 10529'a=0"	2020-10-06 03:00:17

最近上报的IP列表

195.73.22.185	32.137.60.254	135.226.243.11	221.101.41.192
45.150.197.132	217.35.14.154	99.144.229.117	83.242.210.179
32.129.227.164	223.62.60.227	177.17.171.109	52.155.9.223
193.85.118.134	151.99.77.108	46.24.189.104	93.30.169.243
192.157.15.113	64.196.177.74	216.243.70.185	65.147.198.194