137.226.107.13

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.226.107.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35958
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;137.226.107.13.			IN	A

;; AUTHORITY SECTION:
.			538	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062402 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 25 11:58:39 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

13.107.226.137.in-addr.arpa domain name pointer www.demo.cms.rwth-aachen.de.
13.107.226.137.in-addr.arpa domain name pointer www.demo3.cms.rwth-aachen.de.
13.107.226.137.in-addr.arpa domain name pointer www.demo1.cms.rwth-aachen.de.
13.107.226.137.in-addr.arpa domain name pointer demo.cms.rwth-aachen.de.
13.107.226.137.in-addr.arpa domain name pointer www.demo2.cms.rwth-aachen.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
13.107.226.137.in-addr.arpa	name = demo.cms.rwth-aachen.de.
13.107.226.137.in-addr.arpa	name = www.demo2.cms.rwth-aachen.de.
13.107.226.137.in-addr.arpa	name = www.demo.cms.rwth-aachen.de.
13.107.226.137.in-addr.arpa	name = www.demo3.cms.rwth-aachen.de.
13.107.226.137.in-addr.arpa	name = www.demo1.cms.rwth-aachen.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
146.88.240.4	attackspam	06/30/2020-01:49:13.471887 146.88.240.4 Protocol: 17 ET DROP Dshield Block Listed Source group 1	2020-06-30 13:58:06
95.27.203.123	attackspambots	1593489300 - 06/30/2020 05:55:00 Host: 95.27.203.123/95.27.203.123 Port: 445 TCP Blocked	2020-06-30 13:56:18
46.105.149.77	attackspam	Jun 30 08:10:20 plex sshd[19849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.149.77 user=root Jun 30 08:10:22 plex sshd[19849]: Failed password for root from 46.105.149.77 port 34590 ssh2	2020-06-30 14:15:24
51.254.220.61	attackbotsspam	(sshd) Failed SSH login from 51.254.220.61 (FR/France/61.ip-51-254-220.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 30 06:21:31 amsweb01 sshd[11738]: Invalid user postgres from 51.254.220.61 port 39508 Jun 30 06:21:33 amsweb01 sshd[11738]: Failed password for invalid user postgres from 51.254.220.61 port 39508 ssh2 Jun 30 06:44:02 amsweb01 sshd[17100]: Invalid user flf from 51.254.220.61 port 52909 Jun 30 06:44:05 amsweb01 sshd[17100]: Failed password for invalid user flf from 51.254.220.61 port 52909 ssh2 Jun 30 06:46:26 amsweb01 sshd[17562]: Invalid user boris from 51.254.220.61 port 47045	2020-06-30 14:17:36
173.67.48.130	attackbots	Jun 30 06:55:43 santamaria sshd\[6316\]: Invalid user ada from 173.67.48.130 Jun 30 06:55:43 santamaria sshd\[6316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.67.48.130 Jun 30 06:55:45 santamaria sshd\[6316\]: Failed password for invalid user ada from 173.67.48.130 port 58824 ssh2 ...	2020-06-30 13:55:59
212.70.149.34	attackspambots	2020-06-29 21:47:14 dovecot_login authenticator failed for $User$ \[212.70.149.34\]: 535 Incorrect authentication data $set_id=sales@no-server.de$ 2020-06-29 21:47:33 dovecot_login authenticator failed for $User$ \[212.70.149.34\]: 535 Incorrect authentication data $set_id=sales@no-server.de$ 2020-06-29 21:47:38 dovecot_login authenticator failed for $User$ \[212.70.149.34\]: 535 Incorrect authentication data $set_id=sales@no-server.de$ 2020-06-29 21:47:41 dovecot_login authenticator failed for $User$ \[212.70.149.34\]: 535 Incorrect authentication data $set_id=sales@no-server.de$ 2020-06-29 21:47:51 dovecot_login authenticator failed for $User$ \[212.70.149.34\]: 535 Incorrect authentication data $set_id=support@no-server.de$ ...	2020-06-30 14:26:12
167.172.121.115	attackbotsspam	Jun 30 01:30:06 ny01 sshd[6236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.121.115 Jun 30 01:30:08 ny01 sshd[6236]: Failed password for invalid user lukas from 167.172.121.115 port 58344 ssh2 Jun 30 01:33:19 ny01 sshd[6611]: Failed password for root from 167.172.121.115 port 57758 ssh2	2020-06-30 14:34:35
198.176.52.227	attack	Icarus honeypot on github	2020-06-30 14:11:59
92.43.170.11	attack	[Tue Jun 30 10:54:47.002031 2020] [:error] [pid 3647:tid 139691177268992] [client 92.43.170.11:58982] [client 92.43.170.11] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/favicon.ico"] [unique_id "Xvq3hp5-VmYWBSWxGQF6ZwAAAfE"], referer: http://103.27.207.197/ ...	2020-06-30 14:09:25
180.183.251.148	attack	Telnet Server BruteForce Attack	2020-06-30 14:00:17
90.92.23.219	attackbots	20 attempts against mh-misbehave-ban on pole	2020-06-30 14:22:42
106.6.70.204	attack	06/29/2020-23:54:26.038794 106.6.70.204 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-30 14:25:23
106.12.147.211	attackspambots	20 attempts against mh-ssh on river	2020-06-30 14:24:55
58.26.237.222	attack	Failed password for invalid user otrs from 58.26.237.222 port 39396 ssh2	2020-06-30 14:00:34
65.155.30.101	attack	[Tue Jun 30 10:54:53.259691 2020] [:error] [pid 3200:tid 139691194054400] [client 65.155.30.101:1188] [client 65.155.30.101] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xvq3jV@--9IrESm4TRujwwAAAIc"], referer: http://www.bing.com/search?q=amazon ...	2020-06-30 14:02:55

最近上报的IP列表

137.226.51.5	137.226.243.55	47.206.87.142	58.27.218.148
137.226.32.27	137.226.27.237	185.167.93.35	181.52.250.234
58.185.147.252	122.166.249.231	122.165.240.250	86.176.135.144
185.216.128.202	174.70.81.11	67.180.126.214	193.56.29.146
66.229.233.77	137.226.24.12	137.226.28.157	139.59.181.46