137.226.113.13

基本信息:

城市(city): Aachen

省份(region): North Rhine-Westphalia

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
137.226.113.10	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-12 01:59:28
137.226.113.10	attackbots	Port scan denied	2020-09-11 17:50:45
137.226.113.56	attackbotsspam	4843/tcp 1883/tcp 8883/tcp... [2020-06-14/08-11]44pkt,5pt.(tcp)	2020-08-12 07:49:20
137.226.113.56	attackspam	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 4840 [T]	2020-07-20 06:50:01
137.226.113.56	attackbots	Port Scan ...	2020-07-14 02:14:02
137.226.113.9	attackspambots	port scan and connect, tcp 443 (https)	2020-06-06 21:06:05
137.226.113.56	attackbots	srv02 Mass scanning activity detected Target: 102(iso-tsap) ..	2020-06-01 20:17:23
137.226.113.27	attackbots	mozilla/5.0+zgrab/0.x+(compatible;+researchscan/t12sns;++http://researchscan.comsys.rwth-aachen.de)	2020-05-31 07:27:51
137.226.113.31	attackspambots	Port Scan detected from 137.226.113.31 (DE/Germany/researchscan23.comsys.rwth-aachen.de). 5 hits in the last 35 seconds	2020-05-25 17:19:31
137.226.113.10	attack	137.226.113.10	2020-04-14 12:57:11
137.226.113.56	attack	Apr 13 15:48:24 debian-2gb-nbg1-2 kernel: \[9044698.686856\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=137.226.113.56 DST=195.201.40.59 LEN=64 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=TCP SPT=47703 DPT=102 WINDOW=65535 RES=0x00 SYN URGP=0	2020-04-14 01:14:48
137.226.113.56	attackbots	" "	2020-04-06 00:29:43
137.226.113.10	attack	Mar 5 21:51:17 debian-2gb-nbg1-2 kernel: \[5700646.129243\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=137.226.113.10 DST=195.201.40.59 LEN=1228 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=50832 DPT=443 LEN=1208	2020-03-06 05:32:53
137.226.113.56	attack	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 102 [J]	2020-03-03 00:36:56
137.226.113.56	attackbots	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 4840 [J]	2020-03-02 02:31:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.226.113.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29877
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;137.226.113.13.			IN	A

;; AUTHORITY SECTION:
.			304	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061102 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 12 09:16:58 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

13.113.226.137.in-addr.arpa domain name pointer researchscan6.comsys.rwth-aachen.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
13.113.226.137.in-addr.arpa	name = researchscan6.comsys.rwth-aachen.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
34.224.65.130	attack	Bruteforcing port 3389 (Remote Desktop) - Exceed maximum 10 attempts/hour	2019-07-23 19:01:02
94.197.65.180	attack	illegal hidden networks/verizon/8000 series/ mtu 16384 options=1203 inet 127.0.0.1 netmask 0xff000000 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1 nd6 options=201 gif0: flags=8010 mtu 1280 stf0: flags=0<> mtu 1280 en0: flags=8863 mtu 1500 ether 7c:04:d0:bb:dc:a6 inet6 fe80::1455:1d61:99fb:9eb1%en0 prefixlen 64 secured scopeid 0x4 inet 192.168.8.100 netmask 0xffffff00 broadcast 192.168.8.255 nd6 options=201 media: autoselect status: active en1: flags=863 mtu 1500 options=60 ether 9a:00:0c:64:90:40 media: autoselect status: inactive p2p0: flags=8843 mtu 2304 ether 0e:04:d0:bb:dc:a6 media: autoselect status: inactive awdl0: flags=8943	2019-07-23 18:15:39
196.190.95.21	attackspam	Unauthorised access (Jul 23) SRC=196.190.95.21 LEN=52 TTL=111 ID=11177 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-23 18:57:02
100.42.48.16	attackspam	Jul 23 10:03:25 mail sshd\[25333\]: Failed password for invalid user chen from 100.42.48.16 port 38518 ssh2 Jul 23 10:20:39 mail sshd\[25669\]: Invalid user christian from 100.42.48.16 port 54627 ...	2019-07-23 18:59:52
193.32.95.29	attackbotsspam	SS5,WP GET /wp-includes/js/tinymce/plugins/wpdialogs/statistics_menu.php	2019-07-23 18:55:49
111.68.111.67	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 22:52:42,561 INFO [shellcode_manager] (111.68.111.67) no match, writing hexdump (365a6f37e4ca6d8787cc4829454629fc :1877880) - MS17010 (EternalBlue)	2019-07-23 18:18:19
182.76.158.114	attackbots	Jul 23 15:06:07 vibhu-HP-Z238-Microtower-Workstation sshd\[4319\]: Invalid user long from 182.76.158.114 Jul 23 15:06:07 vibhu-HP-Z238-Microtower-Workstation sshd\[4319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.76.158.114 Jul 23 15:06:09 vibhu-HP-Z238-Microtower-Workstation sshd\[4319\]: Failed password for invalid user long from 182.76.158.114 port 39325 ssh2 Jul 23 15:12:44 vibhu-HP-Z238-Microtower-Workstation sshd\[4614\]: Invalid user mailman from 182.76.158.114 Jul 23 15:12:44 vibhu-HP-Z238-Microtower-Workstation sshd\[4614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.76.158.114 ...	2019-07-23 18:03:41
45.32.5.101	attack	Jul 22 18:21:47 roadrisk sshd[28011]: reveeclipse mapping checking getaddrinfo for 45.32.5.101.vultr.com [45.32.5.101] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 22 18:21:50 roadrisk sshd[28011]: Failed password for invalid user guang from 45.32.5.101 port 59608 ssh2 Jul 22 18:21:50 roadrisk sshd[28011]: Received disconnect from 45.32.5.101: 11: Bye Bye [preauth] Jul 22 18:32:04 roadrisk sshd[28129]: reveeclipse mapping checking getaddrinfo for 45.32.5.101.vultr.com [45.32.5.101] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 22 18:32:06 roadrisk sshd[28129]: Failed password for invalid user teste from 45.32.5.101 port 38600 ssh2 Jul 22 18:32:06 roadrisk sshd[28129]: Received disconnect from 45.32.5.101: 11: Bye Bye [preauth] Jul 22 18:37:20 roadrisk sshd[28204]: reveeclipse mapping checking getaddrinfo for 45.32.5.101.vultr.com [45.32.5.101] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 22 18:37:20 roadrisk sshd[28204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=........ -------------------------------	2019-07-23 17:57:28
223.204.234.133	attackspam	Jul 23 05:22:14 localhost kernel: [15117927.463291] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=223.204.234.133 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x20 TTL=105 ID=14709 DF PROTO=TCP SPT=39261 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Jul 23 05:22:14 localhost kernel: [15117927.463323] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=223.204.234.133 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x20 TTL=105 ID=14709 DF PROTO=TCP SPT=39261 DPT=8291 SEQ=69840306 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405840103030801010402) Jul 23 05:22:15 localhost kernel: [15117928.524676] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=223.204.234.133 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x20 TTL=105 ID=20554 DF PROTO=TCP SPT=54550 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 Jul 23 05:22:15 localhost kernel: [15117928.524702] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=22	2019-07-23 18:17:06
212.7.222.198	attackbots	Spam mails sent to address hacked/leaked from Nexus Mods in July 2013	2019-07-23 18:13:32
54.38.18.211	attack	Jul 23 11:22:27 * sshd[30390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.18.211 Jul 23 11:22:30 * sshd[30390]: Failed password for invalid user user1 from 54.38.18.211 port 39938 ssh2	2019-07-23 18:09:18
46.163.142.52	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 22:48:13,783 INFO [shellcode_manager] (46.163.142.52) no match, writing hexdump (c0f4468f98452ac5517dde31fa198fca :2337978) - MS17010 (EternalBlue)	2019-07-23 18:53:39
61.161.237.38	attackbotsspam	Jul 23 11:11:36 debian sshd\[25122\]: Invalid user temp1 from 61.161.237.38 port 35236 Jul 23 11:11:36 debian sshd\[25122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.161.237.38 ...	2019-07-23 18:22:11
101.109.124.83	attackbots	Automatic report - Port Scan Attack	2019-07-23 18:50:50
159.89.96.203	attackbots	Jul 23 12:26:48 meumeu sshd[28512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.96.203 Jul 23 12:26:49 meumeu sshd[28512]: Failed password for invalid user notification from 159.89.96.203 port 45260 ssh2 Jul 23 12:31:03 meumeu sshd[19102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.96.203 ...	2019-07-23 18:36:18

最近上报的IP列表

137.226.117.69	137.226.180.58	137.226.180.112	137.226.181.35
137.226.181.67	137.226.181.90	137.226.181.105	137.226.181.15
137.226.181.58	13.37.219.229	137.226.115.180	137.226.116.238
137.226.113.14	137.226.181.216	137.226.9.24	8.215.35.202
20.113.67.1	20.127.75.252	20.228.243.109	5.167.71.12