137.226.113.34

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): RWTH Aachen University

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	The IP has triggered Cloudflare WAF. CF-Ray: 54108e790f5fc295 \| WAF_Rule_ID: ipr16 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: DE \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: skk.moe \| User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:50.0) Gecko/20100101 Firefox/50.0 \| CF_DC: FRA. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:52:54

类型

评论内容

时间

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54108e790f5fc295 | WAF_Rule_ID: ipr16 | WAF_Kind: firewall | CF_Action: challenge | Country: DE | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: skk.moe | User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:50.0) Gecko/20100101 Firefox/50.0 | CF_DC: FRA. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 01:52:54

相同子网IP讨论:

IP	类型	评论内容	时间
137.226.113.10	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-12 01:59:28
137.226.113.10	attackbots	Port scan denied	2020-09-11 17:50:45
137.226.113.56	attackbotsspam	4843/tcp 1883/tcp 8883/tcp... [2020-06-14/08-11]44pkt,5pt.(tcp)	2020-08-12 07:49:20
137.226.113.56	attackspam	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 4840 [T]	2020-07-20 06:50:01
137.226.113.56	attackbots	Port Scan ...	2020-07-14 02:14:02
137.226.113.9	attackspambots	port scan and connect, tcp 443 (https)	2020-06-06 21:06:05
137.226.113.56	attackbots	srv02 Mass scanning activity detected Target: 102(iso-tsap) ..	2020-06-01 20:17:23
137.226.113.27	attackbots	mozilla/5.0+zgrab/0.x+(compatible;+researchscan/t12sns;++http://researchscan.comsys.rwth-aachen.de)	2020-05-31 07:27:51
137.226.113.31	attackspambots	Port Scan detected from 137.226.113.31 (DE/Germany/researchscan23.comsys.rwth-aachen.de). 5 hits in the last 35 seconds	2020-05-25 17:19:31
137.226.113.10	attack	137.226.113.10	2020-04-14 12:57:11
137.226.113.56	attack	Apr 13 15:48:24 debian-2gb-nbg1-2 kernel: \[9044698.686856\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=137.226.113.56 DST=195.201.40.59 LEN=64 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=TCP SPT=47703 DPT=102 WINDOW=65535 RES=0x00 SYN URGP=0	2020-04-14 01:14:48
137.226.113.56	attackbots	" "	2020-04-06 00:29:43
137.226.113.10	attack	Mar 5 21:51:17 debian-2gb-nbg1-2 kernel: \[5700646.129243\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=137.226.113.10 DST=195.201.40.59 LEN=1228 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=50832 DPT=443 LEN=1208	2020-03-06 05:32:53
137.226.113.56	attack	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 102 [J]	2020-03-03 00:36:56
137.226.113.56	attackbots	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 4840 [J]	2020-03-02 02:31:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.226.113.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;137.226.113.34.			IN	A

;; AUTHORITY SECTION:
.			330	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120700 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 01:52:50 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

34.113.226.137.in-addr.arpa domain name pointer researchscan26.comsys.rwth-aachen.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
34.113.226.137.in-addr.arpa	name = researchscan26.comsys.rwth-aachen.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
195.54.160.225	attack	scans 12 times in preceeding hours on the ports (in chronological order) 4485 4499 4476 4469 4467 4477 4458 4455 4475 4472 4494 4453	2020-06-01 20:33:20
112.85.42.181	attackspambots	Jun 1 13:31:58 combo sshd[6872]: Failed password for root from 112.85.42.181 port 7866 ssh2 Jun 1 13:32:14 combo sshd[6919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.181 user=root Jun 1 13:32:16 combo sshd[6919]: Failed password for root from 112.85.42.181 port 35986 ssh2 ...	2020-06-01 20:53:28
101.2.191.44	attack	2020-03-14 09:19:41 H=$\[101.2.191.44\]$ \[101.2.191.44\]:38140 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2020-03-14 09:20:17 H=$\[101.2.191.44\]$ \[101.2.191.44\]:38096 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2020-03-14 09:20:42 H=$\[101.2.191.44\]$ \[101.2.191.44\]:38269 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-06-01 20:31:17
180.249.180.251	attack	2020-06-01T11:59:43.113514shield sshd\[25723\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.249.180.251 user=root 2020-06-01T11:59:45.408518shield sshd\[25723\]: Failed password for root from 180.249.180.251 port 30259 ssh2 2020-06-01T12:04:50.274712shield sshd\[26803\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.249.180.251 user=root 2020-06-01T12:04:52.379387shield sshd\[26803\]: Failed password for root from 180.249.180.251 port 29841 ssh2 2020-06-01T12:09:37.389022shield sshd\[27802\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.249.180.251 user=root	2020-06-01 20:41:39
106.13.73.210	attackbots	Jun 1 13:51:39 pornomens sshd\[17077\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.73.210 user=root Jun 1 13:51:42 pornomens sshd\[17077\]: Failed password for root from 106.13.73.210 port 48568 ssh2 Jun 1 14:09:25 pornomens sshd\[17285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.73.210 user=root ...	2020-06-01 20:51:42
218.92.0.171	attack	Jun 1 14:36:34 abendstille sshd\[29159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root Jun 1 14:36:36 abendstille sshd\[29159\]: Failed password for root from 218.92.0.171 port 48515 ssh2 Jun 1 14:36:40 abendstille sshd\[29159\]: Failed password for root from 218.92.0.171 port 48515 ssh2 Jun 1 14:36:43 abendstille sshd\[29159\]: Failed password for root from 218.92.0.171 port 48515 ssh2 Jun 1 14:36:46 abendstille sshd\[29159\]: Failed password for root from 218.92.0.171 port 48515 ssh2 ...	2020-06-01 20:41:28
106.52.212.117	attackspambots	Jun 1 09:05:01 firewall sshd[31388]: Failed password for root from 106.52.212.117 port 48520 ssh2 Jun 1 09:09:48 firewall sshd[31567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 user=root Jun 1 09:09:50 firewall sshd[31567]: Failed password for root from 106.52.212.117 port 43096 ssh2 ...	2020-06-01 20:30:55
142.93.1.100	attackspambots	Jun 1 15:18:29 root sshd[28277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.1.100 user=root Jun 1 15:18:30 root sshd[28277]: Failed password for root from 142.93.1.100 port 35492 ssh2 ...	2020-06-01 20:28:27
27.128.241.173	attack	2020-06-01T08:03:02.440037devel sshd[10260]: Failed password for root from 27.128.241.173 port 38508 ssh2 2020-06-01T08:09:38.373763devel sshd[10704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.241.173 user=root 2020-06-01T08:09:41.021145devel sshd[10704]: Failed password for root from 27.128.241.173 port 60264 ssh2	2020-06-01 20:40:09
106.12.195.99	attackspam	Jun 1 12:07:25 localhost sshd\[16899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.195.99 user=root Jun 1 12:07:27 localhost sshd\[16899\]: Failed password for root from 106.12.195.99 port 48294 ssh2 Jun 1 12:10:36 localhost sshd\[16949\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.195.99 user=root ...	2020-06-01 21:03:20
123.206.30.76	attack	Jun 1 15:21:00 journals sshd\[41447\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.30.76 user=root Jun 1 15:21:01 journals sshd\[41447\]: Failed password for root from 123.206.30.76 port 50042 ssh2 Jun 1 15:23:58 journals sshd\[41849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.30.76 user=root Jun 1 15:24:00 journals sshd\[41849\]: Failed password for root from 123.206.30.76 port 52908 ssh2 Jun 1 15:26:42 journals sshd\[42145\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.30.76 user=root ...	2020-06-01 20:39:56
183.89.237.39	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-06-01 20:24:55
54.36.241.186	attackbots	$f2bV_matches	2020-06-01 20:26:07
51.161.8.70	attackspam	Jun 1 12:42:07 game-panel sshd[3765]: Failed password for root from 51.161.8.70 port 45058 ssh2 Jun 1 12:45:23 game-panel sshd[3929]: Failed password for root from 51.161.8.70 port 44744 ssh2	2020-06-01 21:02:32
118.25.14.19	attackspam	Jun 1 14:19:46 home sshd[9810]: Failed password for root from 118.25.14.19 port 54108 ssh2 Jun 1 14:23:09 home sshd[10066]: Failed password for root from 118.25.14.19 port 34468 ssh2 ...	2020-06-01 20:38:58

最近上报的IP列表

11.13.20.232	9.152.176.251	124.90.52.86	123.160.232.211
123.145.24.230	122.96.73.60	122.96.29.232	121.57.224.199
175.231.179.48	120.92.72.144	119.181.106.8	117.14.113.153
116.252.0.74	115.198.203.89	142.79.202.236	115.54.174.179
89.12.121.178	166.12.226.89	45.90.172.25	112.193.171.154