137.226.20.119

基本信息:

城市(city): Aachen

省份(region): North Rhine-Westphalia

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.226.20.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9949
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;137.226.20.119.			IN	A

;; AUTHORITY SECTION:
.			107	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062402 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 25 09:56:14 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

119.20.226.137.in-addr.arpa domain name pointer nb-cad-03.win.iwm.rwth-aachen.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
119.20.226.137.in-addr.arpa	name = nb-cad-03.win.iwm.rwth-aachen.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
118.24.99.161	attackspambots	Tried sshing with brute force.	2020-01-11 17:04:17
222.186.180.9	attackspam	Jan 11 10:18:31 ns3042688 sshd\[4046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.9 user=root Jan 11 10:18:33 ns3042688 sshd\[4046\]: Failed password for root from 222.186.180.9 port 59644 ssh2 Jan 11 10:18:36 ns3042688 sshd\[4046\]: Failed password for root from 222.186.180.9 port 59644 ssh2 Jan 11 10:18:40 ns3042688 sshd\[4046\]: Failed password for root from 222.186.180.9 port 59644 ssh2 Jan 11 10:18:44 ns3042688 sshd\[4046\]: Failed password for root from 222.186.180.9 port 59644 ssh2 ...	2020-01-11 17:20:22
196.203.31.154	attack	Jan 11 09:53:43 srv01 sshd[28925]: Invalid user informix from 196.203.31.154 port 53738 Jan 11 09:53:43 srv01 sshd[28925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.203.31.154 Jan 11 09:53:43 srv01 sshd[28925]: Invalid user informix from 196.203.31.154 port 53738 Jan 11 09:53:45 srv01 sshd[28925]: Failed password for invalid user informix from 196.203.31.154 port 53738 ssh2 Jan 11 09:55:44 srv01 sshd[29056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.203.31.154 user=root Jan 11 09:55:46 srv01 sshd[29056]: Failed password for root from 196.203.31.154 port 35491 ssh2 ...	2020-01-11 16:59:11
200.54.255.253	attackbotsspam	Jan 11 08:36:19 pornomens sshd\[12624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.255.253 user=root Jan 11 08:36:20 pornomens sshd\[12624\]: Failed password for root from 200.54.255.253 port 47112 ssh2 Jan 11 08:39:01 pornomens sshd\[12658\]: Invalid user role1 from 200.54.255.253 port 35142 ...	2020-01-11 16:54:28
220.181.108.85	attackbotsspam	Automatic report - Banned IP Access	2020-01-11 16:56:21
131.108.53.221	attack	[Sat Jan 11 11:52:52.178348 2020] [:error] [pid 8512:tid 140478037059328] [client 131.108.53.221:57715] [client 131.108.53.221] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XhlUpFdOXXW0RQAWP01AeAAAAHs"] ...	2020-01-11 16:49:46
187.16.236.38	attackbots	Jan 11 05:52:13 grey postfix/smtpd\[16776\]: NOQUEUE: reject: RCPT from estrela.certelnet.com.br\[187.16.236.38\]: 554 5.7.1 Service unavailable\; Client host \[187.16.236.38\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=187.16.236.38\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-11 17:08:17
113.160.203.13	attackspambots	1578718326 - 01/11/2020 05:52:06 Host: 113.160.203.13/113.160.203.13 Port: 445 TCP Blocked	2020-01-11 17:11:44
193.106.95.9	attackspam	01/11/2020-05:52:08.906991 193.106.95.9 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-01-11 17:09:52
160.153.154.23	attackbotsspam	Automatic report - XMLRPC Attack	2020-01-11 17:12:20
219.138.158.220	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-01-11 17:10:29
45.6.162.116	attackbots	Jan 11 05:52:01 grey postfix/smtpd\[9382\]: NOQUEUE: reject: RCPT from unknown\[45.6.162.116\]: 554 5.7.1 Service unavailable\; Client host \[45.6.162.116\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=45.6.162.116\; from=\ to=\ proto=ESMTP helo=\<\[45.6.162.116\]\> ...	2020-01-11 17:16:45
116.105.156.92	attackbotsspam	1578718319 - 01/11/2020 05:51:59 Host: 116.105.156.92/116.105.156.92 Port: 445 TCP Blocked	2020-01-11 17:18:53
206.189.47.55	attackspam	Automatic report - XMLRPC Attack	2020-01-11 17:20:55
88.248.248.154	attack	1578718368 - 01/11/2020 05:52:48 Host: 88.248.248.154/88.248.248.154 Port: 445 TCP Blocked	2020-01-11 16:53:21

最近上报的IP列表

137.226.202.184	137.226.202.173	137.226.84.98	217.146.82.225
169.229.5.134	137.226.13.204	137.226.95.168	94.193.92.18
169.229.92.230	169.229.94.164	169.229.93.118	94.61.170.82
43.156.247.91	43.156.5.138	192.241.222.143	179.48.150.109
205.210.31.26	40.81.141.116	45.179.91.183	93.96.19.141