102.30.245.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Tunisia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.30.245.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60685
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;102.30.245.20.			IN	A

;; AUTHORITY SECTION:
.			176	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023102100 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 22 00:40:51 CST 2023
;; MSG SIZE  rcvd: 106

HOST信息:

Host 20.245.30.102.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.245.30.102.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
81.70.44.139	attackbotsspam	SSH brute-force attempt	2020-09-25 18:21:17
115.207.97.2	attackspam	lfd: (smtpauth) Failed SMTP AUTH login from 115.207.97.2 (-): 5 in the last 3600 secs - Fri Aug 24 21:32:20 2018	2020-09-25 18:38:18
83.234.218.42	attackspam	srvr3: (mod_security) mod_security (id:920350) triggered by 83.234.218.42 (RU/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/24 22:36:57 [error] 213524#0: 963 [client 83.234.218.42] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160097981723.743749"] [ref "o0,14v21,14"], client: 83.234.218.42, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-25 18:13:43
86.34.157.3	attack	Dovecot Invalid User Login Attempt.	2020-09-25 18:16:07
106.54.67.233	attackspambots	106.54.67.233 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 25 10:12:47 server2 sshd[2623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.188.206.241 user=root Sep 25 10:12:11 server2 sshd[2117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.67.233 user=root Sep 25 10:12:12 server2 sshd[2117]: Failed password for root from 106.54.67.233 port 41054 ssh2 Sep 25 10:12:27 server2 sshd[2377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.166.130.230 user=root Sep 25 10:12:29 server2 sshd[2377]: Failed password for root from 52.166.130.230 port 9749 ssh2 Sep 25 10:13:04 server2 sshd[2838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.45.193.247 user=root IP Addresses Blocked: 52.188.206.241 (US/United States/-)	2020-09-25 18:39:43
165.232.38.63	attackspam	Sep 24 22:19:07 nandi sshd[23144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.232.38.63 user=r.r Sep 24 22:19:09 nandi sshd[23144]: Failed password for r.r from 165.232.38.63 port 53810 ssh2 Sep 24 22:19:09 nandi sshd[23144]: Received disconnect from 165.232.38.63: 11: Bye Bye [preauth] Sep 24 22:31:39 nandi sshd[30125]: Invalid user admin from 165.232.38.63 Sep 24 22:31:39 nandi sshd[30125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.232.38.63 Sep 24 22:31:41 nandi sshd[30125]: Failed password for invalid user admin from 165.232.38.63 port 55220 ssh2 Sep 24 22:31:41 nandi sshd[30125]: Received disconnect from 165.232.38.63: 11: Bye Bye [preauth] Sep 24 22:35:18 nandi sshd[31963]: Invalid user fivem from 165.232.38.63 Sep 24 22:35:18 nandi sshd[31963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.232.38.63 Sep 24 22:35:19 na........ -------------------------------	2020-09-25 18:32:34
185.126.200.139	attack	lfd: (smtpauth) Failed SMTP AUTH login from 185.126.200.139 (IR/Iran/-): 5 in the last 3600 secs - Sun Aug 26 00:27:22 2018	2020-09-25 18:26:36
51.79.54.234	attack	Sep 25 12:32:11 OPSO sshd\[25541\]: Invalid user sinus from 51.79.54.234 port 52108 Sep 25 12:32:11 OPSO sshd\[25541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.54.234 Sep 25 12:32:13 OPSO sshd\[25541\]: Failed password for invalid user sinus from 51.79.54.234 port 52108 ssh2 Sep 25 12:36:49 OPSO sshd\[26675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.54.234 user=root Sep 25 12:36:52 OPSO sshd\[26675\]: Failed password for root from 51.79.54.234 port 60984 ssh2	2020-09-25 18:42:47
222.186.42.137	attackbots	Sep 25 12:26:33 eventyay sshd[2781]: Failed password for root from 222.186.42.137 port 54215 ssh2 Sep 25 12:26:42 eventyay sshd[2784]: Failed password for root from 222.186.42.137 port 30574 ssh2 ...	2020-09-25 18:30:31
45.81.254.211	attackspam	Sep 24 14:36:48 Host-KLAX-C postfix/smtpd[270583]: NOQUEUE: reject: RCPT from trailcover.cyou[45.81.254.211]: 554 5.7.1 : Sender address rejected: We reject all .cyou domains because of SPAM; from= to= proto=ESMTP helo= ...	2020-09-25 18:30:05
47.240.32.191	attackspam	Automatic report - Banned IP Access	2020-09-25 18:45:31
123.206.118.47	attack	2020-09-25T06:39:01.470893galaxy.wi.uni-potsdam.de sshd[20710]: Invalid user admin from 123.206.118.47 port 37370 2020-09-25T06:39:01.472825galaxy.wi.uni-potsdam.de sshd[20710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.118.47 2020-09-25T06:39:01.470893galaxy.wi.uni-potsdam.de sshd[20710]: Invalid user admin from 123.206.118.47 port 37370 2020-09-25T06:39:04.038046galaxy.wi.uni-potsdam.de sshd[20710]: Failed password for invalid user admin from 123.206.118.47 port 37370 ssh2 2020-09-25T06:42:03.712918galaxy.wi.uni-potsdam.de sshd[21107]: Invalid user hadoop from 123.206.118.47 port 43824 2020-09-25T06:42:03.714851galaxy.wi.uni-potsdam.de sshd[21107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.118.47 2020-09-25T06:42:03.712918galaxy.wi.uni-potsdam.de sshd[21107]: Invalid user hadoop from 123.206.118.47 port 43824 2020-09-25T06:42:05.597728galaxy.wi.uni-potsdam.de sshd[21107]: Faile ...	2020-09-25 18:24:57
128.199.102.242	attack	SSH Brute-force	2020-09-25 18:51:12
68.148.133.128	attackspam	Invalid user tommy from 68.148.133.128 port 37172	2020-09-25 18:44:50
204.44.98.243	attackbots	Sep 25 00:35:54 askasleikir sshd[7015]: Failed password for invalid user oracle from 204.44.98.243 port 60758 ssh2	2020-09-25 18:17:00

最近上报的IP列表

102.30.66.102	102.30.32.25	102.30.50.50	102.30.215.242
102.30.198.94	102.31.123.187	102.30.178.4	102.30.179.14
102.30.187.80	102.30.236.129	102.30.249.158	102.30.53.136
102.30.160.13	102.30.208.24	102.30.142.194	102.30.116.127
102.30.102.211	102.30.16.198	102.30.114.66	102.30.146.43