127.30.75.109 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): IANA Special-Purpose Address

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 127.30.75.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44070
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;127.30.75.109.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022000 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 23:25:28 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 109.75.30.127.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 109.75.30.127.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
175.126.62.163	attackbots	175.126.62.163 - - [07/Apr/2020:10:40:17 +0200] "GET /wp-login.php HTTP/1.1" 200 6136 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 175.126.62.163 - - [07/Apr/2020:10:40:23 +0200] "POST /wp-login.php HTTP/1.1" 200 7014 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 175.126.62.163 - - [07/Apr/2020:10:40:27 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-07 18:24:45
91.211.56.247	attackbots	Port probing on unauthorized port 445	2020-04-07 18:16:15
213.219.210.146	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-04-07 18:03:22
45.133.99.16	attackbotsspam	Apr 7 11:07:20 mail postfix/smtpd\[20031\]: warning: unknown\[45.133.99.16\]: SASL PLAIN authentication failed: \ Apr 7 11:07:37 mail postfix/smtpd\[20248\]: warning: unknown\[45.133.99.16\]: SASL PLAIN authentication failed: \ Apr 7 11:07:53 mail postfix/smtpd\[20031\]: warning: unknown\[45.133.99.16\]: SASL PLAIN authentication failed: \ Apr 7 11:48:00 mail postfix/smtpd\[21078\]: warning: unknown\[45.133.99.16\]: SASL PLAIN authentication failed: \ Apr 7 11:48:00 mail postfix/smtpd\[21077\]: warning: unknown\[45.133.99.16\]: SASL PLAIN authentication failed: \	2020-04-07 17:55:49
200.31.19.206	attack	Brute force SMTP login attempted. ...	2020-04-07 18:31:53
188.254.0.112	attackspam	(sshd) Failed SSH login from 188.254.0.112 (RU/Russia/-): 5 in the last 3600 secs	2020-04-07 18:04:44
193.112.4.12	attackspambots	5x Failed Password	2020-04-07 18:07:31
118.24.83.41	attack	Apr 7 10:38:36 minden010 sshd[17631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.83.41 Apr 7 10:38:38 minden010 sshd[17631]: Failed password for invalid user test from 118.24.83.41 port 33252 ssh2 Apr 7 10:41:48 minden010 sshd[19156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.83.41 ...	2020-04-07 18:20:06
45.148.120.150	attackspambots	[Tue Apr 07 00:48:43.054737 2020] [:error] [pid 135802] [client 45.148.120.150:55588] [client 45.148.120.150] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 18)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "127.0.0.1"] [uri "/cgi-bin/ViewLog.asp"] [unique_id "Xov4GsTCSdcWHEV@F8KFXAAAAB8"] ...	2020-04-07 17:53:09
24.230.215.40	attackspam	Apr 6 19:29:03 sachi sshd\[24290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24-230-215-40.dr.cgocable.ca user=root Apr 6 19:29:04 sachi sshd\[24290\]: Failed password for root from 24.230.215.40 port 49796 ssh2 Apr 6 19:33:37 sachi sshd\[24652\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24-230-215-40.dr.cgocable.ca user=root Apr 6 19:33:40 sachi sshd\[24652\]: Failed password for root from 24.230.215.40 port 50290 ssh2 Apr 6 19:38:12 sachi sshd\[25094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24-230-215-40.dr.cgocable.ca user=root	2020-04-07 17:57:25
180.115.29.75	attackbotsspam	port scan and connect, tcp 23 (telnet)	2020-04-07 18:08:05
41.36.60.83	attackspam	Unauthorised access (Apr 7) SRC=41.36.60.83 LEN=40 TTL=52 ID=25341 TCP DPT=23 WINDOW=51535 SYN	2020-04-07 18:39:08
51.38.48.127	attackbots	Apr 7 08:33:06 ws26vmsma01 sshd[142309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.48.127 Apr 7 08:33:08 ws26vmsma01 sshd[142309]: Failed password for invalid user ubuntu from 51.38.48.127 port 52134 ssh2 ...	2020-04-07 18:32:44
202.43.164.162	attackbots	Apr 7 12:19:43 [host] sshd[32668]: Invalid user t Apr 7 12:19:43 [host] sshd[32668]: pam_unix(sshd: Apr 7 12:19:45 [host] sshd[32668]: Failed passwor	2020-04-07 18:29:32
104.244.76.245	attackbotsspam	Unauthorized SSH login attempts	2020-04-07 18:24:27

最近上报的IP列表

181.106.80.207	137.185.144.240	49.206.83.250	43.137.204.147
239.66.242.182	234.172.53.60	95.161.178.182	144.2.122.66
210.224.255.104	252.17.223.246	18.150.194.27	178.133.104.61
138.65.164.91	71.38.221.122	232.74.64.20	195.223.173.4
16.3.212.179	26.106.10.34	225.61.197.86	90.162.46.166