42.30.187.191 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): SK Telecom

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.30.187.191
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2229
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.30.187.191.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon May 20 21:28:57 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 191.187.30.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 191.187.30.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
163.172.154.178	attack	Aug 14 06:37:25 minden010 sshd[19460]: Failed password for root from 163.172.154.178 port 36492 ssh2 Aug 14 06:40:55 minden010 sshd[20188]: Failed password for root from 163.172.154.178 port 38414 ssh2 ...	2020-08-14 16:25:03
46.101.204.20	attack	2020-08-14T06:33:04.082023snf-827550 sshd[26525]: Failed password for root from 46.101.204.20 port 53686 ssh2 2020-08-14T06:37:08.124154snf-827550 sshd[26539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.204.20 user=root 2020-08-14T06:37:09.254147snf-827550 sshd[26539]: Failed password for root from 46.101.204.20 port 34834 ssh2 ...	2020-08-14 16:23:04
191.234.176.158	attackbots	191.234.176.158 - - [14/Aug/2020:07:02:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 191.234.176.158 - - [14/Aug/2020:07:02:04 +0100] "POST /wp-login.php HTTP/1.1" 200 2000 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 191.234.176.158 - - [14/Aug/2020:07:02:05 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-14 16:32:40
130.185.108.169	attackbotsspam	SpamScore above: 10.0	2020-08-14 16:53:02
79.16.28.18	attack	Automatic report - Port Scan Attack	2020-08-14 16:23:50
167.71.236.116	attackspambots	2020-08-14T05:41:56.530564shield sshd\[16465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.236.116 user=root 2020-08-14T05:41:58.632240shield sshd\[16465\]: Failed password for root from 167.71.236.116 port 36870 ssh2 2020-08-14T05:46:05.518900shield sshd\[16722\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.236.116 user=root 2020-08-14T05:46:07.470088shield sshd\[16722\]: Failed password for root from 167.71.236.116 port 54456 ssh2 2020-08-14T05:49:54.608190shield sshd\[16903\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.236.116 user=root	2020-08-14 16:49:28
27.72.102.43	attackbots	Port Scan ...	2020-08-14 16:16:51
203.105.78.62	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-14 16:51:49
81.183.182.37	attackbots	Aug 14 03:28:37 game-panel sshd[5987]: Failed password for root from 81.183.182.37 port 58522 ssh2 Aug 14 03:32:55 game-panel sshd[6097]: Failed password for root from 81.183.182.37 port 42008 ssh2	2020-08-14 16:20:11
196.240.104.135	attack	srvr1: (mod_security) mod_security (id:941100) triggered by 196.240.104.135 (GB/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/14 03:36:58 [error] 228665#0: 20031 [client 196.240.104.135] ModSecurity: Access denied with code 406 (phase 2). detected XSS using libinjection. [file "/etc/modsecurity.d/REQUEST-941-APPLICATION-ATTACK-XSS.conf"] [line "37"] [id "941100"] [rev ""] [msg "XSS Attack Detected via libinjection"] [redacted] [severity "2"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-xss"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/242"] [redacted] [uri "/forum/index.php"] [unique_id "159737621899.758028"] [ref "v622,13t:utf8toUnicode,t:urlDecodeUni,t:htmlEntityDecode,t:jsDecode,t:cssDecode,t:removeNulls"], client: 196.240.104.135, [redacted] request: "POST /forum/index.php HTTP/1.0" [redacted]	2020-08-14 16:25:54
49.206.19.93	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-14 16:36:17
95.84.146.201	attack	$f2bV_matches	2020-08-14 16:27:02
165.22.216.238	attackspambots	$f2bV_matches	2020-08-14 16:29:57
185.67.82.114	attackbots	SSH brute-force attempt	2020-08-14 16:48:30
180.124.210.61	attack	Automatic report - Port Scan Attack	2020-08-14 16:50:53

最近上报的IP列表

138.186.60.159	221.148.240.170	178.160.43.6	84.82.163.29
177.106.49.124	154.84.26.221	213.144.64.175	201.162.203.252
217.219.58.196	172.82.227.240	80.24.128.203	68.183.207.50
178.87.86.46	74.225.67.222	35.10.50.102	198.83.235.111
126.9.105.240	65.123.78.215	115.59.109.231	14.153.61.174