85.30.106.29 - IPInfo

基本信息:

城市(city): Tetovo

省份(region): Tetovo

国家(country): North Macedonia

运营商(isp): vip

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.30.106.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 972
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.30.106.29.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091901 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 20 09:22:14 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 29.106.30.85.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 29.106.30.85.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
95.131.145.86	attackbots	Unauthorised access (Jun 21) SRC=95.131.145.86 LEN=40 TTL=56 ID=64213 TCP DPT=8080 WINDOW=63621 SYN Unauthorised access (Jun 21) SRC=95.131.145.86 LEN=40 TTL=56 ID=10570 TCP DPT=8080 WINDOW=63621 SYN Unauthorised access (Jun 17) SRC=95.131.145.86 LEN=40 TTL=56 ID=715 TCP DPT=8080 WINDOW=63621 SYN	2019-06-21 19:24:37
178.165.73.87	attack	Jun 20 04:14:22 localhost kernel: [12262656.258363] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=178.165.73.87 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=19803 PROTO=TCP SPT=58092 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 20 04:14:22 localhost kernel: [12262656.258391] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=178.165.73.87 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=19803 PROTO=TCP SPT=58092 DPT=445 SEQ=1032924312 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 21 05:19:00 localhost kernel: [12352933.737328] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=178.165.73.87 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=52862 PROTO=TCP SPT=43539 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 21 05:19:00 localhost kernel: [12352933.737355] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=178.165.73.87 DST=[mungedIP2] LEN=40 TOS=0x00 PRE	2019-06-21 19:56:30
101.69.241.27	attackspam	Jun 21 11:19:59 rpi1 sshd\[23220\]: Invalid user user from 101.69.241.27 port 60576 Jun 21 11:19:59 rpi1 sshd\[23220\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.69.241.27 Jun 21 11:20:01 rpi1 sshd\[23220\]: Failed password for invalid user user from 101.69.241.27 port 60576 ssh2	2019-06-21 19:36:25
83.144.110.218	attackspambots	2019-06-21T05:02:41.839022WS-Zach sshd[12498]: Invalid user cron from 83.144.110.218 port 38178 2019-06-21T05:02:41.842506WS-Zach sshd[12498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.144.110.218 2019-06-21T05:02:41.839022WS-Zach sshd[12498]: Invalid user cron from 83.144.110.218 port 38178 2019-06-21T05:02:43.461030WS-Zach sshd[12498]: Failed password for invalid user cron from 83.144.110.218 port 38178 ssh2 2019-06-21T05:20:13.607066WS-Zach sshd[20955]: Invalid user musikbot from 83.144.110.218 port 35136 ...	2019-06-21 19:31:09
107.170.237.113	attackbotsspam	1561108899 - 06/21/2019 11:21:39 Host: zg-0301d-23.stretchoid.com/107.170.237.113 Port: 161 UDP Blocked	2019-06-21 19:08:32
40.124.4.131	attack	Jun 21 12:31:54 Ubuntu-1404-trusty-64-minimal sshd\[21535\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.124.4.131 user=root Jun 21 12:31:56 Ubuntu-1404-trusty-64-minimal sshd\[21535\]: Failed password for root from 40.124.4.131 port 54774 ssh2 Jun 21 12:43:51 Ubuntu-1404-trusty-64-minimal sshd\[29969\]: Invalid user hadoop from 40.124.4.131 Jun 21 12:43:51 Ubuntu-1404-trusty-64-minimal sshd\[29969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.124.4.131 Jun 21 12:43:53 Ubuntu-1404-trusty-64-minimal sshd\[29969\]: Failed password for invalid user hadoop from 40.124.4.131 port 34476 ssh2	2019-06-21 19:41:42
189.15.254.198	attackspam	Automatic report - SSH Brute-Force Attack	2019-06-21 19:37:16
107.170.202.129	attack	¯\_(ツ)_/¯	2019-06-21 19:05:31
118.163.193.82	attackspambots	SSH Brute Force	2019-06-21 19:55:25
180.189.206.15	attackspam	webdav, phpmyadmin...	2019-06-21 20:00:38
114.67.232.239	attackbots	114.67.232.239 - - [19/Jun/2019:18:53:45 +0300] "GET /TP/public/index.php HTTP/1.1" 404 217 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 114.67.232.239 - - [19/Jun/2019:18:53:46 +0300] "GET /TP/index.php HTTP/1.1" 404 210 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 114.67.232.239 - - [19/Jun/2019:18:53:46 +0300] "GET /thinkphp/html/public/index.php HTTP/1.1" 404 228 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" ...	2019-06-21 19:40:59
185.131.191.77	attack	port scan and connect, tcp 8080 (http-proxy)	2019-06-21 19:32:44
115.159.185.205	attackspam	Jun 21 11:02:35 Ubuntu-1404-trusty-64-minimal sshd\[21223\]: Invalid user tomcat from 115.159.185.205 Jun 21 11:02:35 Ubuntu-1404-trusty-64-minimal sshd\[21223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.185.205 Jun 21 11:02:37 Ubuntu-1404-trusty-64-minimal sshd\[21223\]: Failed password for invalid user tomcat from 115.159.185.205 port 57408 ssh2 Jun 21 11:20:50 Ubuntu-1404-trusty-64-minimal sshd\[2031\]: Invalid user demo from 115.159.185.205 Jun 21 11:20:50 Ubuntu-1404-trusty-64-minimal sshd\[2031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.185.205	2019-06-21 19:21:34
65.70.31.19	attackspambots	DATE:2019-06-21 11:18:47, IP:65.70.31.19, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-06-21 20:02:17
36.69.206.55	attackbots	firewall-block, port(s): 8090/tcp	2019-06-21 19:36:56

最近上报的IP列表

23.115.46.231	151.238.209.171	76.219.55.12	46.202.141.75
112.23.68.58	121.82.22.149	208.5.101.202	76.90.115.163
45.161.116.85	204.255.45.206	41.142.189.43	109.253.68.57
193.216.244.9	109.146.199.234	207.13.181.3	67.233.24.96
98.217.142.61	196.214.95.132	65.69.86.44	63.247.126.223