248.127.80.30 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: IANA Special-Purpose Address

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 248.127.80.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1244
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;248.127.80.30.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 09:44:00 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 30.80.127.248.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 30.80.127.248.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.64.40.35	attack	Feb 16 23:23:52 hell sshd[11475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.40.35 Feb 16 23:23:54 hell sshd[11475]: Failed password for invalid user web1 from 212.64.40.35 port 41446 ssh2 ...	2020-02-17 10:13:57
123.30.149.76	attack	Invalid user services from 123.30.149.76 port 54706	2020-02-17 10:41:41
163.53.151.25	attackspambots	B: f2b postfix aggressive 3x	2020-02-17 10:20:13
132.232.53.85	attackspam	Feb 17 00:49:25 ws26vmsma01 sshd[16783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.53.85 Feb 17 00:49:27 ws26vmsma01 sshd[16783]: Failed password for invalid user ftp from 132.232.53.85 port 40678 ssh2 ...	2020-02-17 10:15:38
178.128.81.125	attackbots	Feb 17 02:53:42 localhost sshd\[1573\]: Invalid user admin from 178.128.81.125 port 50938 Feb 17 02:53:42 localhost sshd\[1573\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.81.125 Feb 17 02:53:44 localhost sshd\[1573\]: Failed password for invalid user admin from 178.128.81.125 port 50938 ssh2	2020-02-17 10:18:05
41.110.187.86	attackbotsspam	20/2/16@19:38:00: FAIL: Alarm-Network address from=41.110.187.86 20/2/16@19:38:00: FAIL: Alarm-Network address from=41.110.187.86 ...	2020-02-17 10:11:22
189.208.60.178	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-17 10:37:13
117.197.219.0	attack	1581891836 - 02/16/2020 23:23:56 Host: 117.197.219.0/117.197.219.0 Port: 445 TCP Blocked	2020-02-17 10:16:11
40.114.226.249	attackspambots	$f2bV_matches	2020-02-17 10:12:19
182.1.115.182	attackspam	[Mon Feb 17 05:23:14.630935 2020] [:error] [pid 22230:tid 139656805431040] [client 182.1.115.182:62470] [client 182.1.115.182] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/citra-satelit-bmkg"] [unique_id "XknAyUDcx7KffueAQ4GEkgAAAAE"], referer: https://www.google.com/ ...	2020-02-17 10:48:28
103.89.91.253	attackbots	Multiple SSH login attempts.	2020-02-17 10:47:33
189.208.61.116	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-17 10:06:14
49.235.94.172	attackspam	Feb 16 23:14:22 firewall sshd[30156]: Invalid user craigh from 49.235.94.172 Feb 16 23:14:24 firewall sshd[30156]: Failed password for invalid user craigh from 49.235.94.172 port 34304 ssh2 Feb 16 23:22:24 firewall sshd[30518]: Invalid user test from 49.235.94.172 ...	2020-02-17 10:39:38
198.12.156.214	attack	198.12.156.214 - - \[16/Feb/2020:23:23:55 +0100\] "POST /wp-login.php HTTP/1.0" 200 5728 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 198.12.156.214 - - \[16/Feb/2020:23:23:58 +0100\] "POST /wp-login.php HTTP/1.0" 200 5728 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 198.12.156.214 - - \[16/Feb/2020:23:23:59 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 802 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-02-17 10:08:33
61.69.78.78	attackspambots	Automatic report - Banned IP Access	2020-02-17 10:38:26

Recently Reported IPs

161.223.160.163	206.32.33.100	149.105.26.158	126.65.48.192
224.79.235.220	27.227.2.108	131.103.82.65	188.145.126.252
65.120.185.14	7.120.40.203	213.215.108.51	91.231.32.27
19.116.213.212	165.241.4.25	203.36.4.158	27.3.47.157
2.168.227.129	88.245.40.3	232.109.122.136	15.143.202.172