117.69.30.132 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Anhui Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Oct 2 06:53:42 elektron postfix/smtpd\[24015\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.132\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[117.69.30.132\]\; from=\ to=\ proto=ESMTP helo=\ Oct 2 06:54:14 elektron postfix/smtpd\[25425\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.132\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[117.69.30.132\]\; from=\ to=\ proto=ESMTP helo=\ Oct 2 06:54:45 elektron postfix/smtpd\[21398\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.132\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[117.69.30.132\]\; from=\ to=\ proto=ESMTP helo=\	2019-10-02 12:58:14

类型

评论内容

时间

attackbotsspam

Oct  2 06:53:42 elektron postfix/smtpd\[24015\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.132\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[117.69.30.132\]\; from=\ to=\ proto=ESMTP helo=\
Oct  2 06:54:14 elektron postfix/smtpd\[25425\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.132\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[117.69.30.132\]\; from=\ to=\ proto=ESMTP helo=\
Oct  2 06:54:45 elektron postfix/smtpd\[21398\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.132\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[117.69.30.132\]\; from=\ to=\ proto=ESMTP helo=\

2019-10-02 12:58:14

相同子网IP讨论:

IP	类型	评论内容	时间
117.69.30.4	attackspam	Apr 13 06:53:37 elektron postfix/smtpd\[12073\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.4\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[117.69.30.4\]\; from=\ to=\ proto=ESMTP helo=\ Apr 13 06:54:10 elektron postfix/smtpd\[12822\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.4\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[117.69.30.4\]\; from=\ to=\ proto=ESMTP helo=\ Apr 13 06:54:47 elektron postfix/smtpd\[12822\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.4\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[117.69.30.4\]\; from=\ to=\ proto=ESMTP helo=\ Apr 13 06:55:20 elektron postfix/smtpd\[12073\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.4\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[117.69.30.4\]\; from=\ to=\ proto=ESMTP helo=\	2020-04-13 16:42:14
117.69.30.228	attack	Email spam message	2020-03-20 17:59:24
117.69.30.94	attackbots	IP: 117.69.30.94 Ports affected Simple Mail Transfer (25) Found in DNSBL('s) ASN Details AS4134 No.31 Jin-rong Street China (CN) CIDR 117.64.0.0/13 Log Date: 24/02/2020 12:46:14 PM UTC	2020-02-24 21:31:28
117.69.30.162	attack	Feb 9 05:56:49 grey postfix/smtpd\[27745\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.162\]: 554 5.7.1 Service unavailable\; Client host \[117.69.30.162\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[117.69.30.162\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-09 14:38:12
117.69.30.194	attackspambots	Jan 22 13:53:20 grey postfix/smtpd\[7299\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.194\]: 554 5.7.1 Service unavailable\; Client host \[117.69.30.194\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[117.69.30.194\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-22 23:05:02
117.69.30.65	attackbots	Email spam message	2020-01-13 22:05:58
117.69.30.210	attackspambots	Jan 9 14:07:48 grey postfix/smtpd\[21981\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.210\]: 554 5.7.1 Service unavailable\; Client host \[117.69.30.210\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[117.69.30.210\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-10 00:10:06
117.69.30.32	attackbots	Jan 2 07:30:34 grey postfix/smtpd\[16335\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.32\]: 554 5.7.1 Service unavailable\; Client host \[117.69.30.32\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[117.69.30.32\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-02 14:52:09
117.69.30.7	attack	Dec 14 15:45:03 grey postfix/smtpd\[16976\]: NOQUEUE: reject: RCPT from unknown\[117.69.30.7\]: 554 5.7.1 Service unavailable\; Client host \[117.69.30.7\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[117.69.30.7\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-15 00:11:10
117.69.30.216	attackspambots	badbot	2019-11-24 02:43:21
117.69.30.240	attackspambots	Brute force SMTP login attempts.	2019-11-01 07:36:52
117.69.30.106	attack	Brute force SMTP login attempts.	2019-10-20 14:40:16
117.69.30.20	attackbotsspam	Brute force attempt	2019-09-11 17:21:09
117.69.30.219	attackspambots	Brute force SMTP login attempts.	2019-08-30 13:58:55
117.69.30.4	attackbots	Brute force attempt	2019-08-15 09:11:56

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.69.30.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.69.30.132.			IN	A

;; AUTHORITY SECTION:
.			384	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100102 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 02 12:58:02 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 132.30.69.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 132.30.69.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
156.96.128.176	attackbotsspam	[2020-07-03 19:10:18] NOTICE[1197][C-00000f04] chan_sip.c: Call from '' (156.96.128.176:54145) to extension '00046313115064' rejected because extension not found in context 'public'. [2020-07-03 19:10:18] SECURITY[1214] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-03T19:10:18.901-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00046313115064",SessionID="0x7f6d28373408",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.128.176/54145",ACLName="no_extension_match" [2020-07-03 19:18:10] NOTICE[1197][C-00000f12] chan_sip.c: Call from '' (156.96.128.176:64745) to extension '01146313115064' rejected because extension not found in context 'public'. [2020-07-03 19:18:10] SECURITY[1214] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-03T19:18:10.662-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146313115064",SessionID="0x7f6d286efd48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/1 ...	2020-07-04 07:28:57
150.129.8.7	attackbotsspam	Unauthorized SSH login attempts	2020-07-04 07:38:04
1.164.54.55	attack	Automatic report - Port Scan Attack	2020-07-04 07:01:25
106.13.34.173	attackspam	Jul 4 01:14:30 lnxmysql61 sshd[4439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.34.173 Jul 4 01:14:32 lnxmysql61 sshd[4439]: Failed password for invalid user matias from 106.13.34.173 port 48116 ssh2 Jul 4 01:18:09 lnxmysql61 sshd[5544]: Failed password for root from 106.13.34.173 port 59760 ssh2	2020-07-04 07:29:21
103.39.130.151	attackspambots	Unauthorized connection attempt from IP address 103.39.130.151 on Port 445(SMB)	2020-07-04 07:17:03
137.26.29.118	attackspam	Jul 3 17:56:48 NPSTNNYC01T sshd[28828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.26.29.118 Jul 3 17:56:50 NPSTNNYC01T sshd[28828]: Failed password for invalid user sap from 137.26.29.118 port 55224 ssh2 Jul 3 18:00:49 NPSTNNYC01T sshd[29179]: Failed password for root from 137.26.29.118 port 53176 ssh2 ...	2020-07-04 07:11:48
62.234.83.50	attack	Jul 4 01:14:55 ns382633 sshd\[21640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.83.50 user=root Jul 4 01:14:57 ns382633 sshd\[21640\]: Failed password for root from 62.234.83.50 port 55187 ssh2 Jul 4 01:21:05 ns382633 sshd\[23008\]: Invalid user nagios from 62.234.83.50 port 50990 Jul 4 01:21:05 ns382633 sshd\[23008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.83.50 Jul 4 01:21:07 ns382633 sshd\[23008\]: Failed password for invalid user nagios from 62.234.83.50 port 50990 ssh2	2020-07-04 07:35:23
103.151.226.26	attack	Unauthorized connection attempt from IP address 103.151.226.26 on Port 445(SMB)	2020-07-04 07:20:42
86.34.117.123	attackspambots	Automatic report - Port Scan Attack	2020-07-04 07:31:47
137.74.166.77	attackbotsspam	2020-07-03T16:35:03.6064371495-001 sshd[24840]: Failed password for invalid user transfer from 137.74.166.77 port 57350 ssh2 2020-07-03T16:38:05.6811671495-001 sshd[24970]: Invalid user xxx from 137.74.166.77 port 54266 2020-07-03T16:38:05.6887861495-001 sshd[24970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.ip-137-74-166.eu 2020-07-03T16:38:05.6811671495-001 sshd[24970]: Invalid user xxx from 137.74.166.77 port 54266 2020-07-03T16:38:07.9638071495-001 sshd[24970]: Failed password for invalid user xxx from 137.74.166.77 port 54266 ssh2 2020-07-03T16:41:14.3753601495-001 sshd[25100]: Invalid user eth from 137.74.166.77 port 51182 ...	2020-07-04 07:00:07
217.107.34.58	attackbotsspam	Jul 3 18:11:30 firewall sshd[704]: Invalid user jenkins from 217.107.34.58 Jul 3 18:11:33 firewall sshd[704]: Failed password for invalid user jenkins from 217.107.34.58 port 41096 ssh2 Jul 3 18:11:57 firewall sshd[714]: Invalid user testuser from 217.107.34.58 ...	2020-07-04 07:05:41
112.85.42.188	attack	07/03/2020-19:28:41.703470 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan	2020-07-04 07:31:00
106.12.157.10	attackbotsspam	Jul 3 22:52:34 ip-172-31-61-156 sshd[27152]: Failed password for root from 106.12.157.10 port 39698 ssh2 Jul 3 22:56:15 ip-172-31-61-156 sshd[27365]: Invalid user bhaskar from 106.12.157.10 Jul 3 22:56:15 ip-172-31-61-156 sshd[27365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.157.10 Jul 3 22:56:15 ip-172-31-61-156 sshd[27365]: Invalid user bhaskar from 106.12.157.10 Jul 3 22:56:17 ip-172-31-61-156 sshd[27365]: Failed password for invalid user bhaskar from 106.12.157.10 port 56760 ssh2 ...	2020-07-04 07:03:09
145.239.1.182	attackspam	srv02 SSH BruteForce Attacks 22 ..	2020-07-04 06:58:08
94.33.52.61	attack	Jul 3 22:20:05 ns3033917 sshd[1552]: Failed password for invalid user steam from 94.33.52.61 port 40280 ssh2 Jul 3 22:23:13 ns3033917 sshd[1571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.33.52.61 user=root Jul 3 22:23:15 ns3033917 sshd[1571]: Failed password for root from 94.33.52.61 port 40884 ssh2 ...	2020-07-04 07:13:17

最近上报的IP列表

82.193.134.81	179.183.64.29	192.246.132.5	66.154.160.224
76.59.126.109	125.116.229.169	113.9.128.70	3.9.128.61
99.212.90.162	45.14.227.203	41.156.181.28	95.126.53.170
147.240.178.236	142.195.203.125	209.62.176.251	207.240.167.240
140.56.60.28	57.235.255.5	162.219.234.210	51.82.135.122