117.80.29.89 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2020-06-15 22:43:47.420921-0500 localhost smtpd[18325]: NOQUEUE: reject: RCPT from unknown[117.80.29.89]: 554 5.7.1 Service unavailable; Client host [117.80.29.89] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/117.80.29.89; from= to= proto=ESMTP helo=	2020-06-16 19:10:53

类型

评论内容

时间

attackspam

2020-06-15 22:43:47.420921-0500  localhost smtpd[18325]: NOQUEUE: reject: RCPT from unknown[117.80.29.89]: 554 5.7.1 Service unavailable; Client host [117.80.29.89] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/117.80.29.89; from= to= proto=ESMTP helo=

2020-06-16 19:10:53

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.80.29.89
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20594
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.80.29.89.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061600 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 16 19:10:49 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 89.29.80.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 89.29.80.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
121.15.4.92	attack	2020-07-30T14:26:11+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-07-30 20:45:41
51.68.196.163	attack	Jul 30 08:09:16 Tower sshd[25676]: Connection from 51.68.196.163 port 58214 on 192.168.10.220 port 22 rdomain "" Jul 30 08:09:17 Tower sshd[25676]: Invalid user xbt from 51.68.196.163 port 58214 Jul 30 08:09:17 Tower sshd[25676]: error: Could not get shadow information for NOUSER Jul 30 08:09:17 Tower sshd[25676]: Failed password for invalid user xbt from 51.68.196.163 port 58214 ssh2 Jul 30 08:09:17 Tower sshd[25676]: Received disconnect from 51.68.196.163 port 58214:11: Bye Bye [preauth] Jul 30 08:09:17 Tower sshd[25676]: Disconnected from invalid user xbt 51.68.196.163 port 58214 [preauth]	2020-07-30 20:42:00
223.71.167.166	attackbots	Jul 30 15:09:09 debian-2gb-nbg1-2 kernel: \[18373039.435474\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=223.71.167.166 DST=195.201.40.59 LEN=44 TOS=0x04 PREC=0x00 TTL=112 ID=45574 PROTO=TCP SPT=6526 DPT=4567 WINDOW=29200 RES=0x00 SYN URGP=0	2020-07-30 21:10:58
166.70.64.71	attackbots	2020-07-30T14:09:39.330367ns386461 sshd\[28006\]: Invalid user admin from 166.70.64.71 port 55309 2020-07-30T14:09:39.497067ns386461 sshd\[28006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.70.64.71 2020-07-30T14:09:40.972210ns386461 sshd\[28006\]: Failed password for invalid user admin from 166.70.64.71 port 55309 ssh2 2020-07-30T14:09:42.382867ns386461 sshd\[28032\]: Invalid user admin from 166.70.64.71 port 55431 2020-07-30T14:09:42.544315ns386461 sshd\[28032\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.70.64.71 ...	2020-07-30 20:38:23
151.80.168.236	attackbots	Jul 30 13:03:37 gospond sshd[18515]: Invalid user wengjiong from 151.80.168.236 port 56808 Jul 30 13:03:40 gospond sshd[18515]: Failed password for invalid user wengjiong from 151.80.168.236 port 56808 ssh2 Jul 30 13:09:21 gospond sshd[18704]: Invalid user zuoyu from 151.80.168.236 port 39202 ...	2020-07-30 20:56:41
222.186.42.57	attack	Jul 30 14:39:39 vps647732 sshd[6780]: Failed password for root from 222.186.42.57 port 50518 ssh2 ...	2020-07-30 20:42:36
5.139.189.13	attackspambots	hacking my emails	2020-07-30 20:52:56
202.147.198.154	attack	Jul 30 14:31:33 h1745522 sshd[597]: Invalid user sonarUser from 202.147.198.154 port 42345 Jul 30 14:31:33 h1745522 sshd[597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.147.198.154 Jul 30 14:31:33 h1745522 sshd[597]: Invalid user sonarUser from 202.147.198.154 port 42345 Jul 30 14:31:35 h1745522 sshd[597]: Failed password for invalid user sonarUser from 202.147.198.154 port 42345 ssh2 Jul 30 14:33:36 h1745522 sshd[700]: Invalid user haixuan from 202.147.198.154 port 56343 Jul 30 14:33:36 h1745522 sshd[700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.147.198.154 Jul 30 14:33:36 h1745522 sshd[700]: Invalid user haixuan from 202.147.198.154 port 56343 Jul 30 14:33:39 h1745522 sshd[700]: Failed password for invalid user haixuan from 202.147.198.154 port 56343 ssh2 Jul 30 14:35:36 h1745522 sshd[788]: Invalid user kzr from 202.147.198.154 port 42133 ...	2020-07-30 20:36:25
192.99.31.122	attackbotsspam	Automatic report - XMLRPC Attack	2020-07-30 20:57:54
51.79.53.21	attackbotsspam	Jul 30 14:51:36 eventyay sshd[19580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.53.21 Jul 30 14:51:38 eventyay sshd[19580]: Failed password for invalid user zexue from 51.79.53.21 port 53398 ssh2 Jul 30 14:55:28 eventyay sshd[19756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.53.21 ...	2020-07-30 21:10:25
202.175.46.170	attackbotsspam	Jul 30 12:09:17 IngegnereFirenze sshd[31326]: Failed password for invalid user mss from 202.175.46.170 port 51268 ssh2 ...	2020-07-30 21:00:21
106.12.88.246	attackbotsspam	Jul 30 13:48:34 icinga sshd[47064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.88.246 Jul 30 13:48:36 icinga sshd[47064]: Failed password for invalid user jiabo from 106.12.88.246 port 40848 ssh2 Jul 30 14:08:50 icinga sshd[13845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.88.246 ...	2020-07-30 21:08:12
167.99.69.130	attackbotsspam	Jul 30 14:37:08 marvibiene sshd[12482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.69.130 Jul 30 14:37:09 marvibiene sshd[12482]: Failed password for invalid user jingjie from 167.99.69.130 port 57022 ssh2	2020-07-30 21:14:41
92.80.254.41	attack	Jul 30 14:09:22 server postfix/smtpd[29043]: NOQUEUE: reject: RCPT from unknown[92.80.254.41]: 554 5.7.1 Service unavailable; Client host [92.80.254.41] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/92.80.254.41; from= to= proto=ESMTP helo=<[92.80.254.41]>	2020-07-30 20:55:49
129.152.43.79	attackbots	Scanning an empty webserver with deny all robots.txt	2020-07-30 20:57:05

最近上报的IP列表

126.64.78.200	7.128.4.119	4.33.140.61	198.233.49.247
205.78.49.106	17.43.254.30	161.10.31.104	180.64.105.151
208.110.60.135	235.232.132.238	49.83.230.180	153.237.180.16
15.93.83.240	38.14.155.12	143.236.121.113	249.170.73.106
181.40.66.104	49.12.69.53	159.203.77.91	45.125.192.53