201.55.142.135

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): WI - Provedor de Telecomunicacoes Ltda.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Aug 14 23:49:22 mail.srvfarm.net postfix/smtpd[738030]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: Aug 14 23:49:23 mail.srvfarm.net postfix/smtpd[738030]: lost connection after AUTH from unknown[201.55.142.135] Aug 14 23:53:36 mail.srvfarm.net postfix/smtps/smtpd[739407]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: Aug 14 23:53:37 mail.srvfarm.net postfix/smtps/smtpd[739407]: lost connection after AUTH from unknown[201.55.142.135] Aug 14 23:59:22 mail.srvfarm.net postfix/smtpd[736667]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed:	2020-08-15 17:13:32
attackbots	Jun 18 12:25:38 mail.srvfarm.net postfix/smtpd[1443188]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: Jun 18 12:25:38 mail.srvfarm.net postfix/smtpd[1443188]: lost connection after AUTH from unknown[201.55.142.135] Jun 18 12:28:59 mail.srvfarm.net postfix/smtpd[1445381]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: Jun 18 12:28:59 mail.srvfarm.net postfix/smtpd[1445381]: lost connection after AUTH from unknown[201.55.142.135] Jun 18 12:31:47 mail.srvfarm.net postfix/smtpd[1445365]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed:	2020-06-19 01:28:20

类型

评论内容

时间

attack

Aug 14 23:49:22 mail.srvfarm.net postfix/smtpd[738030]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: 
Aug 14 23:49:23 mail.srvfarm.net postfix/smtpd[738030]: lost connection after AUTH from unknown[201.55.142.135]
Aug 14 23:53:36 mail.srvfarm.net postfix/smtps/smtpd[739407]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: 
Aug 14 23:53:37 mail.srvfarm.net postfix/smtps/smtpd[739407]: lost connection after AUTH from unknown[201.55.142.135]
Aug 14 23:59:22 mail.srvfarm.net postfix/smtpd[736667]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed:

2020-08-15 17:13:32

attackbots

Jun 18 12:25:38 mail.srvfarm.net postfix/smtpd[1443188]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: 
Jun 18 12:25:38 mail.srvfarm.net postfix/smtpd[1443188]: lost connection after AUTH from unknown[201.55.142.135]
Jun 18 12:28:59 mail.srvfarm.net postfix/smtpd[1445381]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: 
Jun 18 12:28:59 mail.srvfarm.net postfix/smtpd[1445381]: lost connection after AUTH from unknown[201.55.142.135]
Jun 18 12:31:47 mail.srvfarm.net postfix/smtpd[1445365]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed:

2020-06-19 01:28:20

相同子网IP讨论:

IP	类型	评论内容	时间
201.55.142.243	attackbots	Sep 13 18:26:49 mail.srvfarm.net postfix/smtps/smtpd[1230736]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Sep 13 18:26:49 mail.srvfarm.net postfix/smtps/smtpd[1230736]: lost connection after AUTH from unknown[201.55.142.243] Sep 13 18:32:14 mail.srvfarm.net postfix/smtpd[1230212]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Sep 13 18:32:15 mail.srvfarm.net postfix/smtpd[1230212]: lost connection after AUTH from unknown[201.55.142.243] Sep 13 18:33:48 mail.srvfarm.net postfix/smtpd[1232021]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed:	2020-09-15 03:37:06
201.55.142.243	attackspambots	Sep 13 18:26:49 mail.srvfarm.net postfix/smtps/smtpd[1230736]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Sep 13 18:26:49 mail.srvfarm.net postfix/smtps/smtpd[1230736]: lost connection after AUTH from unknown[201.55.142.243] Sep 13 18:32:14 mail.srvfarm.net postfix/smtpd[1230212]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Sep 13 18:32:15 mail.srvfarm.net postfix/smtpd[1230212]: lost connection after AUTH from unknown[201.55.142.243] Sep 13 18:33:48 mail.srvfarm.net postfix/smtpd[1232021]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed:	2020-09-14 19:33:28
201.55.142.209	attackbotsspam	Aug 16 05:30:29 mail.srvfarm.net postfix/smtpd[1875198]: warning: unknown[201.55.142.209]: SASL PLAIN authentication failed: Aug 16 05:30:29 mail.srvfarm.net postfix/smtpd[1875198]: lost connection after AUTH from unknown[201.55.142.209] Aug 16 05:30:30 mail.srvfarm.net postfix/smtps/smtpd[1888818]: warning: unknown[201.55.142.209]: SASL PLAIN authentication failed: Aug 16 05:30:30 mail.srvfarm.net postfix/smtps/smtpd[1888818]: lost connection after AUTH from unknown[201.55.142.209] Aug 16 05:36:50 mail.srvfarm.net postfix/smtpd[1888503]: warning: unknown[201.55.142.209]: SASL PLAIN authentication failed:	2020-08-16 12:38:33
201.55.142.243	attack	Aug 15 02:17:39 mail.srvfarm.net postfix/smtps/smtpd[963474]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Aug 15 02:17:40 mail.srvfarm.net postfix/smtps/smtpd[963474]: lost connection after AUTH from unknown[201.55.142.243] Aug 15 02:18:38 mail.srvfarm.net postfix/smtpd[965947]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Aug 15 02:18:39 mail.srvfarm.net postfix/smtpd[965947]: lost connection after AUTH from unknown[201.55.142.243] Aug 15 02:26:15 mail.srvfarm.net postfix/smtps/smtpd[963278]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed:	2020-08-15 12:47:55
201.55.142.31	attackbotsspam	"SMTP brute force auth login attempt."	2020-08-13 17:32:34
201.55.142.73	attackbotsspam	failed_logins	2020-07-30 19:22:43
201.55.142.36	attack	Jul 25 05:34:46 mail.srvfarm.net postfix/smtpd[366527]: warning: unknown[201.55.142.36]: SASL PLAIN authentication failed: Jul 25 05:34:46 mail.srvfarm.net postfix/smtpd[366527]: lost connection after AUTH from unknown[201.55.142.36] Jul 25 05:34:57 mail.srvfarm.net postfix/smtps/smtpd[365719]: warning: unknown[201.55.142.36]: SASL PLAIN authentication failed: Jul 25 05:34:58 mail.srvfarm.net postfix/smtps/smtpd[365719]: lost connection after AUTH from unknown[201.55.142.36] Jul 25 05:40:51 mail.srvfarm.net postfix/smtps/smtpd[365719]: warning: unknown[201.55.142.36]: SASL PLAIN authentication failed:	2020-07-25 15:00:15
201.55.142.15	attack	Jul 24 16:48:42 mail.srvfarm.net postfix/smtps/smtpd[2334300]: warning: unknown[201.55.142.15]: SASL PLAIN authentication failed: Jul 24 16:48:43 mail.srvfarm.net postfix/smtps/smtpd[2334300]: lost connection after AUTH from unknown[201.55.142.15] Jul 24 16:52:26 mail.srvfarm.net postfix/smtps/smtpd[2332586]: warning: unknown[201.55.142.15]: SASL PLAIN authentication failed: Jul 24 16:52:27 mail.srvfarm.net postfix/smtps/smtpd[2332586]: lost connection after AUTH from unknown[201.55.142.15] Jul 24 16:52:45 mail.srvfarm.net postfix/smtpd[2332939]: warning: unknown[201.55.142.15]: SASL PLAIN authentication failed:	2020-07-25 03:38:13
201.55.142.36	attackbots	failed_logins	2020-07-11 14:43:04
201.55.142.25	attack	$f2bV_matches	2019-09-12 21:27:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.55.142.135
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44430
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.55.142.135.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061801 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 19 01:28:15 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 135.142.55.201.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 135.142.55.201.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
40.114.240.168	attackspambots	" "	2020-07-18 19:29:20
142.112.81.183	attackspam	Jul 18 07:00:50 ws19vmsma01 sshd[128093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.112.81.183 Jul 18 07:00:52 ws19vmsma01 sshd[128093]: Failed password for invalid user chenwei from 142.112.81.183 port 35208 ssh2 ...	2020-07-18 19:20:03
49.51.160.173	attackspambots	Unauthorized connection attempt detected from IP address 49.51.160.173 to port 102	2020-07-18 19:25:08
159.65.158.172	attackbotsspam	Jul 18 13:19:07 ift sshd\[38959\]: Invalid user minecraft from 159.65.158.172Jul 18 13:19:09 ift sshd\[38959\]: Failed password for invalid user minecraft from 159.65.158.172 port 46508 ssh2Jul 18 13:22:09 ift sshd\[39637\]: Invalid user wangyan from 159.65.158.172Jul 18 13:22:11 ift sshd\[39637\]: Failed password for invalid user wangyan from 159.65.158.172 port 34552 ssh2Jul 18 13:25:04 ift sshd\[40131\]: Invalid user anamaria from 159.65.158.172 ...	2020-07-18 18:57:54
104.248.176.46	attackbots	TCP port : 3353	2020-07-18 18:58:41
45.14.150.51	attackbots	Invalid user coop from 45.14.150.51 port 36792	2020-07-18 19:25:55
218.92.0.216	attackspam	Jul 18 13:15:48 eventyay sshd[16037]: Failed password for root from 218.92.0.216 port 50603 ssh2 Jul 18 13:16:02 eventyay sshd[16047]: Failed password for root from 218.92.0.216 port 36476 ssh2 ...	2020-07-18 19:17:02
52.143.178.50	attackbotsspam	Invalid user admin from 52.143.178.50 port 34585	2020-07-18 19:14:25
49.232.59.246	attackbotsspam	Jul 18 11:54:57 gospond sshd[15557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.59.246 Jul 18 11:54:57 gospond sshd[15557]: Invalid user train from 49.232.59.246 port 50896 Jul 18 11:54:59 gospond sshd[15557]: Failed password for invalid user train from 49.232.59.246 port 50896 ssh2 ...	2020-07-18 19:20:28
62.193.129.124	attack	Unauthorized SMTP/IMAP/POP3 connection attempt	2020-07-18 18:59:00
185.147.163.24	attack	2020-07-18T10:48:54.751604shield sshd\[2579\]: Invalid user cx from 185.147.163.24 port 50986 2020-07-18T10:48:54.758031shield sshd\[2579\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.147.163.24 2020-07-18T10:48:56.852279shield sshd\[2579\]: Failed password for invalid user cx from 185.147.163.24 port 50986 ssh2 2020-07-18T10:53:26.212087shield sshd\[4860\]: Invalid user deploy from 185.147.163.24 port 34784 2020-07-18T10:53:26.222943shield sshd\[4860\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.147.163.24	2020-07-18 19:02:55
159.65.184.0	attackbotsspam	159.65.184.0 - - [18/Jul/2020:04:47:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2209 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.184.0 - - [18/Jul/2020:04:47:02 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.184.0 - - [18/Jul/2020:04:50:00 +0100] "POST /wp-login.php HTTP/1.1" 200 1706 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-18 19:15:24
196.52.43.91	attackbotsspam	srv02 Mass scanning activity detected Target: 389(ldap) ..	2020-07-18 19:27:50
51.83.74.126	attack	2020-07-18T13:06:35.361441vps773228.ovh.net sshd[7979]: Invalid user user10 from 51.83.74.126 port 39482 2020-07-18T13:06:35.378250vps773228.ovh.net sshd[7979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.pharmust.com 2020-07-18T13:06:35.361441vps773228.ovh.net sshd[7979]: Invalid user user10 from 51.83.74.126 port 39482 2020-07-18T13:06:37.473120vps773228.ovh.net sshd[7979]: Failed password for invalid user user10 from 51.83.74.126 port 39482 ssh2 2020-07-18T13:11:32.250345vps773228.ovh.net sshd[8015]: Invalid user ziang from 51.83.74.126 port 54440 ...	2020-07-18 19:25:22
104.211.142.129	attackbots	Jul 18 10:20:33 sshgateway sshd\[1112\]: Invalid user admin from 104.211.142.129 Jul 18 10:20:33 sshgateway sshd\[1112\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.142.129 Jul 18 10:20:35 sshgateway sshd\[1112\]: Failed password for invalid user admin from 104.211.142.129 port 56334 ssh2	2020-07-18 19:11:04

最近上报的IP列表

77.45.86.165	63.81.93.144	46.21.208.102	71.73.144.208
31.170.62.22	191.53.236.145	188.112.9.180	187.95.180.135
210.51.148.111	186.250.200.87	186.96.196.178	181.174.144.78
181.174.144.39	177.87.253.119	177.23.75.23	138.122.97.194
45.160.136.227	95.47.238.38	189.226.58.172	5.160.213.184