201.55.142.135

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): WI - Provedor de Telecomunicacoes Ltda.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Aug 14 23:49:22 mail.srvfarm.net postfix/smtpd[738030]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: Aug 14 23:49:23 mail.srvfarm.net postfix/smtpd[738030]: lost connection after AUTH from unknown[201.55.142.135] Aug 14 23:53:36 mail.srvfarm.net postfix/smtps/smtpd[739407]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: Aug 14 23:53:37 mail.srvfarm.net postfix/smtps/smtpd[739407]: lost connection after AUTH from unknown[201.55.142.135] Aug 14 23:59:22 mail.srvfarm.net postfix/smtpd[736667]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed:	2020-08-15 17:13:32
attackbots	Jun 18 12:25:38 mail.srvfarm.net postfix/smtpd[1443188]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: Jun 18 12:25:38 mail.srvfarm.net postfix/smtpd[1443188]: lost connection after AUTH from unknown[201.55.142.135] Jun 18 12:28:59 mail.srvfarm.net postfix/smtpd[1445381]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: Jun 18 12:28:59 mail.srvfarm.net postfix/smtpd[1445381]: lost connection after AUTH from unknown[201.55.142.135] Jun 18 12:31:47 mail.srvfarm.net postfix/smtpd[1445365]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed:	2020-06-19 01:28:20

类型

评论内容

时间

attack

Aug 14 23:49:22 mail.srvfarm.net postfix/smtpd[738030]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: 
Aug 14 23:49:23 mail.srvfarm.net postfix/smtpd[738030]: lost connection after AUTH from unknown[201.55.142.135]
Aug 14 23:53:36 mail.srvfarm.net postfix/smtps/smtpd[739407]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: 
Aug 14 23:53:37 mail.srvfarm.net postfix/smtps/smtpd[739407]: lost connection after AUTH from unknown[201.55.142.135]
Aug 14 23:59:22 mail.srvfarm.net postfix/smtpd[736667]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed:

2020-08-15 17:13:32

attackbots

Jun 18 12:25:38 mail.srvfarm.net postfix/smtpd[1443188]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: 
Jun 18 12:25:38 mail.srvfarm.net postfix/smtpd[1443188]: lost connection after AUTH from unknown[201.55.142.135]
Jun 18 12:28:59 mail.srvfarm.net postfix/smtpd[1445381]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed: 
Jun 18 12:28:59 mail.srvfarm.net postfix/smtpd[1445381]: lost connection after AUTH from unknown[201.55.142.135]
Jun 18 12:31:47 mail.srvfarm.net postfix/smtpd[1445365]: warning: unknown[201.55.142.135]: SASL PLAIN authentication failed:

2020-06-19 01:28:20

相同子网IP讨论:

IP	类型	评论内容	时间
201.55.142.243	attackbots	Sep 13 18:26:49 mail.srvfarm.net postfix/smtps/smtpd[1230736]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Sep 13 18:26:49 mail.srvfarm.net postfix/smtps/smtpd[1230736]: lost connection after AUTH from unknown[201.55.142.243] Sep 13 18:32:14 mail.srvfarm.net postfix/smtpd[1230212]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Sep 13 18:32:15 mail.srvfarm.net postfix/smtpd[1230212]: lost connection after AUTH from unknown[201.55.142.243] Sep 13 18:33:48 mail.srvfarm.net postfix/smtpd[1232021]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed:	2020-09-15 03:37:06
201.55.142.243	attackspambots	Sep 13 18:26:49 mail.srvfarm.net postfix/smtps/smtpd[1230736]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Sep 13 18:26:49 mail.srvfarm.net postfix/smtps/smtpd[1230736]: lost connection after AUTH from unknown[201.55.142.243] Sep 13 18:32:14 mail.srvfarm.net postfix/smtpd[1230212]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Sep 13 18:32:15 mail.srvfarm.net postfix/smtpd[1230212]: lost connection after AUTH from unknown[201.55.142.243] Sep 13 18:33:48 mail.srvfarm.net postfix/smtpd[1232021]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed:	2020-09-14 19:33:28
201.55.142.209	attackbotsspam	Aug 16 05:30:29 mail.srvfarm.net postfix/smtpd[1875198]: warning: unknown[201.55.142.209]: SASL PLAIN authentication failed: Aug 16 05:30:29 mail.srvfarm.net postfix/smtpd[1875198]: lost connection after AUTH from unknown[201.55.142.209] Aug 16 05:30:30 mail.srvfarm.net postfix/smtps/smtpd[1888818]: warning: unknown[201.55.142.209]: SASL PLAIN authentication failed: Aug 16 05:30:30 mail.srvfarm.net postfix/smtps/smtpd[1888818]: lost connection after AUTH from unknown[201.55.142.209] Aug 16 05:36:50 mail.srvfarm.net postfix/smtpd[1888503]: warning: unknown[201.55.142.209]: SASL PLAIN authentication failed:	2020-08-16 12:38:33
201.55.142.243	attack	Aug 15 02:17:39 mail.srvfarm.net postfix/smtps/smtpd[963474]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Aug 15 02:17:40 mail.srvfarm.net postfix/smtps/smtpd[963474]: lost connection after AUTH from unknown[201.55.142.243] Aug 15 02:18:38 mail.srvfarm.net postfix/smtpd[965947]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed: Aug 15 02:18:39 mail.srvfarm.net postfix/smtpd[965947]: lost connection after AUTH from unknown[201.55.142.243] Aug 15 02:26:15 mail.srvfarm.net postfix/smtps/smtpd[963278]: warning: unknown[201.55.142.243]: SASL PLAIN authentication failed:	2020-08-15 12:47:55
201.55.142.31	attackbotsspam	"SMTP brute force auth login attempt."	2020-08-13 17:32:34
201.55.142.73	attackbotsspam	failed_logins	2020-07-30 19:22:43
201.55.142.36	attack	Jul 25 05:34:46 mail.srvfarm.net postfix/smtpd[366527]: warning: unknown[201.55.142.36]: SASL PLAIN authentication failed: Jul 25 05:34:46 mail.srvfarm.net postfix/smtpd[366527]: lost connection after AUTH from unknown[201.55.142.36] Jul 25 05:34:57 mail.srvfarm.net postfix/smtps/smtpd[365719]: warning: unknown[201.55.142.36]: SASL PLAIN authentication failed: Jul 25 05:34:58 mail.srvfarm.net postfix/smtps/smtpd[365719]: lost connection after AUTH from unknown[201.55.142.36] Jul 25 05:40:51 mail.srvfarm.net postfix/smtps/smtpd[365719]: warning: unknown[201.55.142.36]: SASL PLAIN authentication failed:	2020-07-25 15:00:15
201.55.142.15	attack	Jul 24 16:48:42 mail.srvfarm.net postfix/smtps/smtpd[2334300]: warning: unknown[201.55.142.15]: SASL PLAIN authentication failed: Jul 24 16:48:43 mail.srvfarm.net postfix/smtps/smtpd[2334300]: lost connection after AUTH from unknown[201.55.142.15] Jul 24 16:52:26 mail.srvfarm.net postfix/smtps/smtpd[2332586]: warning: unknown[201.55.142.15]: SASL PLAIN authentication failed: Jul 24 16:52:27 mail.srvfarm.net postfix/smtps/smtpd[2332586]: lost connection after AUTH from unknown[201.55.142.15] Jul 24 16:52:45 mail.srvfarm.net postfix/smtpd[2332939]: warning: unknown[201.55.142.15]: SASL PLAIN authentication failed:	2020-07-25 03:38:13
201.55.142.36	attackbots	failed_logins	2020-07-11 14:43:04
201.55.142.25	attack	$f2bV_matches	2019-09-12 21:27:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.55.142.135
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44430
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.55.142.135.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061801 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 19 01:28:15 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 135.142.55.201.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 135.142.55.201.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
113.168.130.222	attackbots	Unauthorised access (Mar 3) SRC=113.168.130.222 LEN=52 TTL=107 ID=27686 DF TCP DPT=445 WINDOW=8192 SYN	2020-03-03 18:45:59
211.228.137.59	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-03-03 18:24:51
185.36.81.23	attack	Mar 3 10:57:43 srv01 postfix/smtpd\[14325\]: warning: unknown\[185.36.81.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 3 11:02:58 srv01 postfix/smtpd\[14323\]: warning: unknown\[185.36.81.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 3 11:04:39 srv01 postfix/smtpd\[14315\]: warning: unknown\[185.36.81.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 3 11:05:17 srv01 postfix/smtpd\[14315\]: warning: unknown\[185.36.81.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 3 11:11:58 srv01 postfix/smtpd\[20996\]: warning: unknown\[185.36.81.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-03 18:35:45
36.72.14.120	attack	20/3/3@01:08:15: FAIL: Alarm-Network address from=36.72.14.120 20/3/3@01:08:15: FAIL: Alarm-Network address from=36.72.14.120 ...	2020-03-03 18:23:37
81.145.158.178	attackbotsspam	Mar 3 09:18:00 dev0-dcde-rnet sshd[29011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.145.158.178 Mar 3 09:18:01 dev0-dcde-rnet sshd[29011]: Failed password for invalid user dick from 81.145.158.178 port 56178 ssh2 Mar 3 09:47:27 dev0-dcde-rnet sshd[29278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.145.158.178	2020-03-03 18:37:19
94.180.58.238	attackbots	Mar 3 13:16:53 lcl-usvr-02 sshd[29758]: Invalid user capture from 94.180.58.238 port 45974 Mar 3 13:16:53 lcl-usvr-02 sshd[29758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.180.58.238 Mar 3 13:16:53 lcl-usvr-02 sshd[29758]: Invalid user capture from 94.180.58.238 port 45974 Mar 3 13:16:55 lcl-usvr-02 sshd[29758]: Failed password for invalid user capture from 94.180.58.238 port 45974 ssh2 Mar 3 13:26:12 lcl-usvr-02 sshd[31771]: Invalid user wp-admin from 94.180.58.238 port 52546 ...	2020-03-03 18:44:27
180.251.164.80	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-03 18:45:14
222.186.15.10	attackbots	Brute-force attempt banned	2020-03-03 18:35:14
122.116.98.179	attack	Honeypot attack, port: 81, PTR: 122-116-98-179.HINET-IP.hinet.net.	2020-03-03 18:41:40
90.52.62.214	attackspambots	Honeypot attack, port: 5555, PTR: lfbn-lyo-1-1624-214.w90-52.abo.wanadoo.fr.	2020-03-03 18:38:42
173.164.13.177	attackspam	Mar 3 09:43:19 server sshd[772681]: Failed password for invalid user wordpress from 173.164.13.177 port 35787 ssh2 Mar 3 10:02:52 server sshd[778599]: Failed password for invalid user pi from 173.164.13.177 port 40591 ssh2 Mar 3 10:20:01 server sshd[783437]: Failed password for invalid user test from 173.164.13.177 port 59473 ssh2	2020-03-03 18:27:19
125.166.119.30	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-03 18:39:32
106.105.64.188	attackspam	Honeypot attack, port: 5555, PTR: 106.105.64.188.adsl.dynamic.seed.net.tw.	2020-03-03 18:14:45
128.199.106.169	attack	Mar 3 05:43:02 localhost sshd\[14225\]: Invalid user ghost from 128.199.106.169 Mar 3 05:43:02 localhost sshd\[14225\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.106.169 Mar 3 05:43:04 localhost sshd\[14225\]: Failed password for invalid user ghost from 128.199.106.169 port 57238 ssh2 Mar 3 05:52:23 localhost sshd\[14656\]: Invalid user jenkins from 128.199.106.169 Mar 3 05:52:23 localhost sshd\[14656\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.106.169 ...	2020-03-03 18:15:17
62.28.34.125	attackspambots	Mar 3 10:42:50 server sshd[789600]: Failed password for invalid user zyy from 62.28.34.125 port 25682 ssh2 Mar 3 10:52:35 server sshd[792226]: Failed password for invalid user guest from 62.28.34.125 port 32598 ssh2 Mar 3 11:02:15 server sshd[794813]: Failed password for invalid user webftp from 62.28.34.125 port 30053 ssh2	2020-03-03 18:32:17

最近上报的IP列表

77.45.86.165	63.81.93.144	46.21.208.102	71.73.144.208
31.170.62.22	191.53.236.145	188.112.9.180	187.95.180.135
210.51.148.111	186.250.200.87	186.96.196.178	181.174.144.78
181.174.144.39	177.87.253.119	177.23.75.23	138.122.97.194
45.160.136.227	95.47.238.38	189.226.58.172	5.160.213.184