41.139.11.150 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Ghana

运营商(isp): Y-Zone Service

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Oct 8 16:33:59 mail.srvfarm.net postfix/smtps/smtpd[3748181]: warning: unknown[41.139.11.150]: SASL PLAIN authentication failed: Oct 8 16:33:59 mail.srvfarm.net postfix/smtps/smtpd[3748181]: lost connection after AUTH from unknown[41.139.11.150] Oct 8 16:36:34 mail.srvfarm.net postfix/smtps/smtpd[3750954]: warning: unknown[41.139.11.150]: SASL PLAIN authentication failed: Oct 8 16:36:34 mail.srvfarm.net postfix/smtps/smtpd[3750954]: lost connection after AUTH from unknown[41.139.11.150] Oct 8 16:41:40 mail.srvfarm.net postfix/smtps/smtpd[3751242]: warning: unknown[41.139.11.150]: SASL PLAIN authentication failed:	2020-10-09 01:38:56
attackspambots	Autoban 41.139.11.150 AUTH/CONNECT	2020-10-08 17:35:42

类型

评论内容

时间

attackbots

Oct  8 16:33:59 mail.srvfarm.net postfix/smtps/smtpd[3748181]: warning: unknown[41.139.11.150]: SASL PLAIN authentication failed: 
Oct  8 16:33:59 mail.srvfarm.net postfix/smtps/smtpd[3748181]: lost connection after AUTH from unknown[41.139.11.150]
Oct  8 16:36:34 mail.srvfarm.net postfix/smtps/smtpd[3750954]: warning: unknown[41.139.11.150]: SASL PLAIN authentication failed: 
Oct  8 16:36:34 mail.srvfarm.net postfix/smtps/smtpd[3750954]: lost connection after AUTH from unknown[41.139.11.150]
Oct  8 16:41:40 mail.srvfarm.net postfix/smtps/smtpd[3751242]: warning: unknown[41.139.11.150]: SASL PLAIN authentication failed:

2020-10-09 01:38:56

attackspambots

Autoban   41.139.11.150 AUTH/CONNECT

2020-10-08 17:35:42

相同子网IP讨论:

IP	类型	评论内容	时间
41.139.11.128	attackbotsspam	Sep 17 12:53:03 mail.srvfarm.net postfix/smtpd[18902]: warning: unknown[41.139.11.128]: SASL PLAIN authentication failed: Sep 17 12:53:03 mail.srvfarm.net postfix/smtpd[18902]: lost connection after AUTH from unknown[41.139.11.128] Sep 17 12:56:00 mail.srvfarm.net postfix/smtps/smtpd[19071]: warning: unknown[41.139.11.128]: SASL PLAIN authentication failed: Sep 17 12:56:00 mail.srvfarm.net postfix/smtps/smtpd[19071]: lost connection after AUTH from unknown[41.139.11.128] Sep 17 13:01:26 mail.srvfarm.net postfix/smtpd[18571]: warning: unknown[41.139.11.128]: SASL PLAIN authentication failed:	2020-09-18 01:42:39
41.139.11.145	attack	Sep 16 18:48:08 mail.srvfarm.net postfix/smtpd[3603171]: warning: unknown[41.139.11.145]: SASL PLAIN authentication failed: Sep 16 18:48:08 mail.srvfarm.net postfix/smtpd[3603171]: lost connection after AUTH from unknown[41.139.11.145] Sep 16 18:49:15 mail.srvfarm.net postfix/smtpd[3602401]: warning: unknown[41.139.11.145]: SASL PLAIN authentication failed: Sep 16 18:49:15 mail.srvfarm.net postfix/smtpd[3602401]: lost connection after AUTH from unknown[41.139.11.145] Sep 16 18:54:06 mail.srvfarm.net postfix/smtps/smtpd[3607473]: warning: unknown[41.139.11.145]: SASL PLAIN authentication failed:	2020-09-18 01:42:25
41.139.11.128	attack	Sep 16 18:29:59 mail.srvfarm.net postfix/smtpd[3602399]: warning: unknown[41.139.11.128]: SASL PLAIN authentication failed: Sep 16 18:29:59 mail.srvfarm.net postfix/smtpd[3602399]: lost connection after AUTH from unknown[41.139.11.128] Sep 16 18:30:16 mail.srvfarm.net postfix/smtpd[3601766]: warning: unknown[41.139.11.128]: SASL PLAIN authentication failed: Sep 16 18:30:16 mail.srvfarm.net postfix/smtpd[3601766]: lost connection after AUTH from unknown[41.139.11.128] Sep 16 18:35:17 mail.srvfarm.net postfix/smtps/smtpd[3601498]: warning: unknown[41.139.11.128]: SASL PLAIN authentication failed:	2020-09-17 17:44:09
41.139.11.145	attack	Sep 16 18:48:08 mail.srvfarm.net postfix/smtpd[3603171]: warning: unknown[41.139.11.145]: SASL PLAIN authentication failed: Sep 16 18:48:08 mail.srvfarm.net postfix/smtpd[3603171]: lost connection after AUTH from unknown[41.139.11.145] Sep 16 18:49:15 mail.srvfarm.net postfix/smtpd[3602401]: warning: unknown[41.139.11.145]: SASL PLAIN authentication failed: Sep 16 18:49:15 mail.srvfarm.net postfix/smtpd[3602401]: lost connection after AUTH from unknown[41.139.11.145] Sep 16 18:54:06 mail.srvfarm.net postfix/smtps/smtpd[3607473]: warning: unknown[41.139.11.145]: SASL PLAIN authentication failed:	2020-09-17 17:43:52
41.139.11.61	attackbots	Aug 16 05:19:37 mail.srvfarm.net postfix/smtpd[1888825]: warning: unknown[41.139.11.61]: SASL PLAIN authentication failed: Aug 16 05:19:37 mail.srvfarm.net postfix/smtpd[1888825]: lost connection after AUTH from unknown[41.139.11.61] Aug 16 05:26:25 mail.srvfarm.net postfix/smtpd[1875198]: warning: unknown[41.139.11.61]: SASL PLAIN authentication failed: Aug 16 05:26:25 mail.srvfarm.net postfix/smtpd[1875198]: lost connection after AUTH from unknown[41.139.11.61] Aug 16 05:27:18 mail.srvfarm.net postfix/smtps/smtpd[1888818]: warning: unknown[41.139.11.61]: SASL PLAIN authentication failed:	2020-08-16 13:09:07
41.139.11.159	attack	Aug 15 00:27:23 mail.srvfarm.net postfix/smtpd[907544]: warning: unknown[41.139.11.159]: SASL PLAIN authentication failed: Aug 15 00:27:23 mail.srvfarm.net postfix/smtpd[907544]: lost connection after AUTH from unknown[41.139.11.159] Aug 15 00:34:27 mail.srvfarm.net postfix/smtps/smtpd[908453]: warning: unknown[41.139.11.159]: SASL PLAIN authentication failed: Aug 15 00:34:27 mail.srvfarm.net postfix/smtps/smtpd[908453]: lost connection after AUTH from unknown[41.139.11.159] Aug 15 00:37:03 mail.srvfarm.net postfix/smtpd[908819]: warning: unknown[41.139.11.159]: SASL PLAIN authentication failed:	2020-08-15 17:12:20
41.139.11.35	attack	Jun 16 05:01:34 mail.srvfarm.net postfix/smtps/smtpd[916122]: warning: unknown[41.139.11.35]: SASL PLAIN authentication failed: Jun 16 05:01:34 mail.srvfarm.net postfix/smtps/smtpd[916122]: lost connection after AUTH from unknown[41.139.11.35] Jun 16 05:04:42 mail.srvfarm.net postfix/smtps/smtpd[913342]: warning: unknown[41.139.11.35]: SASL PLAIN authentication failed: Jun 16 05:04:42 mail.srvfarm.net postfix/smtps/smtpd[913342]: lost connection after AUTH from unknown[41.139.11.35] Jun 16 05:08:20 mail.srvfarm.net postfix/smtps/smtpd[916121]: lost connection after CONNECT from unknown[41.139.11.35]	2020-06-16 17:44:34
41.139.11.115	attackbots	Jun 16 05:05:27 mail.srvfarm.net postfix/smtps/smtpd[914306]: lost connection after CONNECT from unknown[41.139.11.115] Jun 16 05:08:23 mail.srvfarm.net postfix/smtps/smtpd[935138]: lost connection after CONNECT from unknown[41.139.11.115] Jun 16 05:11:32 mail.srvfarm.net postfix/smtpd[935207]: warning: unknown[41.139.11.115]: SASL PLAIN authentication failed: Jun 16 05:11:32 mail.srvfarm.net postfix/smtpd[935207]: lost connection after AUTH from unknown[41.139.11.115] Jun 16 05:12:00 mail.srvfarm.net postfix/smtps/smtpd[938181]: lost connection after CONNECT from unknown[41.139.11.115]	2020-06-16 17:30:30
41.139.11.160	attackspambots	Jun 16 05:25:33 mail.srvfarm.net postfix/smtpd[921341]: warning: unknown[41.139.11.160]: SASL PLAIN authentication failed: Jun 16 05:25:33 mail.srvfarm.net postfix/smtpd[921341]: lost connection after AUTH from unknown[41.139.11.160] Jun 16 05:30:56 mail.srvfarm.net postfix/smtps/smtpd[937456]: warning: unknown[41.139.11.160]: SASL PLAIN authentication failed: Jun 16 05:30:56 mail.srvfarm.net postfix/smtps/smtpd[937456]: lost connection after AUTH from unknown[41.139.11.160] Jun 16 05:34:51 mail.srvfarm.net postfix/smtpd[935205]: warning: unknown[41.139.11.160]: SASL PLAIN authentication failed:	2020-06-16 15:49:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.139.11.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25681
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.139.11.150.			IN	A

;; AUTHORITY SECTION:
.			220	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100800 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 08 17:35:38 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 150.11.139.41.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 150.11.139.41.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
172.104.124.229	attackbots	scans once in preceeding hours on the ports (in chronological order) 8888 resulting in total of 4 scans from 172.104.0.0/15 block.	2020-05-07 02:11:25
194.31.244.46	attack	firewall-block, port(s): 7916/tcp, 7926/tcp	2020-05-07 02:01:19
185.175.93.34	attack	ET DROP Dshield Block Listed Source group 1 - port: 3395 proto: TCP cat: Misc Attack	2020-05-07 02:06:36
49.143.133.150	attackbotsspam	Telnet Server BruteForce Attack	2020-05-07 01:29:01
182.253.17.92	attackspambots	RDP Brute-Force (Grieskirchen RZ2)	2020-05-07 01:35:30
194.26.29.116	attackspam	scans 189 times in preceeding hours on the ports (in chronological order) 43463 43357 47226 42111 42398 44691 42567 44819 45244 47070 42298 43236 46079 44754 46754 46632 47415 44150 44945 47649 46407 42302 42769 43174 45411 43229 43583 42237 43144 42176 47712 46535 42566 44384 46346 45249 46633 44945 47272 43040 45057 42947 47131 44085 42172 43727 42881 43245 46924 42781 44563 43626 43601 42749 47147 46785 43432 45535 44272 42652 43857 47454 44639 45739 46470 42970 47513 43473 47320 43475 44830 44472 43159 47415 45649 42117 43545 46598 47771 44137 43640 45059 45348 46446 47269 43441 43479 43747 44809 46897 42357 43540 45865 42942 43293 43572 43419 46750 46759 43686 45987 45120 42688 43349 42116 43477 45087 42831 43569 43315 46698 45303 47663 44230 42276 47350 42472 44807 46077 43500 46559 46887 44588 45253 42686 46535 46626 42105 44750 43502 45592 42789 45130 47023 45002 43278 43352 42337 47314 47478 45283 43560 45218 43755 46954 43751 46574 47726 46943 46815 45792 47070 47708 42724 43701 44872 43416 43380 45	2020-05-07 02:02:17
138.197.12.187	attack	scans 2 times in preceeding hours on the ports (in chronological order) 1214 1241	2020-05-07 01:58:49
194.31.244.38	attackspam	Fail2Ban Ban Triggered	2020-05-07 02:01:56
195.54.160.211	attack	firewall-block, port(s): 11179/tcp, 11187/tcp	2020-05-07 01:45:53
185.165.190.34	attack	Unauthorized connection attempt detected from IP address 185.165.190.34 to port 7171	2020-05-07 01:47:59
185.175.93.23	attackspambots	May 6 18:52:17 debian-2gb-nbg1-2 kernel: \[11042826.403364\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.23 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=64455 PROTO=TCP SPT=43404 DPT=5956 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-07 02:07:26
139.59.211.245	attack	(sshd) Failed SSH login from 139.59.211.245 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 6 18:29:16 srv sshd[12256]: Invalid user peer from 139.59.211.245 port 50050 May 6 18:29:19 srv sshd[12256]: Failed password for invalid user peer from 139.59.211.245 port 50050 ssh2 May 6 18:40:44 srv sshd[12559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.211.245 user=root May 6 18:40:46 srv sshd[12559]: Failed password for root from 139.59.211.245 port 47350 ssh2 May 6 18:48:49 srv sshd[13463]: Invalid user mir from 139.59.211.245 port 57544	2020-05-07 01:58:03
198.20.99.130	attackbotsspam	Unauthorized connection attempt detected from IP address 198.20.99.130 to port 5400	2020-05-07 01:43:37
142.93.130.58	attackbotsspam	Fail2Ban Ban Triggered	2020-05-07 01:55:38
185.232.65.230	attackspambots	probes 10 times on the port 1080 7777 8000 8080 8081 8085 8088 8443 8888 8899	2020-05-07 01:47:20

最近上报的IP列表

77.40.3.141	178.155.15.107	113.105.66.154	240.60.176.110
182.122.12.218	13.12.125.232	4.165.95.45	155.32.29.51
203.181.129.62	148.90.113.145	60.215.99.142	10.78.193.140
39.126.194.205	141.21.79.82	203.3.140.121	237.215.88.16
112.83.158.2	43.81.38.20	48.141.141.121	124.198.245.0