42.120.161.96 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.120.161.43	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 54356e01cb6fe7c5 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 00:16:20
42.120.161.37	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54137e915f02d376 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:20:56

类型

评论内容

时间

42.120.161.43

attackbots

The IP has triggered Cloudflare WAF. CF-Ray: 54356e01cb6fe7c5 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 00:16:20

42.120.161.37

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54137e915f02d376 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:20:56

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.120.161.96
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41421
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.120.161.96.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062801 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 29 02:54:47 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

96.161.120.42.in-addr.arpa domain name pointer shenmaspider-42-120-161-96.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
96.161.120.42.in-addr.arpa	name = shenmaspider-42-120-161-96.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
49.88.112.60	attackspambots	Aug 14 16:04:56 rpi sshd[7623]: Failed password for root from 49.88.112.60 port 24143 ssh2 Aug 14 16:05:00 rpi sshd[7623]: Failed password for root from 49.88.112.60 port 24143 ssh2	2019-08-15 06:36:23
164.68.109.136	attackbots	Port probe and connect to SMTP:25 x 4.	2019-08-15 06:40:29
124.149.214.35	attack	Aug 15 03:48:08 vibhu-HP-Z238-Microtower-Workstation sshd\[9811\]: Invalid user warcraft from 124.149.214.35 Aug 15 03:48:08 vibhu-HP-Z238-Microtower-Workstation sshd\[9811\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.214.35 Aug 15 03:48:10 vibhu-HP-Z238-Microtower-Workstation sshd\[9811\]: Failed password for invalid user warcraft from 124.149.214.35 port 53148 ssh2 Aug 15 03:53:44 vibhu-HP-Z238-Microtower-Workstation sshd\[9950\]: Invalid user juliana from 124.149.214.35 Aug 15 03:53:44 vibhu-HP-Z238-Microtower-Workstation sshd\[9950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.214.35 ...	2019-08-15 06:37:24
164.132.80.139	attack	k+ssh-bruteforce	2019-08-15 06:29:29
222.186.42.94	attack	Fail2Ban Ban Triggered	2019-08-15 06:28:31
128.199.231.239	attackbotsspam	Invalid user hau from 128.199.231.239 port 51976	2019-08-15 06:26:21
219.149.52.39	attackspam	Aug 14 17:13:33 mout sshd[15840]: Invalid user dan from 219.149.52.39 port 42575	2019-08-15 06:36:03
77.247.181.163	attackbots	2019-08-14T21:44:54.411124Z 7300f929827e New connection: 77.247.181.163:28256 (172.17.0.3:2222) [session: 7300f929827e] 2019-08-14T22:12:06.728266Z c3481d8e161d New connection: 77.247.181.163:26564 (172.17.0.3:2222) [session: c3481d8e161d]	2019-08-15 06:19:11
68.183.83.141	attackbots	Aug 15 01:02:12 server2 sshd\[20542\]: Invalid user fake from 68.183.83.141 Aug 15 01:02:13 server2 sshd\[20544\]: Invalid user user from 68.183.83.141 Aug 15 01:02:15 server2 sshd\[20546\]: Invalid user ubnt from 68.183.83.141 Aug 15 01:02:16 server2 sshd\[20548\]: Invalid user admin from 68.183.83.141 Aug 15 01:02:18 server2 sshd\[20550\]: User root from 68.183.83.141 not allowed because not listed in AllowUsers Aug 15 01:02:19 server2 sshd\[20552\]: Invalid user admin from 68.183.83.141	2019-08-15 06:41:41
35.194.223.105	attackbotsspam	Aug 14 11:14:51 dallas01 sshd[3617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.194.223.105 Aug 14 11:14:53 dallas01 sshd[3617]: Failed password for invalid user nishiyama from 35.194.223.105 port 41828 ssh2 Aug 14 11:21:22 dallas01 sshd[4724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.194.223.105	2019-08-15 06:39:17
178.128.21.32	attackspam	Automatic report - Banned IP Access	2019-08-15 06:24:27
51.77.156.226	attackbotsspam	$f2bV_matches	2019-08-15 06:38:57
195.136.95.21	attack	Aug 14 08:04:16 mailman postfix/smtpd[17201]: warning: unknown[195.136.95.21]: SASL PLAIN authentication failed: authentication failure	2019-08-15 06:29:00
42.236.136.11	attackbots	Aug 14 16:04:19 site3 sshd\[192153\]: Invalid user pi from 42.236.136.11 Aug 14 16:04:19 site3 sshd\[192153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.136.11 Aug 14 16:04:20 site3 sshd\[192152\]: Invalid user pi from 42.236.136.11 Aug 14 16:04:20 site3 sshd\[192152\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.136.11 Aug 14 16:04:21 site3 sshd\[192153\]: Failed password for invalid user pi from 42.236.136.11 port 40838 ssh2 ...	2019-08-15 06:26:02
115.70.196.41	attackspam	Aug 14 22:22:47 db sshd\[20819\]: Invalid user tomcat from 115.70.196.41 Aug 14 22:22:47 db sshd\[20819\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.196.70.115.static.exetel.com.au Aug 14 22:22:48 db sshd\[20819\]: Failed password for invalid user tomcat from 115.70.196.41 port 38874 ssh2 Aug 14 22:28:25 db sshd\[21209\]: Invalid user botmaster from 115.70.196.41 Aug 14 22:28:25 db sshd\[21209\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.196.70.115.static.exetel.com.au ...	2019-08-15 06:49:08

最近上报的IP列表

42.156.138.178	169.229.166.36	169.229.166.230	180.76.140.87
86.23.104.11	194.223.51.201	180.76.74.151	180.76.74.35
180.76.181.12	169.229.178.227	169.229.172.221	42.156.138.215
218.154.26.109	169.229.176.100	90.140.0.138	207.190.105.41
111.206.198.103	86.4.159.205	185.212.111.7	106.59.9.29