42.156.136.64 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.136.33	attack	Automated report (2020-07-12T11:50:23+08:00). Misbehaving bot detected at this address.	2020-07-12 17:33:40
42.156.136.21	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5415e8012f249821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:08:49
42.156.136.98	bots	YisouSpider 就是神马搜索的爬虫 42.156.136.98 - - [29/Mar/2019:08:27:04 +0800] "GET /wp-includes/css/dist/block-library/style.min.css?ver=5.1.1 HTTP/1.1" 200 8104 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safa ri/537.36"	2019-03-29 09:13:21

类型

评论内容

时间

42.156.136.33

attack

Automated report (2020-07-12T11:50:23+08:00). Misbehaving bot detected at this address.

2020-07-12 17:33:40

42.156.136.21

attack

The IP has triggered Cloudflare WAF. CF-Ray: 5415e8012f249821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:08:49

42.156.136.98

bots

YisouSpider 就是神马搜索的爬虫
42.156.136.98 - - [29/Mar/2019:08:27:04 +0800] "GET /wp-includes/css/dist/block-library/style.min.css?ver=5.1.1 HTTP/1.1" 200 8104 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safa
ri/537.36"

2019-03-29 09:13:21

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.136.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13487
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.136.64.			IN	A

;; AUTHORITY SECTION:
.			413	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022063000 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 30 22:22:24 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

64.136.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-136-64.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.136.156.42.in-addr.arpa	name = shenmaspider-42-156-136-64.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
46.101.212.57	attack	Lines containing failures of 46.101.212.57 Aug 5 06:04:01 neweola sshd[7245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.212.57 user=r.r Aug 5 06:04:02 neweola sshd[7245]: Failed password for r.r from 46.101.212.57 port 35308 ssh2 Aug 5 06:04:03 neweola sshd[7245]: Received disconnect from 46.101.212.57 port 35308:11: Bye Bye [preauth] Aug 5 06:04:03 neweola sshd[7245]: Disconnected from authenticating user r.r 46.101.212.57 port 35308 [preauth] Aug 5 06:11:06 neweola sshd[7658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.212.57 user=r.r Aug 5 06:11:07 neweola sshd[7658]: Failed password for r.r from 46.101.212.57 port 41940 ssh2 Aug 5 06:11:08 neweola sshd[7658]: Received disconnect from 46.101.212.57 port 41940:11: Bye Bye [preauth] Aug 5 06:11:08 neweola sshd[7658]: Disconnected from authenticating user r.r 46.101.212.57 port 41940 [preauth] Aug 5 06:16:2........ ------------------------------	2020-08-07 00:46:15
118.68.24.180	attack	Aug 6 16:23:19 mertcangokgoz-v4-main kernel: [337138.214858] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:5a:6b:04:d2:74:7f:6e:37:e3:08:00 SRC=118.68.24.180 DST=94.130.96.165 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=26145 PROTO=TCP SPT=59806 DPT=23 WINDOW=31861 RES=0x00 SYN URGP=0	2020-08-07 00:48:43
106.36.216.235	attackspambots	Aug 6 17:47:41 pve1 sshd[11118]: Failed password for root from 106.36.216.235 port 17009 ssh2 ...	2020-08-07 00:59:20
129.226.73.26	attack	Aug 6 18:56:16 abendstille sshd\[17791\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.73.26 user=root Aug 6 18:56:18 abendstille sshd\[17791\]: Failed password for root from 129.226.73.26 port 53334 ssh2 Aug 6 19:00:49 abendstille sshd\[21834\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.73.26 user=root Aug 6 19:00:51 abendstille sshd\[21834\]: Failed password for root from 129.226.73.26 port 47732 ssh2 Aug 6 19:05:25 abendstille sshd\[26100\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.73.26 user=root ...	2020-08-07 01:13:49
78.128.113.116	attackbots	Aug 6 19:15:41 galaxy event: galaxy/lswi: smtp: sander.lass@wi.uni-potsdam.de [78.128.113.116] authentication failure using internet password Aug 6 19:15:43 galaxy event: galaxy/lswi: smtp: sander.lass [78.128.113.116] authentication failure using internet password Aug 6 19:15:56 galaxy event: galaxy/lswi: smtp: gergana.vladova@wi.uni-potsdam.de [78.128.113.116] authentication failure using internet password Aug 6 19:15:58 galaxy event: galaxy/lswi: smtp: gergana.vladova [78.128.113.116] authentication failure using internet password Aug 6 19:19:46 galaxy event: galaxy/lswi: smtp: fachtagung@wi.uni-potsdam.de [78.128.113.116] authentication failure using internet password ...	2020-08-07 01:21:43
51.89.68.141	attack	Aug 6 17:29:10 vpn01 sshd[10295]: Failed password for root from 51.89.68.141 port 55440 ssh2 ...	2020-08-07 01:04:55
61.50.99.26	attack	Aug 6 15:22:48 mout sshd[8986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.50.99.26 user=root Aug 6 15:22:51 mout sshd[8986]: Failed password for root from 61.50.99.26 port 56889 ssh2	2020-08-07 01:10:54
212.0.149.84	attack	20/8/6@09:22:44: FAIL: Alarm-Network address from=212.0.149.84 20/8/6@09:22:44: FAIL: Alarm-Network address from=212.0.149.84 ...	2020-08-07 01:17:00
31.132.211.144	attack	0,27-01/01 [bc01/m05] PostRequest-Spammer scoring: Lusaka01	2020-08-07 00:59:39
114.143.139.222	attackbots	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-08-07 01:18:31
103.228.144.163	attackspambots	Aug 6 14:11:48 our-server-hostname sshd[7279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.228.144.163 user=r.r Aug 6 14:11:50 our-server-hostname sshd[7279]: Failed password for r.r from 103.228.144.163 port 60398 ssh2 Aug 6 14:20:41 our-server-hostname sshd[9484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.228.144.163 user=r.r Aug 6 14:20:43 our-server-hostname sshd[9484]: Failed password for r.r from 103.228.144.163 port 44092 ssh2 Aug 6 14:26:42 our-server-hostname sshd[10951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.228.144.163 user=r.r Aug 6 14:26:44 our-server-hostname sshd[10951]: Failed password for r.r from 103.228.144.163 port 37332 ssh2 Aug 6 14:32:51 our-server-hostname sshd[12711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.228.144.163 user=r.r Aug 6........ -------------------------------	2020-08-07 01:14:13
178.33.229.120	attackspam	Aug 6 17:22:05 ovpn sshd\[14891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.229.120 user=root Aug 6 17:22:07 ovpn sshd\[14891\]: Failed password for root from 178.33.229.120 port 44377 ssh2 Aug 6 17:40:07 ovpn sshd\[23714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.229.120 user=root Aug 6 17:40:09 ovpn sshd\[23714\]: Failed password for root from 178.33.229.120 port 43064 ssh2 Aug 6 17:41:56 ovpn sshd\[24578\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.229.120 user=root	2020-08-07 00:44:01
201.150.180.171	attackspam	Unauthorised access (Aug 6) SRC=201.150.180.171 LEN=52 TOS=0x10 PREC=0x40 TTL=116 ID=10614 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-07 01:07:25
192.35.169.38	attackbotsspam	TCP (SYN) 192.35.169.38:57840 -> port 3306, len 44	2020-08-07 00:56:45
123.6.51.133	attack	2020-08-06T11:07:50.2882061495-001 sshd[34520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.6.51.133 user=root 2020-08-06T11:07:52.2947821495-001 sshd[34520]: Failed password for root from 123.6.51.133 port 56844 ssh2 2020-08-06T11:12:38.2296641495-001 sshd[34698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.6.51.133 user=root 2020-08-06T11:12:40.1056691495-001 sshd[34698]: Failed password for root from 123.6.51.133 port 48678 ssh2 2020-08-06T11:17:08.2217651495-001 sshd[34947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.6.51.133 user=root 2020-08-06T11:17:10.1633261495-001 sshd[34947]: Failed password for root from 123.6.51.133 port 40390 ssh2 ...	2020-08-07 00:45:57

最近上报的IP列表

80.82.65.163	45.145.131.86	77.83.85.24	172.241.192.35
213.166.77.235	74.82.47.63	94.102.62.225	80.82.79.106
80.82.78.193	123.149.79.160	213.166.77.169	80.82.79.2
80.82.70.80	94.102.49.200	23.108.43.150	180.76.123.200
169.229.227.135	169.229.233.129	169.229.145.127	73.31.52.54