42.156.136.64 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.136.33	attack	Automated report (2020-07-12T11:50:23+08:00). Misbehaving bot detected at this address.	2020-07-12 17:33:40
42.156.136.21	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5415e8012f249821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:08:49
42.156.136.98	bots	YisouSpider 就是神马搜索的爬虫 42.156.136.98 - - [29/Mar/2019:08:27:04 +0800] "GET /wp-includes/css/dist/block-library/style.min.css?ver=5.1.1 HTTP/1.1" 200 8104 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safa ri/537.36"	2019-03-29 09:13:21

类型

评论内容

时间

42.156.136.33

attack

Automated report (2020-07-12T11:50:23+08:00). Misbehaving bot detected at this address.

2020-07-12 17:33:40

42.156.136.21

attack

The IP has triggered Cloudflare WAF. CF-Ray: 5415e8012f249821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:08:49

42.156.136.98

bots

YisouSpider 就是神马搜索的爬虫
42.156.136.98 - - [29/Mar/2019:08:27:04 +0800] "GET /wp-includes/css/dist/block-library/style.min.css?ver=5.1.1 HTTP/1.1" 200 8104 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safa
ri/537.36"

2019-03-29 09:13:21

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.136.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13487
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.136.64.			IN	A

;; AUTHORITY SECTION:
.			413	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022063000 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 30 22:22:24 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

64.136.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-136-64.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.136.156.42.in-addr.arpa	name = shenmaspider-42-156-136-64.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.78.16.224	attack	Ref: mx Logwatch report	2020-06-08 03:04:45
111.251.10.9	attackspambots	scan z	2020-06-08 02:58:57
139.59.95.139	attackbots	Port Scan detected! ...	2020-06-08 02:40:41
112.161.78.70	attackbots	Jun 7 21:42:38 hosting sshd[22024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.161.78.70 user=root Jun 7 21:42:39 hosting sshd[22024]: Failed password for root from 112.161.78.70 port 61500 ssh2 ...	2020-06-08 02:45:43
116.196.89.78	attackspambots	Jun 7 14:14:57 legacy sshd[5573]: Failed password for root from 116.196.89.78 port 45562 ssh2 Jun 7 14:19:52 legacy sshd[5766]: Failed password for root from 116.196.89.78 port 34572 ssh2 ...	2020-06-08 03:11:33
80.211.243.108	attackbots	2020-06-07T19:49:06.644054centos sshd[27791]: Failed password for root from 80.211.243.108 port 39074 ssh2 2020-06-07T19:51:34.251429centos sshd[28010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.243.108 user=root 2020-06-07T19:51:36.676397centos sshd[28010]: Failed password for root from 80.211.243.108 port 41108 ssh2 ...	2020-06-08 02:59:26
45.84.196.113	attackspambots	TCP (SYN) 45.84.196.113:50721 -> port 23, len 44	2020-06-08 02:46:29
91.200.39.22	attackbotsspam	Ref: mx Logwatch report	2020-06-08 03:07:07
103.113.90.26	attackspam	2020-06-07 07:03:03.053722-0500 localhost smtpd[52181]: NOQUEUE: reject: RCPT from unknown[103.113.90.26]: 450 4.7.25 Client host rejected: cannot find your hostname, [103.113.90.26]; from= to= proto=ESMTP helo=<00fd7eef.ojasg.xyz>	2020-06-08 02:41:33
159.89.167.59	attackbotsspam	Jun 7 16:38:03 ajax sshd[19800]: Failed password for root from 159.89.167.59 port 51336 ssh2	2020-06-08 02:38:46
200.215.219.246	attackbots	Unauthorized connection attempt from IP address 200.215.219.246 on Port 445(SMB)	2020-06-08 03:00:12
185.39.10.47	attackbots	Jun 7 20:54:01 debian kernel: [455000.036570] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=185.39.10.47 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=22987 PROTO=TCP SPT=57511 DPT=10103 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-08 02:43:43
194.84.110.135	attackspambots	Port probing on unauthorized port 4899	2020-06-08 02:37:30
161.35.69.78	attack	161.35.69.78 - - [07/Jun/2020:08:27:03 +0000] "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 0 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)" "-"	2020-06-08 03:05:15
109.121.145.50	attackspam	TCP (SYN) 109.121.145.50:63784 -> port 80, len 44	2020-06-08 03:05:58

最近上报的IP列表

80.82.65.163	45.145.131.86	77.83.85.24	172.241.192.35
213.166.77.235	74.82.47.63	94.102.62.225	80.82.79.106
80.82.78.193	123.149.79.160	213.166.77.169	80.82.79.2
80.82.70.80	94.102.49.200	23.108.43.150	180.76.123.200
169.229.227.135	169.229.233.129	169.229.145.127	73.31.52.54