42.156.138.11 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34947
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.11.			IN	A

;; AUTHORITY SECTION:
.			504	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062600 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 26 21:58:34 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

11.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-11.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
11.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-11.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.143.220.48	attackspam	Port 5294 scan denied	2020-03-26 16:26:43
194.26.29.130	attackspambots	Mar 26 09:19:07 debian-2gb-nbg1-2 kernel: \[7469823.742886\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=48811 PROTO=TCP SPT=51729 DPT=5650 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-26 16:35:04
85.187.218.189	attackspambots	Port 17725 scan denied	2020-03-26 16:20:20
79.124.62.86	attackbots	firewall-block, port(s): 3389/tcp	2020-03-26 16:20:55
162.243.129.121	attack	Port 502 scan denied	2020-03-26 16:54:10
87.251.74.7	attackbotsspam	firewall-block, port(s): 95/tcp, 6089/tcp, 7389/tcp, 26000/tcp, 33335/tcp	2020-03-26 16:18:50
167.172.152.143	attack	Port 22362 scan denied	2020-03-26 16:05:22
88.204.198.42	attack	Port Scan	2020-03-26 16:15:17
162.243.131.90	attack	8098/tcp 1364/tcp 2638/tcp... [2020-02-01/03-25]28pkt,26pt.(tcp)	2020-03-26 16:50:49
95.90.158.16	attack	Mar 25 23:50:45 Tower sshd[28411]: Connection from 95.90.158.16 port 59394 on 192.168.10.220 port 22 rdomain "" Mar 25 23:50:46 Tower sshd[28411]: Invalid user he from 95.90.158.16 port 59394 Mar 25 23:50:46 Tower sshd[28411]: error: Could not get shadow information for NOUSER Mar 25 23:50:46 Tower sshd[28411]: Failed password for invalid user he from 95.90.158.16 port 59394 ssh2 Mar 25 23:50:46 Tower sshd[28411]: Received disconnect from 95.90.158.16 port 59394:11: Bye Bye [preauth] Mar 25 23:50:46 Tower sshd[28411]: Disconnected from invalid user he 95.90.158.16 port 59394 [preauth]	2020-03-26 15:55:38
138.68.72.7	attack	Mar 26 07:24:06 debian-2gb-nbg1-2 kernel: \[7462923.146195\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=138.68.72.7 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=52758 PROTO=TCP SPT=49589 DPT=15089 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-26 16:11:30
218.84.160.126	attack	Unauthorized connection attempt detected from IP address 218.84.160.126 to port 5555 [T]	2020-03-26 16:30:47
162.243.133.57	attackbotsspam	Port 1521 scan denied	2020-03-26 16:47:56
139.99.125.191	attackspambots	139.99.125.191 was recorded 20 times by 9 hosts attempting to connect to the following ports: 51856,39019,50570,52084,54434,56610,51142,60429,26014. Incident counter (4h, 24h, all-time): 20, 82, 683	2020-03-26 16:58:49
176.113.115.43	attackspam	Fail2Ban Ban Triggered	2020-03-26 16:47:09

最近上报的IP列表

137.226.222.234	106.11.153.10	42.236.102.23	95.221.51.130
96.1.26.177	96.35.184.218	96.39.234.213	96.67.65.150
137.226.237.192	169.229.19.171	169.229.19.151	169.229.19.163
169.229.19.190	169.229.20.138	169.229.20.35	169.229.21.23
169.229.42.141	169.229.42.197	169.229.42.187	169.229.42.241