42.156.138.121

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1840
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.121.			IN	A

;; AUTHORITY SECTION:
.			169	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062600 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 26 22:57:45 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

121.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-121.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
121.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-121.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
170.0.60.70	attackbots	Jul 8 15:26:44 server sshd\[109716\]: Invalid user one from 170.0.60.70 Jul 8 15:26:44 server sshd\[109716\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.0.60.70 Jul 8 15:26:47 server sshd\[109716\]: Failed password for invalid user one from 170.0.60.70 port 50835 ssh2 ...	2019-10-09 12:49:42
111.230.116.149	attack	Oct 8 18:33:40 hanapaa sshd\[16355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.116.149 user=root Oct 8 18:33:42 hanapaa sshd\[16355\]: Failed password for root from 111.230.116.149 port 47830 ssh2 Oct 8 18:38:15 hanapaa sshd\[16737\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.116.149 user=root Oct 8 18:38:17 hanapaa sshd\[16737\]: Failed password for root from 111.230.116.149 port 53308 ssh2 Oct 8 18:42:51 hanapaa sshd\[17222\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.116.149 user=root	2019-10-09 12:54:07
170.81.23.18	attack	Jun 26 14:07:49 server sshd\[37310\]: Invalid user chen from 170.81.23.18 Jun 26 14:07:49 server sshd\[37310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.81.23.18 Jun 26 14:07:51 server sshd\[37310\]: Failed password for invalid user chen from 170.81.23.18 port 39671 ssh2 ...	2019-10-09 12:34:27
171.103.43.70	attack	Aug 1 15:11:40 server sshd\[86120\]: Invalid user admin from 171.103.43.70 Aug 1 15:11:40 server sshd\[86120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.103.43.70 Aug 1 15:11:42 server sshd\[86120\]: Failed password for invalid user admin from 171.103.43.70 port 32956 ssh2 ...	2019-10-09 12:32:54
207.180.208.157	attackbots	2019-10-08 22:57:16 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=vmi109186.contaboserver.net [207.180.208.157]:53546 I=[192.147.25.65]:25 input="CONNECT 45.33.35.141:80 HTTP/1.0" 2019-10-08 22:57:16 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=vmi109186.contaboserver.net [207.180.208.157]:53680 I=[192.147.25.65]:25 input="\004\001" 2019-10-08 22:57:17 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=vmi109186.contaboserver.net [207.180.208.157]:53705 I=[192.147.25.65]:25 input="\005\001" ...	2019-10-09 12:37:57
222.186.15.65	attackbotsspam	Oct 9 06:08:45 minden010 sshd[22420]: Failed password for root from 222.186.15.65 port 43652 ssh2 Oct 9 06:08:49 minden010 sshd[22420]: Failed password for root from 222.186.15.65 port 43652 ssh2 Oct 9 06:08:53 minden010 sshd[22420]: Failed password for root from 222.186.15.65 port 43652 ssh2 Oct 9 06:08:57 minden010 sshd[22420]: Failed password for root from 222.186.15.65 port 43652 ssh2 ...	2019-10-09 12:16:56
92.50.249.166	attackspambots	$f2bV_matches	2019-10-09 12:50:06
128.199.185.42	attack	2019-10-09T04:27:36.280699abusebot-6.cloudsearch.cf sshd\[6789\]: Invalid user P@ssword01 from 128.199.185.42 port 53880	2019-10-09 12:37:38
169.0.166.54	attack	May 6 01:50:38 server sshd\[136559\]: Invalid user www from 169.0.166.54 May 6 01:50:38 server sshd\[136559\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.0.166.54 May 6 01:50:41 server sshd\[136559\]: Failed password for invalid user www from 169.0.166.54 port 47265 ssh2 ...	2019-10-09 12:52:06
170.78.62.68	attackspambots	Aug 8 09:29:29 server sshd\[15908\]: Invalid user admina from 170.78.62.68 Aug 8 09:29:30 server sshd\[15908\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.78.62.68 Aug 8 09:29:32 server sshd\[15908\]: Failed password for invalid user admina from 170.78.62.68 port 52656 ssh2 ...	2019-10-09 12:41:03
203.125.145.58	attackspambots	Oct 5 06:31:27 xb3 sshd[20926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:31:29 xb3 sshd[20926]: Failed password for r.r from 203.125.145.58 port 45898 ssh2 Oct 5 06:31:29 xb3 sshd[20926]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:36:06 xb3 sshd[21157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:36:08 xb3 sshd[21157]: Failed password for r.r from 203.125.145.58 port 58332 ssh2 Oct 5 06:36:08 xb3 sshd[21157]: Received disconnect from 203.125.145.58: 11: Bye Bye [preauth] Oct 5 06:40:48 xb3 sshd[21413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.125.145.58 user=r.r Oct 5 06:40:50 xb3 sshd[21413]: Failed password for r.r from 203.125.145.58 port 42540 ssh2 Oct 5 06:40:50 xb3 sshd[21413]: Received disconnect from 203.125.145.58: 1........ -------------------------------	2019-10-09 12:48:08
58.219.131.11	attackspam	port scan and connect, tcp 23 (telnet)	2019-10-09 12:35:34
220.130.178.36	attack	Aug 5 00:42:20 server sshd\[131643\]: Invalid user odoo from 220.130.178.36 Aug 5 00:42:20 server sshd\[131643\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.178.36 Aug 5 00:42:22 server sshd\[131643\]: Failed password for invalid user odoo from 220.130.178.36 port 49148 ssh2 ...	2019-10-09 12:53:01
118.25.214.4	attackbots	Oct 8 18:39:42 hpm sshd\[30172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.214.4 user=root Oct 8 18:39:43 hpm sshd\[30172\]: Failed password for root from 118.25.214.4 port 44704 ssh2 Oct 8 18:44:06 hpm sshd\[30580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.214.4 user=root Oct 8 18:44:09 hpm sshd\[30580\]: Failed password for root from 118.25.214.4 port 48956 ssh2 Oct 8 18:48:53 hpm sshd\[30988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.214.4 user=root	2019-10-09 12:49:07
169.57.168.125	attack	Aug 16 14:53:55 server sshd\[56284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.57.168.125 user=root Aug 16 14:53:57 server sshd\[56284\]: Failed password for root from 169.57.168.125 port 38168 ssh2 Aug 16 14:53:58 server sshd\[56288\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.57.168.125 user=root ...	2019-10-09 12:51:25

最近上报的IP列表

137.226.223.234	137.226.89.73	137.226.224.54	46.8.15.223
180.76.95.240	137.226.224.104	137.226.226.115	180.76.0.130
180.76.36.76	137.226.228.33	137.226.228.38	180.76.36.115
180.76.35.184	169.229.114.55	169.229.57.160	169.229.129.211
169.229.126.121	169.229.110.182	180.76.36.51	137.226.227.145