42.156.138.154

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48697
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.154.			IN	A

;; AUTHORITY SECTION:
.			84	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062801 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 29 03:29:25 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

154.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-154.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
154.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-154.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
218.24.45.75	attack	8080/tcp... [2019-07-02/09-02]134pkt,2pt.(tcp)	2019-09-02 14:25:02
111.198.54.177	attackspambots	Sep 2 06:42:21 cp sshd[5630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.198.54.177	2019-09-02 13:58:33
182.191.87.62	attackbotsspam	445/tcp 445/tcp 445/tcp... [2019-07-15/09-02]7pkt,1pt.(tcp)	2019-09-02 13:25:41
218.17.157.34	attack	Sep 2 07:18:42 meumeu sshd[2578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.17.157.34 Sep 2 07:18:44 meumeu sshd[2578]: Failed password for invalid user tq from 218.17.157.34 port 18411 ssh2 Sep 2 07:21:32 meumeu sshd[2980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.17.157.34 ...	2019-09-02 13:55:25
68.183.184.186	attackspam	Sep 2 06:51:59 debian sshd\[3129\]: Invalid user 123456 from 68.183.184.186 port 59432 Sep 2 06:51:59 debian sshd\[3129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.184.186 ...	2019-09-02 14:10:31
5.63.151.107	attackbots	Automatic report - Port Scan Attack	2019-09-02 14:14:59
114.116.102.82	attackspam	Portscan or hack attempt detected by psad/fwsnort	2019-09-02 13:19:19
63.143.35.50	attackbotsspam	5060/udp 5060/udp 5060/udp... [2019-08-23/09-02]5pkt,1pt.(udp)	2019-09-02 13:40:03
177.135.101.5	attackbotsspam	[munged]::443 177.135.101.5 - - [02/Sep/2019:05:20:54 +0200] "POST /[munged]: HTTP/1.1" 200 8211 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 177.135.101.5 - - [02/Sep/2019:05:20:56 +0200] "POST /[munged]: HTTP/1.1" 200 4436 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 177.135.101.5 - - [02/Sep/2019:05:20:58 +0200] "POST /[munged]: HTTP/1.1" 200 4436 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 177.135.101.5 - - [02/Sep/2019:05:21:00 +0200] "POST /[munged]: HTTP/1.1" 200 4436 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 177.135.101.5 - - [02/Sep/2019:05:21:02 +0200] "POST /[munged]: HTTP/1.1" 200 4436 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 177.135.101.5 - - [02/Sep/2019:05:21:03	2019-09-02 14:17:42
183.13.15.248	attack	Sep 2 07:07:12 localhost sshd\[22716\]: Invalid user cheryl from 183.13.15.248 port 19940 Sep 2 07:07:12 localhost sshd\[22716\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.13.15.248 Sep 2 07:07:14 localhost sshd\[22716\]: Failed password for invalid user cheryl from 183.13.15.248 port 19940 ssh2	2019-09-02 14:25:37
79.137.84.144	attackspam	Sep 1 20:15:49 friendsofhawaii sshd\[20591\]: Invalid user veronique from 79.137.84.144 Sep 1 20:15:49 friendsofhawaii sshd\[20591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.ip-79-137-84.eu Sep 1 20:15:51 friendsofhawaii sshd\[20591\]: Failed password for invalid user veronique from 79.137.84.144 port 34550 ssh2 Sep 1 20:20:06 friendsofhawaii sshd\[20971\]: Invalid user bbbbb from 79.137.84.144 Sep 1 20:20:06 friendsofhawaii sshd\[20971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.ip-79-137-84.eu	2019-09-02 14:21:19
190.13.136.53	attackspambots	23/tcp 23/tcp 23/tcp [2019-08-04/09-02]3pkt	2019-09-02 13:59:57
80.82.64.127	attack	1531/tcp 1043/tcp 1550/tcp... [2019-07-02/09-02]3845pkt,1357pt.(tcp)	2019-09-02 13:51:42
188.166.236.211	attack	Sep 1 19:11:39 web9 sshd\[9567\]: Invalid user push from 188.166.236.211 Sep 1 19:11:39 web9 sshd\[9567\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.236.211 Sep 1 19:11:42 web9 sshd\[9567\]: Failed password for invalid user push from 188.166.236.211 port 36430 ssh2 Sep 1 19:17:18 web9 sshd\[10614\]: Invalid user yoko from 188.166.236.211 Sep 1 19:17:18 web9 sshd\[10614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.236.211	2019-09-02 14:11:07
5.129.59.119	attackbotsspam	81/tcp 23/tcp [2019-08-07/09-02]2pkt	2019-09-02 14:17:12

最近上报的IP列表

180.76.77.142	180.76.35.206	91.226.240.226	185.42.241.168
169.229.169.190	169.229.169.169	169.229.174.176	137.226.228.87
169.229.172.79	169.229.174.242	169.229.174.109	169.229.177.144
169.229.170.18	180.76.79.164	169.229.20.121	180.76.75.246
185.88.37.25	59.46.98.218	73.50.223.226	137.226.225.13