42.156.138.157

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9243
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.157.			IN	A

;; AUTHORITY SECTION:
.			196	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062600 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 27 00:56:11 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

157.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-157.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-157.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
3.21.170.192	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/3.21.170.192/ US - 1H : (134) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN0 IP : 3.21.170.192 CIDR : 3.20.0.0/14 PREFIX COUNT : 50242 UNIQUE IP COUNT : 856039856 ATTACKS DETECTED ASN0 : 1H - 2 3H - 2 6H - 2 12H - 3 24H - 8 DateTime : 2020-03-23 16:44:04 INFO : Looking for resource vulnerabilities 403 Detected and Blocked by ADMIN - data recovery	2020-03-24 04:45:14
51.254.113.107	attack	Mar 23 19:11:52 combo sshd[25517]: Invalid user infocbe from 51.254.113.107 port 57532 Mar 23 19:11:54 combo sshd[25517]: Failed password for invalid user infocbe from 51.254.113.107 port 57532 ssh2 Mar 23 19:15:28 combo sshd[25784]: Invalid user contry from 51.254.113.107 port 37081 ...	2020-03-24 04:40:11
222.186.42.155	attack	Mar 23 21:39:21 SilenceServices sshd[3358]: Failed password for root from 222.186.42.155 port 46795 ssh2 Mar 23 21:43:37 SilenceServices sshd[15029]: Failed password for root from 222.186.42.155 port 39151 ssh2	2020-03-24 04:49:36
178.176.58.76	attackspam	Mar 23 16:38:18 silence02 sshd[4459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.176.58.76 Mar 23 16:38:20 silence02 sshd[4459]: Failed password for invalid user uf from 178.176.58.76 port 55440 ssh2 Mar 23 16:43:58 silence02 sshd[5483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.176.58.76	2020-03-24 04:52:30
196.52.55.200	attackspam	Lines containing failures of 196.52.55.200 Mar 23 16:31:26 shared12 sshd[8509]: Did not receive identification string from 196.52.55.200 port 33744 Mar 23 16:31:26 shared12 sshd[8510]: Did not receive identification string from 196.52.55.200 port 41464 Mar 23 16:32:39 shared12 sshd[9464]: Did not receive identification string from 196.52.55.200 port 53608 Mar 23 16:32:39 shared12 sshd[9465]: Did not receive identification string from 196.52.55.200 port 60926 Mar 23 16:32:52 shared12 sshd[9467]: Invalid user nologin from 196.52.55.200 port 32828 Mar 23 16:32:52 shared12 sshd[9467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.52.55.200 Mar 23 16:32:52 shared12 sshd[9466]: Invalid user nologin from 196.52.55.200 port 40132 Mar 23 16:32:52 shared12 sshd[9466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.52.55.200 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=196.52.	2020-03-24 04:25:35
151.80.37.18	attackspam	Mar 23 20:56:47 host01 sshd[22677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.37.18 Mar 23 20:56:49 host01 sshd[22677]: Failed password for invalid user mcserver from 151.80.37.18 port 46902 ssh2 Mar 23 21:01:25 host01 sshd[23474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.37.18 ...	2020-03-24 04:12:40
81.183.222.181	attackspambots	$f2bV_matches	2020-03-24 04:37:21
156.96.47.16	attack	2020-03-23T19:37:36.589864abusebot-7.cloudsearch.cf sshd[625]: Invalid user breanne from 156.96.47.16 port 57493 2020-03-23T19:37:36.594210abusebot-7.cloudsearch.cf sshd[625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.96.47.16 2020-03-23T19:37:36.589864abusebot-7.cloudsearch.cf sshd[625]: Invalid user breanne from 156.96.47.16 port 57493 2020-03-23T19:37:38.387843abusebot-7.cloudsearch.cf sshd[625]: Failed password for invalid user breanne from 156.96.47.16 port 57493 ssh2 2020-03-23T19:45:25.111475abusebot-7.cloudsearch.cf sshd[1111]: Invalid user admin from 156.96.47.16 port 54974 2020-03-23T19:45:25.117222abusebot-7.cloudsearch.cf sshd[1111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.96.47.16 2020-03-23T19:45:25.111475abusebot-7.cloudsearch.cf sshd[1111]: Invalid user admin from 156.96.47.16 port 54974 2020-03-23T19:45:27.632931abusebot-7.cloudsearch.cf sshd[1111]: Failed password for ...	2020-03-24 04:36:06
194.61.27.246	attackbotsspam	Mar 23 21:00:51 debian-2gb-nbg1-2 kernel: \[7252738.403205\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.61.27.246 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=5790 PROTO=TCP SPT=54102 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-24 04:27:38
116.202.117.187	attack	Fail2Ban Ban Triggered	2020-03-24 04:35:16
5.188.86.218	attackbots	24 attempts against mh-misbehave-ban on oak	2020-03-24 04:35:03
104.248.176.207	attackbotsspam	Automatic report - XMLRPC Attack	2020-03-24 04:38:33
114.119.163.140	attackspam	ban huawei botnet - AspiegelBot [fake user agents]	2020-03-24 04:18:29
152.32.186.244	attackspambots	Mar 23 08:54:07 w sshd[17447]: Invalid user suman from 152.32.186.244 Mar 23 08:54:07 w sshd[17447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.186.244 Mar 23 08:54:09 w sshd[17447]: Failed password for invalid user suman from 152.32.186.244 port 44178 ssh2 Mar 23 08:54:09 w sshd[17447]: Received disconnect from 152.32.186.244: 11: Bye Bye [preauth] Mar 23 09:03:27 w sshd[17547]: Invalid user louis from 152.32.186.244 Mar 23 09:03:27 w sshd[17547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.186.244 Mar 23 09:03:29 w sshd[17547]: Failed password for invalid user louis from 152.32.186.244 port 49266 ssh2 Mar 23 09:03:29 w sshd[17547]: Received disconnect from 152.32.186.244: 11: Bye Bye [preauth] Mar 23 09:07:07 w sshd[17596]: Invalid user spong from 152.32.186.244 Mar 23 09:07:07 w sshd[17596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ss........ -------------------------------	2020-03-24 04:44:47
120.70.102.16	attackbots	invalid user	2020-03-24 04:30:40

最近上报的IP列表

80.110.39.20	205.210.31.3	83.136.176.12	78.72.200.158
180.76.0.123	137.226.64.147	169.229.127.96	169.229.127.196
169.229.130.104	169.229.129.84	169.229.24.29	169.229.24.7
169.229.24.21	169.229.24.30	169.229.47.204	169.229.47.214
169.229.47.222	169.229.47.220	169.229.47.224	169.229.70.105