42.156.138.160

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.160
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9088
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.160.			IN	A

;; AUTHORITY SECTION:
.			507	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022063001 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 01 17:54:20 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

160.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-160.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
160.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-160.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
92.174.242.138	attackspam	Dec 7 06:20:13 yesfletchmain sshd\[26265\]: Invalid user server from 92.174.242.138 port 49886 Dec 7 06:20:13 yesfletchmain sshd\[26265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.174.242.138 Dec 7 06:20:15 yesfletchmain sshd\[26265\]: Failed password for invalid user server from 92.174.242.138 port 49886 ssh2 Dec 7 06:27:27 yesfletchmain sshd\[26591\]: Invalid user wwwadmin from 92.174.242.138 port 57356 Dec 7 06:27:27 yesfletchmain sshd\[26591\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.174.242.138 ...	2019-12-07 18:24:43
106.13.25.242	attackbotsspam	$f2bV_matches	2019-12-07 18:36:08
129.204.93.65	attack	Dec 5 08:19:43 h2040555 sshd[25176]: Invalid user sooya118 from 129.204.93.65 Dec 5 08:19:43 h2040555 sshd[25176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.93.65 Dec 5 08:19:44 h2040555 sshd[25176]: Failed password for invalid user sooya118 from 129.204.93.65 port 60022 ssh2 Dec 5 08:19:45 h2040555 sshd[25176]: Received disconnect from 129.204.93.65: 11: Bye Bye [preauth] Dec 5 08:31:41 h2040555 sshd[25454]: Invalid user team3 from 129.204.93.65 Dec 5 08:31:41 h2040555 sshd[25454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.93.65 Dec 5 08:31:42 h2040555 sshd[25454]: Failed password for invalid user team3 from 129.204.93.65 port 57632 ssh2 Dec 5 08:31:43 h2040555 sshd[25454]: Received disconnect from 129.204.93.65: 11: Bye Bye [preauth] Dec 5 08:40:56 h2040555 sshd[25754]: Invalid user ident from 129.204.93.65 Dec 5 08:40:56 h2040555 sshd[25754]: pam_un........ -------------------------------	2019-12-07 18:12:26
113.141.66.255	attackbots	Dec 7 10:37:01 Ubuntu-1404-trusty-64-minimal sshd\[18983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.66.255 user=root Dec 7 10:37:03 Ubuntu-1404-trusty-64-minimal sshd\[18983\]: Failed password for root from 113.141.66.255 port 36835 ssh2 Dec 7 10:54:40 Ubuntu-1404-trusty-64-minimal sshd\[31254\]: Invalid user dacasin from 113.141.66.255 Dec 7 10:54:40 Ubuntu-1404-trusty-64-minimal sshd\[31254\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.66.255 Dec 7 10:54:43 Ubuntu-1404-trusty-64-minimal sshd\[31254\]: Failed password for invalid user dacasin from 113.141.66.255 port 59923 ssh2	2019-12-07 18:31:45
112.85.42.87	attackbots	2019-12-07T10:00:33.625982shield sshd\[31499\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.87 user=root 2019-12-07T10:00:35.601474shield sshd\[31499\]: Failed password for root from 112.85.42.87 port 60095 ssh2 2019-12-07T10:00:37.792430shield sshd\[31499\]: Failed password for root from 112.85.42.87 port 60095 ssh2 2019-12-07T10:00:39.726954shield sshd\[31499\]: Failed password for root from 112.85.42.87 port 60095 ssh2 2019-12-07T10:01:57.046920shield sshd\[32092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.87 user=root	2019-12-07 18:09:38
115.159.3.221	attackspambots	2019-12-07T09:45:50.609596abusebot-8.cloudsearch.cf sshd\[24717\]: Invalid user nnamdi from 115.159.3.221 port 41692	2019-12-07 18:29:54
45.114.158.142	attack	Unauthorised access (Dec 7) SRC=45.114.158.142 LEN=40 TTL=47 ID=24301 TCP DPT=23 WINDOW=17777 SYN Unauthorised access (Dec 7) SRC=45.114.158.142 LEN=40 TTL=49 ID=64052 TCP DPT=23 WINDOW=29235 SYN	2019-12-07 18:09:08
173.236.145.100	attackspam	173.236.145.100 - - \[07/Dec/2019:07:37:20 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 173.236.145.100 - - \[07/Dec/2019:07:37:20 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-12-07 18:15:40
106.54.54.224	attackspam	Dec 7 09:55:08 h2177944 sshd\[12914\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.54.224 user=root Dec 7 09:55:10 h2177944 sshd\[12914\]: Failed password for root from 106.54.54.224 port 55250 ssh2 Dec 7 10:02:43 h2177944 sshd\[13656\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.54.224 user=root Dec 7 10:02:45 h2177944 sshd\[13656\]: Failed password for root from 106.54.54.224 port 33468 ssh2 ...	2019-12-07 18:14:52
187.141.128.42	attackbotsspam	2019-12-07T10:11:32.418532abusebot-5.cloudsearch.cf sshd\[5309\]: Invalid user guest from 187.141.128.42 port 60572	2019-12-07 18:14:27
73.62.188.65	attackspambots	Port 22 Scan, PTR: None	2019-12-07 18:38:01
106.12.22.73	attackspambots	Dec 7 11:22:16 lnxded64 sshd[31694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.22.73	2019-12-07 18:29:27
163.47.214.158	attack	Dec 6 23:55:44 auw2 sshd\[16965\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.47.214.158 user=root Dec 6 23:55:46 auw2 sshd\[16965\]: Failed password for root from 163.47.214.158 port 50322 ssh2 Dec 7 00:02:22 auw2 sshd\[17569\]: Invalid user qinsong from 163.47.214.158 Dec 7 00:02:22 auw2 sshd\[17569\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.47.214.158 Dec 7 00:02:24 auw2 sshd\[17569\]: Failed password for invalid user qinsong from 163.47.214.158 port 33690 ssh2	2019-12-07 18:08:45
123.207.47.114	attackbots	SSH bruteforce	2019-12-07 18:22:49
5.135.152.97	attack	Dec 7 11:21:03 ArkNodeAT sshd\[21695\]: Invalid user biaggio from 5.135.152.97 Dec 7 11:21:03 ArkNodeAT sshd\[21695\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.152.97 Dec 7 11:21:06 ArkNodeAT sshd\[21695\]: Failed password for invalid user biaggio from 5.135.152.97 port 52544 ssh2	2019-12-07 18:34:41

最近上报的IP列表

169.229.247.92	180.76.106.232	169.229.211.142	180.76.149.59
169.229.203.242	169.229.212.63	180.76.55.192	169.229.171.146
180.76.59.46	169.229.237.132	45.66.209.212	180.76.39.40
35.244.125.215	158.101.100.148	137.226.203.133	137.226.104.160
137.226.227.43	23.250.101.26	38.106.114.240	47.188.188.127