42.156.138.162

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13738
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.162.			IN	A

;; AUTHORITY SECTION:
.			175	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062600 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 27 00:46:39 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

162.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-162.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
162.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-162.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.175.215	attack	Mar 8 16:18:21 sso sshd[22435]: Failed password for root from 222.186.175.215 port 43368 ssh2 Mar 8 16:18:24 sso sshd[22435]: Failed password for root from 222.186.175.215 port 43368 ssh2 ...	2020-03-08 23:23:45
216.224.170.89	attackspambots	May 2 09:28:00 ms-srv sshd[14857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.224.170.89 May 2 09:28:02 ms-srv sshd[14857]: Failed password for invalid user agsadmin from 216.224.170.89 port 52744 ssh2	2020-03-08 22:38:27
218.92.0.138	attack	Mar 8 16:17:48 eventyay sshd[28452]: Failed password for root from 218.92.0.138 port 4071 ssh2 Mar 8 16:18:01 eventyay sshd[28452]: error: maximum authentication attempts exceeded for root from 218.92.0.138 port 4071 ssh2 [preauth] Mar 8 16:18:10 eventyay sshd[28459]: Failed password for root from 218.92.0.138 port 24720 ssh2 ...	2020-03-08 23:19:16
216.68.91.104	attack	Jan 14 19:00:02 ms-srv sshd[5586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.68.91.104 Jan 14 19:00:05 ms-srv sshd[5586]: Failed password for invalid user guest from 216.68.91.104 port 56002 ssh2	2020-03-08 22:33:31
216.158.235.213	attackbotsspam	May 7 21:25:34 ms-srv sshd[45869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.158.235.213 May 7 21:25:37 ms-srv sshd[45869]: Failed password for invalid user zimbra from 216.158.235.213 port 40822 ssh2	2020-03-08 22:49:45
223.18.230.176	attack	Honeypot attack, port: 445, PTR: 176-230-18-223-on-nets.com.	2020-03-08 23:01:34
216.218.134.12	attackspam	Aug 16 13:41:38 ms-srv sshd[30911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.218.134.12 Aug 16 13:41:40 ms-srv sshd[30911]: Failed password for invalid user admin from 216.218.134.12 port 44879 ssh2	2020-03-08 22:41:26
216.144.251.86	attackspam	Sep 1 21:29:40 ms-srv sshd[2777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.144.251.86 user=root Sep 1 21:29:42 ms-srv sshd[2777]: Failed password for invalid user root from 216.144.251.86 port 40592 ssh2	2020-03-08 22:54:10
216.200.166.196	attack	Jan 22 00:29:02 ms-srv sshd[37918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.200.166.196 user=root Jan 22 00:29:04 ms-srv sshd[37918]: Failed password for invalid user root from 216.200.166.196 port 55424 ssh2	2020-03-08 22:46:22
216.224.162.95	attackspambots	Mar 13 09:04:00 ms-srv sshd[3855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.224.162.95 Mar 13 09:04:02 ms-srv sshd[3855]: Failed password for invalid user test4 from 216.224.162.95 port 57932 ssh2	2020-03-08 22:39:18
124.150.132.74	attackbots	WordPress login Brute force / Web App Attack on client site.	2020-03-08 23:06:36
188.158.145.70	attackbots	Honeypot attack, port: 5555, PTR: adsl-188-158-145-70.sabanet.ir.	2020-03-08 22:40:10
203.82.46.11	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-08 23:13:20
51.79.66.142	attack	2020-03-08T08:19:18.320104linuxbox-skyline sshd[41224]: Invalid user hobbit from 51.79.66.142 port 34818 ...	2020-03-08 23:12:13
178.128.242.233	attack	Mar 8 04:26:54 tdfoods sshd\[31305\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.242.233 user=root Mar 8 04:26:56 tdfoods sshd\[31305\]: Failed password for root from 178.128.242.233 port 38908 ssh2 Mar 8 04:30:57 tdfoods sshd\[31617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.242.233 user=root Mar 8 04:30:58 tdfoods sshd\[31617\]: Failed password for root from 178.128.242.233 port 55106 ssh2 Mar 8 04:34:58 tdfoods sshd\[31922\]: Invalid user testftp from 178.128.242.233 Mar 8 04:34:58 tdfoods sshd\[31922\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.242.233	2020-03-08 22:37:42

最近上报的IP列表

172.66.47.50	42.156.139.54	169.229.255.233	169.229.209.216
169.229.211.2	169.229.221.84	169.229.221.206	169.229.171.186
169.229.132.122	169.229.132.247	169.229.132.237	169.229.132.253
169.229.86.97	51.178.220.174	169.229.89.99	169.229.88.111
169.229.128.214	169.229.115.139	169.229.126.195	169.229.85.11