42.156.138.162

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13738
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.162.			IN	A

;; AUTHORITY SECTION:
.			175	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062600 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 27 00:46:39 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

162.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-162.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
162.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-162.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
188.254.0.112	attackbotsspam	Dec 8 14:59:06 kapalua sshd\[11650\]: Invalid user bovard from 188.254.0.112 Dec 8 14:59:06 kapalua sshd\[11650\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.112 Dec 8 14:59:09 kapalua sshd\[11650\]: Failed password for invalid user bovard from 188.254.0.112 port 50470 ssh2 Dec 8 15:05:24 kapalua sshd\[12242\]: Invalid user lunceford from 188.254.0.112 Dec 8 15:05:24 kapalua sshd\[12242\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.112	2019-12-09 09:07:05
1.179.137.10	attackbotsspam	$f2bV_matches	2019-12-09 08:49:44
189.12.149.87	attack	Dec 9 01:29:44 meumeu sshd[32109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.12.149.87 Dec 9 01:29:46 meumeu sshd[32109]: Failed password for invalid user redbul from 189.12.149.87 port 59268 ssh2 Dec 9 01:38:39 meumeu sshd[1072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.12.149.87 ...	2019-12-09 08:46:23
137.83.79.163	attackspambots	2019-12-09T00:45:23.630706abusebot-5.cloudsearch.cf sshd\[5230\]: Invalid user wzdit from 137.83.79.163 port 64049	2019-12-09 08:45:37
116.114.95.222	attackbots	Unauthorized connection attempt detected from IP address 116.114.95.222 to port 7574	2019-12-09 09:22:14
178.33.45.156	attackbotsspam	Dec 9 01:30:00 vps647732 sshd[25117]: Failed password for root from 178.33.45.156 port 56474 ssh2 ...	2019-12-09 08:47:35
91.121.11.44	attackbots	Dec 8 19:32:53 TORMINT sshd\[27352\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.11.44 user=root Dec 8 19:32:55 TORMINT sshd\[27352\]: Failed password for root from 91.121.11.44 port 33317 ssh2 Dec 8 19:38:00 TORMINT sshd\[27710\]: Invalid user abigail from 91.121.11.44 Dec 8 19:38:00 TORMINT sshd\[27710\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.11.44 ...	2019-12-09 08:54:16
189.91.239.121	attackspam	Lines containing failures of 189.91.239.121 Dec 9 01:04:55 mellenthin sshd[18850]: User mysql from 189.91.239.121 not allowed because not listed in AllowUsers Dec 9 01:04:55 mellenthin sshd[18850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.91.239.121 user=mysql Dec 9 01:04:56 mellenthin sshd[18850]: Failed password for invalid user mysql from 189.91.239.121 port 57585 ssh2 Dec 9 01:04:56 mellenthin sshd[18850]: Received disconnect from 189.91.239.121 port 57585:11: Bye Bye [preauth] Dec 9 01:04:56 mellenthin sshd[18850]: Disconnected from invalid user mysql 189.91.239.121 port 57585 [preauth] Dec 9 01:12:25 mellenthin sshd[19078]: Invalid user squid from 189.91.239.121 port 37325 Dec 9 01:12:25 mellenthin sshd[19078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.91.239.121 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=189.91.239.121	2019-12-09 08:52:36
106.13.128.71	attackspam	Dec 9 01:58:14 sso sshd[23516]: Failed password for root from 106.13.128.71 port 54868 ssh2 ...	2019-12-09 09:17:11
123.108.34.70	attack	Dec 8 19:45:13 linuxvps sshd\[26414\]: Invalid user karunaratne from 123.108.34.70 Dec 8 19:45:13 linuxvps sshd\[26414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.108.34.70 Dec 8 19:45:15 linuxvps sshd\[26414\]: Failed password for invalid user karunaratne from 123.108.34.70 port 33466 ssh2 Dec 8 19:51:40 linuxvps sshd\[30905\]: Invalid user assabgui from 123.108.34.70 Dec 8 19:51:40 linuxvps sshd\[30905\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.108.34.70	2019-12-09 09:03:38
51.68.64.220	attackspam	Dec 9 01:07:03 v22018086721571380 sshd[6312]: Failed password for invalid user user from 51.68.64.220 port 34332 ssh2	2019-12-09 08:54:40
87.236.23.224	attackbots	ssh intrusion attempt	2019-12-09 09:04:39
192.99.208.102	attackspambots	Dec 9 00:38:27 pi01 sshd[1253]: Connection from 192.99.208.102 port 37078 on 192.168.1.10 port 22 Dec 9 00:38:27 pi01 sshd[1253]: User r.r from 192.99.208.102 not allowed because not listed in AllowUsers Dec 9 00:38:27 pi01 sshd[1253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.208.102 user=r.r Dec 9 00:38:29 pi01 sshd[1253]: Failed password for invalid user r.r from 192.99.208.102 port 37078 ssh2 Dec 9 00:38:29 pi01 sshd[1253]: Received disconnect from 192.99.208.102 port 37078:11: Bye Bye [preauth] Dec 9 00:38:29 pi01 sshd[1253]: Disconnected from 192.99.208.102 port 37078 [preauth] Dec 9 00:47:55 pi01 sshd[1848]: Connection from 192.99.208.102 port 50616 on 192.168.1.10 port 22 Dec 9 00:47:55 pi01 sshd[1848]: Invalid user user from 192.99.208.102 port 50616 Dec 9 00:47:55 pi01 sshd[1848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.208.102 Dec 9 00:47:57 ........ -------------------------------	2019-12-09 09:20:57
193.70.33.75	attackbots	Dec 9 01:00:26 124388 sshd[17354]: Invalid user webadmin from 193.70.33.75 port 33374 Dec 9 01:00:26 124388 sshd[17354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.33.75 Dec 9 01:00:26 124388 sshd[17354]: Invalid user webadmin from 193.70.33.75 port 33374 Dec 9 01:00:27 124388 sshd[17354]: Failed password for invalid user webadmin from 193.70.33.75 port 33374 ssh2 Dec 9 01:05:24 124388 sshd[17422]: Invalid user test2 from 193.70.33.75 port 41280	2019-12-09 09:07:59
90.161.220.131	attackspambots	Dec 9 01:24:35 server sshd\[31215\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.161.220.131 user=root Dec 9 01:24:36 server sshd\[31215\]: Failed password for root from 90.161.220.131 port 38604 ssh2 Dec 9 03:12:21 server sshd\[30524\]: Invalid user webadmin from 90.161.220.131 Dec 9 03:12:21 server sshd\[30524\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.161.220.131 Dec 9 03:12:23 server sshd\[30524\]: Failed password for invalid user webadmin from 90.161.220.131 port 59917 ssh2 ...	2019-12-09 08:50:53

最近上报的IP列表

172.66.47.50	42.156.139.54	169.229.255.233	169.229.209.216
169.229.211.2	169.229.221.84	169.229.221.206	169.229.171.186
169.229.132.122	169.229.132.247	169.229.132.237	169.229.132.253
169.229.86.97	51.178.220.174	169.229.89.99	169.229.88.111
169.229.128.214	169.229.115.139	169.229.126.195	169.229.85.11