42.156.138.199

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49702
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.199.			IN	A

;; AUTHORITY SECTION:
.			347	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062600 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 26 21:41:40 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

199.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-199.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
199.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-199.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
178.60.39.61	attackbots	Jun 27 12:34:46 srv-4 sshd\[32508\]: Invalid user chuang from 178.60.39.61 Jun 27 12:34:46 srv-4 sshd\[32508\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.60.39.61 Jun 27 12:34:47 srv-4 sshd\[32508\]: Failed password for invalid user chuang from 178.60.39.61 port 50951 ssh2 ...	2019-06-27 18:11:09
180.141.225.212	attackspambots	Jun 27 02:02:09 xtremcommunity sshd\[23258\]: Invalid user javier from 180.141.225.212 port 29847 Jun 27 02:02:09 xtremcommunity sshd\[23258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.141.225.212 Jun 27 02:02:12 xtremcommunity sshd\[23258\]: Failed password for invalid user javier from 180.141.225.212 port 29847 ssh2 Jun 27 02:04:13 xtremcommunity sshd\[23282\]: Invalid user lv from 180.141.225.212 port 31856 Jun 27 02:04:13 xtremcommunity sshd\[23282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.141.225.212 ...	2019-06-27 17:21:05
142.93.214.20	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2019-06-27 17:58:25
94.191.24.160	attackspambots	Jun 27 10:05:41 rpi sshd\[6577\]: Invalid user zhuang from 94.191.24.160 port 56672 Jun 27 10:05:41 rpi sshd\[6577\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.24.160 Jun 27 10:05:43 rpi sshd\[6577\]: Failed password for invalid user zhuang from 94.191.24.160 port 56672 ssh2	2019-06-27 17:25:20
192.5.5.241	attackspam	Jun 27 04:35:25 box kernel: [720048.165039] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=192.5.5.241 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=61 ID=52356 DF PROTO=TCP SPT=53 DPT=36543 WINDOW=29 RES=0x00 ACK FIN URGP=0 Jun 27 04:35:25 box kernel: [720048.165190] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=192.5.5.241 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=61 ID=10427 DF PROTO=TCP SPT=53 DPT=34733 WINDOW=29 RES=0x00 ACK FIN URGP=0 Jun 27 05:46:55 box kernel: [724338.674561] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=192.5.5.241 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=60 ID=46597 DF PROTO=TCP SPT=53 DPT=36699 WINDOW=29 RES=0x00 ACK FIN URGP=0 Jun 27 05:46:55 box kernel: [724338.674908] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=192.5.5.241 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=60 ID=52966 DF PROTO=TCP SPT=53 DPT=58115 WINDOW=29 RES=0x00 ACK FIN URGP=0 Jun 27 05:46:55 box kernel: [724338.674932] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=192.5.5.241 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=60 ID=2427	2019-06-27 17:28:09
216.87.168.53	attackspam	20 attempts against mh-ssh on pine.magehost.pro	2019-06-27 17:32:27
1.179.137.10	attack	Jun 27 06:31:53 giegler sshd[14428]: Invalid user jack from 1.179.137.10 port 37173	2019-06-27 17:20:42
3.88.19.9	attackbots	Jun 27 04:05:25 localhost sshd\[111806\]: Invalid user qx from 3.88.19.9 port 42072 Jun 27 04:05:25 localhost sshd\[111806\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.88.19.9 Jun 27 04:05:28 localhost sshd\[111806\]: Failed password for invalid user qx from 3.88.19.9 port 42072 ssh2 Jun 27 04:10:57 localhost sshd\[111966\]: Invalid user test from 3.88.19.9 port 51904 Jun 27 04:11:07 localhost sshd\[111966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.88.19.9 Jun 27 04:11:09 localhost sshd\[111966\]: Failed password for invalid user test from 3.88.19.9 port 51904 ssh2 ...	2019-06-27 18:05:51
14.162.169.80	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-26 04:02:43,025 INFO [shellcode_manager] (14.162.169.80) no match, writing hexdump (d903a7994290c423cbadc1ffd2ba0e43 :2311618) - MS17010 (EternalBlue)	2019-06-27 17:32:00
183.54.205.27	attackbotsspam	" "	2019-06-27 17:17:10
105.235.116.254	attackspambots	Jun 27 10:37:03 debian sshd\[31195\]: Invalid user qhsupport from 105.235.116.254 port 48644 Jun 27 10:37:03 debian sshd\[31195\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=105.235.116.254 ...	2019-06-27 17:43:59
198.20.175.131	attackbotsspam	[portscan] Port scan	2019-06-27 17:26:38
221.235.184.80	attack	LGS,WP GET /wp-login.php	2019-06-27 17:18:39
82.221.105.6	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=22869)(06271037)	2019-06-27 17:29:49
116.202.104.208	attackspambots	" "	2019-06-27 17:43:22

最近上报的IP列表

169.229.254.89	111.206.221.163	180.76.56.63	137.226.144.178
137.226.87.18	137.226.242.215	189.41.208.84	180.76.80.162
137.226.227.34	137.226.228.13	180.76.31.182	137.226.217.102
203.66.178.245	180.76.139.76	212.253.76.91	213.94.16.233
213.14.181.247	213.157.112.106	42.194.130.58	59.127.141.219