42.156.138.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43953
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.2.			IN	A

;; AUTHORITY SECTION:
.			322	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062600 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 26 21:51:55 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

2.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-2.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-2.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
67.219.148.156	attack	Apr 2 05:50:55 exim[30378]: [1\49] 1jJqsX-0007ty-V5 H=impartial.tactatek.com (impartial.vanciity.com) [67.219.148.156] F= rejected after DATA: This message scored 103.9 spam points.	2020-04-02 19:52:36
185.128.27.142	attack	unauthorized connection attempt to webmail on port 443	2020-04-02 19:26:24
129.146.172.170	attack	2020-04-01 UTC: (30x) - admin,bd,demo,hongli,iu,nproc(8x),root(14x),www,yaoyinqi,zengfl	2020-04-02 19:47:20
27.191.209.93	attack	Apr 2 08:06:06 server sshd\[19951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.191.209.93 user=root Apr 2 08:06:09 server sshd\[19951\]: Failed password for root from 27.191.209.93 port 40149 ssh2 Apr 2 08:14:20 server sshd\[21628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.191.209.93 user=root Apr 2 08:14:21 server sshd\[21628\]: Failed password for root from 27.191.209.93 port 60647 ssh2 Apr 2 08:19:47 server sshd\[22866\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.191.209.93 user=root ...	2020-04-02 19:44:28
49.236.203.163	attackbots	Apr 2 10:06:29 localhost sshd[12265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.236.203.163 user=root Apr 2 10:06:31 localhost sshd[12265]: Failed password for root from 49.236.203.163 port 36402 ssh2 Apr 2 10:11:05 localhost sshd[12719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.236.203.163 user=root Apr 2 10:11:07 localhost sshd[12719]: Failed password for root from 49.236.203.163 port 47030 ssh2 Apr 2 10:15:46 localhost sshd[13158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.236.203.163 user=root Apr 2 10:15:48 localhost sshd[13158]: Failed password for root from 49.236.203.163 port 57650 ssh2 ...	2020-04-02 19:50:44
181.22.3.169	attackbotsspam	Brute force attempt	2020-04-02 19:35:23
217.182.68.93	attackbotsspam	Invalid user es from 217.182.68.93 port 39118	2020-04-02 19:45:06
107.172.104.206	attackbotsspam	2020-04-01 UTC: (42x) - chenhaoran,hfbx,jc,nproc(18x),qb,root(18x),wuqianhan,www	2020-04-02 19:28:20
42.118.73.46	attack	unauthorized attempt log-in yahoo mail	2020-04-02 19:29:09
31.41.255.34	attackspam	Apr 2 11:53:16 markkoudstaal sshd[11826]: Failed password for root from 31.41.255.34 port 51680 ssh2 Apr 2 11:57:33 markkoudstaal sshd[12427]: Failed password for root from 31.41.255.34 port 35374 ssh2	2020-04-02 19:23:00
139.170.150.252	attack	$f2bV_matches	2020-04-02 19:30:51
220.190.13.30	attackspambots	CN China 30.13.190.220.broad.wz.zj.dynamic.163data.com.cn Failures: 20 ftpd	2020-04-02 19:15:49
188.234.148.165	attackbotsspam	[portscan] tcp/3389 [MS RDP] [scan/connect: 3 time(s)] *(RWIN=64800)(04021226)	2020-04-02 19:18:07
59.125.7.195	attackspam	TW Taiwan 59-125-7-195.HINET-IP.hinet.net Hits: 11	2020-04-02 19:36:30
91.134.240.130	attackbotsspam	Fail2Ban Ban Triggered (2)	2020-04-02 19:35:54

最近上报的IP列表

180.76.149.19	42.156.139.109	178.137.16.233	137.226.251.183
180.76.107.89	180.76.108.179	180.76.33.48	180.76.34.35
180.76.34.53	180.76.34.65	138.0.46.4	180.76.34.68
180.76.34.117	180.76.34.184	180.76.35.35	180.76.82.13
180.76.69.115	180.76.80.168	180.76.60.165	180.76.78.221