42.156.138.209

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.209
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45872
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.209.			IN	A

;; AUTHORITY SECTION:
.			319	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062600 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 26 22:25:19 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

209.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-209.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
209.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-209.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
104.5.75.130	attack	Honeypot attack, port: 4567, PTR: 104-5-75-130.lightspeed.irvnca.sbcglobal.net.	2020-02-27 19:45:40
200.24.80.6	attackbotsspam	Lines containing failures of 200.24.80.6 Feb 27 03:05:22 cdb sshd[31244]: Invalid user adminixxxr from 200.24.80.6 port 53074 Feb 27 03:05:22 cdb sshd[31244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.24.80.6 Feb 27 03:05:24 cdb sshd[31244]: Failed password for invalid user adminixxxr from 200.24.80.6 port 53074 ssh2 Feb 27 03:05:24 cdb sshd[31244]: Received disconnect from 200.24.80.6 port 53074:11: Bye Bye [preauth] Feb 27 03:05:24 cdb sshd[31244]: Disconnected from invalid user adminixxxr 200.24.80.6 port 53074 [preauth] Feb 27 03:31:55 cdb sshd[2107]: Invalid user thief from 200.24.80.6 port 37136 Feb 27 03:31:55 cdb sshd[2107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.24.80.6 Feb 27 03:31:58 cdb sshd[2107]: Failed password for invalid user thief from 200.24.80.6 port 37136 ssh2 Feb 27 03:31:58 cdb sshd[2107]: Received disconnect from 200.24.80.6 port 37136:11: Bye By........ ------------------------------	2020-02-27 20:13:02
71.6.232.5	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-27 19:40:54
177.104.81.236	attack	Honeypot attack, port: 81, PTR: power177-104-81-236.powerline.com.br.	2020-02-27 19:36:23
188.166.81.240	attackspambots	Chat Spam	2020-02-27 20:09:04
120.36.213.49	attackbotsspam	Feb 26 20:48:39 cumulus sshd[16914]: Invalid user xbmc from 120.36.213.49 port 3989 Feb 26 20:48:39 cumulus sshd[16914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.36.213.49 Feb 26 20:48:41 cumulus sshd[16914]: Failed password for invalid user xbmc from 120.36.213.49 port 3989 ssh2 Feb 26 20:48:41 cumulus sshd[16914]: Received disconnect from 120.36.213.49 port 3989:11: Bye Bye [preauth] Feb 26 20:48:41 cumulus sshd[16914]: Disconnected from 120.36.213.49 port 3989 [preauth] Feb 26 20:55:02 cumulus sshd[17172]: Invalid user sftpuser from 120.36.213.49 port 4340 Feb 26 20:55:02 cumulus sshd[17172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.36.213.49 Feb 26 20:55:04 cumulus sshd[17172]: Failed password for invalid user sftpuser from 120.36.213.49 port 4340 ssh2 Feb 26 20:55:04 cumulus sshd[17172]: Received disconnect from 120.36.213.49 port 4340:11: Bye Bye [preauth] Feb 26 ........ -------------------------------	2020-02-27 20:04:58
5.95.73.175	attack	Honeypot attack, port: 81, PTR: net-5-95-73-175.cust.vodafonedsl.it.	2020-02-27 20:15:52
80.216.150.120	attackspam	unauthorized connection attempt	2020-02-27 20:06:18
201.237.206.43	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-27 19:54:18
193.112.98.81	attack	2020-02-27T11:28:29.797461vps773228.ovh.net sshd[4640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.98.81 2020-02-27T11:28:29.784031vps773228.ovh.net sshd[4640]: Invalid user prueba from 193.112.98.81 port 40036 2020-02-27T11:28:31.828997vps773228.ovh.net sshd[4640]: Failed password for invalid user prueba from 193.112.98.81 port 40036 ssh2 2020-02-27T12:35:58.651499vps773228.ovh.net sshd[5103]: Invalid user arun from 193.112.98.81 port 53020 2020-02-27T12:35:58.663456vps773228.ovh.net sshd[5103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.98.81 2020-02-27T12:35:58.651499vps773228.ovh.net sshd[5103]: Invalid user arun from 193.112.98.81 port 53020 2020-02-27T12:36:00.885955vps773228.ovh.net sshd[5103]: Failed password for invalid user arun from 193.112.98.81 port 53020 ssh2 2020-02-27T12:42:11.227403vps773228.ovh.net sshd[5127]: Invalid user nathan from 193.112.98.81 port 38804 2020 ...	2020-02-27 19:58:50
211.21.191.37	attackbotsspam	Honeypot attack, port: 5555, PTR: 211-21-191-37.HINET-IP.hinet.net.	2020-02-27 19:37:54
210.56.23.100	attack	suspicious action Thu, 27 Feb 2020 08:13:51 -0300	2020-02-27 19:48:26
62.90.49.103	attackspam	Honeypot attack, port: 81, PTR: 62-90-49-103.barak.net.il.	2020-02-27 19:45:03
191.55.143.232	attackspambots	unauthorized connection attempt	2020-02-27 20:00:52
186.0.203.206	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-27 20:02:03

最近上报的IP列表

180.76.140.226	169.229.82.121	169.229.86.193	169.229.117.118
137.226.221.175	137.226.221.162	137.226.221.209	137.226.221.156
169.229.110.30	169.229.125.112	169.229.110.137	169.229.126.1
169.229.83.37	169.229.83.33	169.229.125.139	169.229.83.126
169.229.84.135	169.229.111.61	180.76.93.185	180.76.92.240