42.156.138.229

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.229
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40276
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.229.			IN	A

;; AUTHORITY SECTION:
.			223	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062600 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 26 23:37:17 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

229.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-229.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
229.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-229.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
49.231.35.39	attackspambots	bruteforce detected	2020-06-16 05:15:31
46.185.114.1	attackbots	0,25-02/22 [bc01/m16] PostRequest-Spammer scoring: brussels	2020-06-16 05:13:06
201.122.212.15	attackbotsspam	Lines containing failures of 201.122.212.15 Jun 15 19:37:41 kmh-vmh-003-fsn07 sshd[17303]: Invalid user postgres from 201.122.212.15 port 40714 Jun 15 19:37:41 kmh-vmh-003-fsn07 sshd[17303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.122.212.15 Jun 15 19:37:42 kmh-vmh-003-fsn07 sshd[17303]: Failed password for invalid user postgres from 201.122.212.15 port 40714 ssh2 Jun 15 19:37:43 kmh-vmh-003-fsn07 sshd[17303]: Received disconnect from 201.122.212.15 port 40714:11: Bye Bye [preauth] Jun 15 19:37:43 kmh-vmh-003-fsn07 sshd[17303]: Disconnected from invalid user postgres 201.122.212.15 port 40714 [preauth] Jun 15 19:44:07 kmh-vmh-003-fsn07 sshd[18165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.122.212.15 user=r.r Jun 15 19:44:08 kmh-vmh-003-fsn07 sshd[18165]: Failed password for r.r from 201.122.212.15 port 13315 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.ht	2020-06-16 05:48:59
167.172.115.193	attackbots	Jun 15 22:16:41 gestao sshd[27885]: Failed password for root from 167.172.115.193 port 58674 ssh2 Jun 15 22:20:13 gestao sshd[27984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.115.193 Jun 15 22:20:14 gestao sshd[27984]: Failed password for invalid user aee from 167.172.115.193 port 53640 ssh2 ...	2020-06-16 05:22:34
111.229.240.102	attackspambots	SSH Invalid Login	2020-06-16 05:46:00
219.85.20.151	attackbots	Port probing on unauthorized port 23	2020-06-16 05:13:24
96.11.86.226	attackspam	port scan and connect, tcp 22 (ssh)	2020-06-16 05:36:51
222.186.42.7	attackbots	2020-06-15T21:08:53.760515mail.csmailer.org sshd[17072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root 2020-06-15T21:08:55.865457mail.csmailer.org sshd[17072]: Failed password for root from 222.186.42.7 port 44247 ssh2 2020-06-15T21:08:53.760515mail.csmailer.org sshd[17072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root 2020-06-15T21:08:55.865457mail.csmailer.org sshd[17072]: Failed password for root from 222.186.42.7 port 44247 ssh2 2020-06-15T21:08:57.952500mail.csmailer.org sshd[17072]: Failed password for root from 222.186.42.7 port 44247 ssh2 ...	2020-06-16 05:11:56
160.177.20.162	attack	IP 160.177.20.162 attacked honeypot on port: 1433 at 6/15/2020 9:44:10 PM	2020-06-16 05:12:30
111.11.181.53	attackbots	Jun 15 22:42:16 nas sshd[27512]: Failed password for root from 111.11.181.53 port 14995 ssh2 Jun 15 22:44:24 nas sshd[27583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.11.181.53 Jun 15 22:44:27 nas sshd[27583]: Failed password for invalid user virtual from 111.11.181.53 port 14996 ssh2 ...	2020-06-16 05:13:36
124.128.158.37	attackspambots	reported through recidive - multiple failed attempts(SSH)	2020-06-16 05:47:45
123.207.240.133	attack	SSH Invalid Login	2020-06-16 05:45:22
106.54.229.142	attackbots	Jun 15 22:44:05 buvik sshd[29636]: Invalid user sid from 106.54.229.142 Jun 15 22:44:05 buvik sshd[29636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.229.142 Jun 15 22:44:08 buvik sshd[29636]: Failed password for invalid user sid from 106.54.229.142 port 38286 ssh2 ...	2020-06-16 05:35:12
188.166.185.236	attackbots	2020-06-15T22:42:20.363744struts4.enskede.local sshd\[15920\]: Invalid user ac from 188.166.185.236 port 55045 2020-06-15T22:42:20.371658struts4.enskede.local sshd\[15920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.185.236 2020-06-15T22:42:22.487060struts4.enskede.local sshd\[15920\]: Failed password for invalid user ac from 188.166.185.236 port 55045 ssh2 2020-06-15T22:46:02.100686struts4.enskede.local sshd\[15926\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.185.236 user=root 2020-06-15T22:46:04.931216struts4.enskede.local sshd\[15926\]: Failed password for root from 188.166.185.236 port 46113 ssh2 ...	2020-06-16 05:49:59
107.181.177.142	attack	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-06-16 05:14:29

最近上报的IP列表

169.82.3.25	42.156.139.154	169.229.126.54	169.229.126.67
169.229.126.136	169.229.126.171	169.229.128.181	169.229.128.235
169.229.129.10	169.229.129.18	169.229.56.17	169.229.129.65
169.229.129.86	169.229.91.179	169.229.129.179	169.229.130.51
169.229.130.3	169.229.130.184	180.76.37.43	180.76.38.21