42.156.138.65 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6687
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.65.			IN	A

;; AUTHORITY SECTION:
.			264	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062601 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 27 03:07:11 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

65.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-65.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
65.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-65.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.136.110.25	attackbots	Mar 12 06:06:36 debian-2gb-nbg1-2 kernel: \[6248736.057240\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=36529 PROTO=TCP SPT=40824 DPT=3230 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-12 13:12:51
180.183.126.88	attackspambots	port scan and connect, tcp 22 (ssh)	2020-03-12 13:07:15
222.186.42.7	attackspambots	Mar 12 01:00:35 plusreed sshd[14355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Mar 12 01:00:37 plusreed sshd[14355]: Failed password for root from 222.186.42.7 port 49239 ssh2 ...	2020-03-12 13:03:52
69.94.134.230	attackspam	Mar 12 05:31:36 mail.srvfarm.net postfix/smtpd[1643479]: NOQUEUE: reject: RCPT from unknown[69.94.134.230]: 554 5.7.1 Service unavailable; Client host [69.94.134.230] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?69.94.134.230; from= to= proto=ESMTP helo= Mar 12 05:31:36 mail.srvfarm.net postfix/smtpd[1659045]: NOQUEUE: reject: RCPT from unknown[69.94.134.230]: 554 5.7.1 Service unavailable; Client host [69.94.134.230] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?69.94.134.230; from= to= proto=ESMTP helo= Mar 12 05:31:36 mail.srvfarm.net postfix/smtpd[1659046]: NOQUEUE: reject: RCPT from unknown[69.94.134.230]: 554 5.7.1 Service unavailable; Client host [69.94.134.230] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?69.94.134.230; from=	2020-03-12 13:22:45
123.1.154.227	attackspam	Mar 12 04:55:52 mailserver sshd\[1169\]: Invalid user ts3server from 123.1.154.227 ...	2020-03-12 12:49:11
183.111.126.36	attackbotsspam	Mar 12 04:55:40 * sshd[5266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.111.126.36 Mar 12 04:55:41 * sshd[5266]: Failed password for invalid user odenthal@1234 from 183.111.126.36 port 51412 ssh2	2020-03-12 13:00:09
134.122.64.59	attackspambots	[2020-03-12 00:42:19] NOTICE[1148][C-00010e17] chan_sip.c: Call from '' (134.122.64.59:65023) to extension '201146812111443' rejected because extension not found in context 'public'. [2020-03-12 00:42:19] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-12T00:42:19.936-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="201146812111443",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.122.64.59/65023",ACLName="no_extension_match" [2020-03-12 00:47:16] NOTICE[1148][C-00010e1b] chan_sip.c: Call from '' (134.122.64.59:51018) to extension '101146812111443' rejected because extension not found in context 'public'. [2020-03-12 00:47:16] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-12T00:47:16.942-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="101146812111443",SessionID="0x7fd82c3f03d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/ ...	2020-03-12 13:00:42
179.222.152.37	attackbots	Automatic report - Port Scan Attack	2020-03-12 12:56:18
62.234.97.139	attackbots	(sshd) Failed SSH login from 62.234.97.139 (CN/China/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 12 05:42:56 ubnt-55d23 sshd[3126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.97.139 user=root Mar 12 05:42:58 ubnt-55d23 sshd[3126]: Failed password for root from 62.234.97.139 port 58711 ssh2	2020-03-12 13:01:03
182.16.245.54	attackbots	Mar 12 04:48:30 mail.srvfarm.net postfix/smtpd[1637567]: NOQUEUE: reject: RCPT from unknown[182.16.245.54]: 554 5.7.1 Service unavailable; Client host [182.16.245.54] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?182.16.245.54; from= to= proto=ESMTP helo= Mar 12 04:48:31 mail.srvfarm.net postfix/smtpd[1637567]: NOQUEUE: reject: RCPT from unknown[182.16.245.54]: 554 5.7.1 Service unavailable; Client host [182.16.245.54] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?182.16.245.54; from= to= proto=ESMTP helo= Mar 12 04:48:32 mail.srvfarm.net postfix/smtpd[1637567]: NOQUEUE: reject: RCPT from unknown[182.16.245.54]: 554 5.7.1 Service unavailable; Client host [182.16.245.54] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?182.16.245.54; from=	2020-03-12 13:20:38
77.40.22.181	attackspam	SSH invalid-user multiple login try	2020-03-12 13:06:35
69.94.141.78	attackbotsspam	Mar 12 05:32:49 mail.srvfarm.net postfix/smtpd[1659239]: NOQUEUE: reject: RCPT from unknown[69.94.141.78]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 12 05:32:54 mail.srvfarm.net postfix/smtpd[1659239]: NOQUEUE: reject: RCPT from unknown[69.94.141.78]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 12 05:32:57 mail.srvfarm.net postfix/smtpd[1659242]: NOQUEUE: reject: RCPT from unknown[69.94.141.78]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 12 05:32:57 mail.srvfarm.net postfix/smtpd[1659045]: NOQUEUE: reject: RCPT from unknown[69.94.141.78]: 4	2020-03-12 13:22:18
148.70.159.5	attackbotsspam	Brute-force attempt banned	2020-03-12 13:30:09
165.22.218.179	attack	Mar 12 03:55:19 combo sshd[21332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.218.179 Mar 12 03:55:19 combo sshd[21332]: Invalid user test from 165.22.218.179 port 42640 Mar 12 03:55:22 combo sshd[21332]: Failed password for invalid user test from 165.22.218.179 port 42640 ssh2 ...	2020-03-12 13:15:38
46.165.10.43	attackspambots	Fail2Ban Ban Triggered	2020-03-12 13:09:51

最近上报的IP列表

169.229.108.144	169.229.108.229	169.229.108.167	169.229.109.35
169.229.109.22	169.229.122.162	169.229.122.184	169.229.122.213
169.229.122.220	169.229.123.133	169.229.123.28	169.229.90.9
169.229.123.155	169.229.124.76	169.229.84.167	169.229.84.185
169.229.84.215	169.229.105.227	169.229.106.8	169.229.106.15