42.156.138.71 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.138.94	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:46:31
42.156.138.40	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:29:54

类型

评论内容

时间

42.156.138.94

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541577b5aee6e821 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:46:31

42.156.138.40

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54157a78e8eeeb99 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 02:29:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.138.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46903
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.138.71.			IN	A

;; AUTHORITY SECTION:
.			432	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062600 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 27 01:35:42 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

71.138.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-138-71.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
71.138.156.42.in-addr.arpa	name = shenmaspider-42-156-138-71.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
59.60.13.204	attackspambots		2019-08-03 18:27:36
185.176.27.114	attack	port scan and connect, tcp 8443 (https-alt)	2019-08-03 18:46:44
165.231.13.13	attack	Aug 3 10:52:43 debian sshd\[11477\]: Invalid user x from 165.231.13.13 port 47906 Aug 3 10:52:43 debian sshd\[11477\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.231.13.13 ...	2019-08-03 19:01:40
185.222.211.244	attackspambots	Aug 3 07:09:07 relay postfix/smtpd\[14524\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.244\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ Aug 3 07:09:07 relay postfix/smtpd\[14524\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.244\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ Aug 3 07:09:07 relay postfix/smtpd\[14524\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.244\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ Aug 3 07:09:07 relay postfix/smtpd\[14524\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.244\]: 55 ...	2019-08-03 18:24:42
54.37.164.140	attack	Brute force attempt	2019-08-03 18:25:09
51.255.46.83	attackspam	Aug 3 09:23:30 ks10 sshd[31574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.46.83 Aug 3 09:23:32 ks10 sshd[31574]: Failed password for invalid user tomcat from 51.255.46.83 port 42782 ssh2 ...	2019-08-03 18:45:17
114.108.181.139	attackbots	Aug 3 10:04:07 MK-Soft-VM7 sshd\[28310\]: Invalid user cynthia from 114.108.181.139 port 32797 Aug 3 10:04:07 MK-Soft-VM7 sshd\[28310\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.108.181.139 Aug 3 10:04:09 MK-Soft-VM7 sshd\[28310\]: Failed password for invalid user cynthia from 114.108.181.139 port 32797 ssh2 ...	2019-08-03 18:14:48
68.183.218.185	attackbots	Aug 3 11:42:08 herz-der-gamer sshd[8356]: Invalid user ftpuser from 68.183.218.185 port 58874 Aug 3 11:42:08 herz-der-gamer sshd[8356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.218.185 Aug 3 11:42:08 herz-der-gamer sshd[8356]: Invalid user ftpuser from 68.183.218.185 port 58874 Aug 3 11:42:11 herz-der-gamer sshd[8356]: Failed password for invalid user ftpuser from 68.183.218.185 port 58874 ssh2 ...	2019-08-03 19:07:23
211.95.58.148	attackbots	Aug 3 11:40:39 itv-usvr-02 sshd[11645]: Invalid user test1 from 211.95.58.148 port 8292 Aug 3 11:40:39 itv-usvr-02 sshd[11645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.95.58.148 Aug 3 11:40:39 itv-usvr-02 sshd[11645]: Invalid user test1 from 211.95.58.148 port 8292 Aug 3 11:40:41 itv-usvr-02 sshd[11645]: Failed password for invalid user test1 from 211.95.58.148 port 8292 ssh2 Aug 3 11:44:27 itv-usvr-02 sshd[11664]: Invalid user mo from 211.95.58.148 port 23999	2019-08-03 18:51:43
49.234.44.48	attackbots	Aug 3 10:51:21 microserver sshd[58304]: Invalid user ofsaa from 49.234.44.48 port 45964 Aug 3 10:51:21 microserver sshd[58304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.44.48 Aug 3 10:51:23 microserver sshd[58304]: Failed password for invalid user ofsaa from 49.234.44.48 port 45964 ssh2 Aug 3 10:56:39 microserver sshd[58991]: Invalid user mehaque from 49.234.44.48 port 40248 Aug 3 10:56:39 microserver sshd[58991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.44.48 Aug 3 11:07:25 microserver sshd[60367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.44.48 user=root Aug 3 11:07:28 microserver sshd[60367]: Failed password for root from 49.234.44.48 port 57002 ssh2 Aug 3 11:14:06 microserver sshd[61137]: Invalid user abt from 49.234.44.48 port 51324 Aug 3 11:14:06 microserver sshd[61137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=	2019-08-03 18:56:09
188.2.191.103	attackbotsspam	PHI,WP GET /wp-login.php	2019-08-03 18:10:36
198.108.67.58	attackspambots	firewall-block, port(s): 9215/tcp	2019-08-03 18:55:32
200.209.174.38	attackspam	Automatic report - Banned IP Access	2019-08-03 18:32:53
123.148.245.143	attackbotsspam	[Sat Aug 03 05:44:04.426691 2019] [access_compat:error] [pid 1120] [client 123.148.245.143:61185] AH01797: client denied by server configuration: /var/www/html/luke/wp-login.php ...	2019-08-03 19:05:22
178.239.161.170	attack	NAME : UK-HYDRACOM-20100901 CIDR : 178.239.160.0/20 \| EMAIL - SPAM {Looking for resource vulnerabilities} DDoS Attack United Kingdom - block certain countries :) IP: 178.239.161.170 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-08-03 18:08:38

最近上报的IP列表

169.229.179.252	180.76.127.121	180.76.121.43	180.76.126.77
180.76.130.37	169.229.223.124	169.229.193.142	169.229.221.102
180.76.148.179	58.218.157.244	180.76.83.89	45.131.251.197
180.76.35.239	169.229.168.202	169.229.169.2	180.76.35.131
103.76.248.214	103.133.111.140	103.170.215.146	104.152.58.102