42.156.139.16 - IPInfo

基本信息:

城市(city): unknown

省份(region): Zhejiang

国家(country): China

运营商(isp): Zhejiang Taobao Network Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413b9b13abceef2 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:20:39

类型

评论内容

时间

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 5413b9b13abceef2 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:20:39

相同子网IP讨论:

IP	类型	评论内容	时间
42.156.139.7	attackspambots	Automated report (2020-08-24T11:55:46+08:00). Misbehaving bot detected at this address.	2020-08-24 13:08:11
42.156.139.151	attackspambots	ICMP MH Probe, Scan /Distributed -	2020-02-13 22:26:41
42.156.139.60	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5410f168bac7ebd9 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:59:11
42.156.139.46	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5415cf340f7d7704 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:08:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.139.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20773
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.156.139.16.			IN	A

;; AUTHORITY SECTION:
.			262	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 137 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 04:20:36 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

16.139.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-139-16.crawl.sm.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
16.139.156.42.in-addr.arpa	name = shenmaspider-42-156-139-16.crawl.sm.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
91.121.211.59	attackspambots	$f2bV_matches	2019-09-05 00:10:13
139.59.248.89	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-09-05 00:12:00
60.219.185.202	attack	Fail2Ban - FTP Abuse Attempt	2019-09-05 00:09:38
190.227.32.5	attack	23/tcp 23/tcp [2019-09-04]2pkt	2019-09-05 00:03:48
89.234.157.254	attack	Sep 4 23:32:18 itv-usvr-02 sshd[19713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.234.157.254 user=root Sep 4 23:32:20 itv-usvr-02 sshd[19713]: Failed password for root from 89.234.157.254 port 34113 ssh2	2019-09-05 00:34:21
190.232.0.206	attackbots	port scan and connect, tcp 23 (telnet)	2019-09-05 00:14:56
41.143.23.196	attack	port scan and connect, tcp 23 (telnet)	2019-09-05 00:31:24
206.189.202.165	attackbotsspam	Sep 4 18:06:31 mail sshd\[15269\]: Failed password for invalid user oraprod from 206.189.202.165 port 38598 ssh2 Sep 4 18:11:08 mail sshd\[16046\]: Invalid user ew from 206.189.202.165 port 53826 Sep 4 18:11:08 mail sshd\[16046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.202.165 Sep 4 18:11:10 mail sshd\[16046\]: Failed password for invalid user ew from 206.189.202.165 port 53826 ssh2 Sep 4 18:15:27 mail sshd\[16653\]: Invalid user holger from 206.189.202.165 port 40830	2019-09-05 00:22:48
51.75.205.122	attackbotsspam	Sep 4 06:45:13 tdfoods sshd\[8932\]: Invalid user penis from 51.75.205.122 Sep 4 06:45:13 tdfoods sshd\[8932\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.ip-51-75-205.eu Sep 4 06:45:16 tdfoods sshd\[8932\]: Failed password for invalid user penis from 51.75.205.122 port 49486 ssh2 Sep 4 06:49:34 tdfoods sshd\[9332\]: Invalid user jorge from 51.75.205.122 Sep 4 06:49:34 tdfoods sshd\[9332\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.ip-51-75-205.eu	2019-09-05 00:55:12
193.183.187.94	attackbots	Faked Googlebot	2019-09-05 00:50:31
27.254.90.106	attackbotsspam	Sep 4 18:38:14 vps647732 sshd[8841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.90.106 Sep 4 18:38:16 vps647732 sshd[8841]: Failed password for invalid user chipmast from 27.254.90.106 port 57038 ssh2 ...	2019-09-05 00:49:39
103.215.250.8	attack	8080/tcp [2019-09-04]1pkt	2019-09-05 00:47:26
94.176.15.146	attackspam	Unauthorised access (Sep 4) SRC=94.176.15.146 LEN=40 PREC=0x20 TTL=235 ID=61598 DF TCP DPT=23 WINDOW=14600 SYN	2019-09-05 00:42:05
93.191.58.154	attackspam	$f2bV_matches	2019-09-05 00:07:34
106.75.55.123	attack	Sep 4 15:09:31 icinga sshd[14792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 Sep 4 15:09:33 icinga sshd[14792]: Failed password for invalid user mark1 from 106.75.55.123 port 53598 ssh2 ...	2019-09-05 00:52:29

最近上报的IP列表

68.62.46.99	27.224.137.253	207.96.91.26	23.20.88.229
27.224.137.167	73.249.155.135	73.130.17.176	180.136.240.72
101.66.201.168	13.70.4.42	24.113.218.140	176.139.144.71
160.170.145.247	1.202.240.163	39.217.116.96	223.166.74.76
86.2.105.68	167.75.125.159	221.213.75.34	172.57.219.108