42.156.139.165

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.156.139.7	attackspambots	Automated report (2020-08-24T11:55:46+08:00). Misbehaving bot detected at this address.	2020-08-24 13:08:11
42.156.139.151	attackspambots	ICMP MH Probe, Scan /Distributed -	2020-02-13 22:26:41
42.156.139.60	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5410f168bac7ebd9 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:59:11
42.156.139.16	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413b9b13abceef2 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:20:39
42.156.139.46	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5415cf340f7d7704 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:08:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.156.139.165
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14022
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.156.139.165.			IN	A

;; AUTHORITY SECTION:
.			204	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062601 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 27 07:48:26 CST 2022
;; MSG SIZE  rcvd: 107

Host info

165.139.156.42.in-addr.arpa domain name pointer shenmaspider-42-156-139-165.crawl.sm.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
165.139.156.42.in-addr.arpa	name = shenmaspider-42-156-139-165.crawl.sm.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.22.78.222	attackbots	Sep 28 11:51:09 tdfoods sshd\[20248\]: Invalid user eeee from 165.22.78.222 Sep 28 11:51:09 tdfoods sshd\[20248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.78.222 Sep 28 11:51:11 tdfoods sshd\[20248\]: Failed password for invalid user eeee from 165.22.78.222 port 33530 ssh2 Sep 28 11:55:10 tdfoods sshd\[20578\]: Invalid user tayab from 165.22.78.222 Sep 28 11:55:10 tdfoods sshd\[20578\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.78.222	2019-09-29 06:08:06
93.95.56.130	attackspam	Sep 28 11:34:44 hiderm sshd\[21418\]: Invalid user noc from 93.95.56.130 Sep 28 11:34:44 hiderm sshd\[21418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.56.130 Sep 28 11:34:46 hiderm sshd\[21418\]: Failed password for invalid user noc from 93.95.56.130 port 51307 ssh2 Sep 28 11:39:58 hiderm sshd\[21944\]: Invalid user minecraft from 93.95.56.130 Sep 28 11:39:58 hiderm sshd\[21944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.56.130	2019-09-29 05:47:10
94.23.62.187	attackspam	Sep 28 18:00:33 xtremcommunity sshd\[12460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.62.187 user=root Sep 28 18:00:35 xtremcommunity sshd\[12460\]: Failed password for root from 94.23.62.187 port 51024 ssh2 Sep 28 18:05:11 xtremcommunity sshd\[12603\]: Invalid user wwwww from 94.23.62.187 port 41146 Sep 28 18:05:11 xtremcommunity sshd\[12603\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.62.187 Sep 28 18:05:13 xtremcommunity sshd\[12603\]: Failed password for invalid user wwwww from 94.23.62.187 port 41146 ssh2 ...	2019-09-29 06:12:27
182.61.37.35	attack	Sep 28 17:31:21 debian sshd\[21798\]: Invalid user openelec from 182.61.37.35 port 45827 Sep 28 17:31:21 debian sshd\[21798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.37.35 Sep 28 17:31:23 debian sshd\[21798\]: Failed password for invalid user openelec from 182.61.37.35 port 45827 ssh2 ...	2019-09-29 05:41:42
106.75.74.6	attack	Sep 28 23:32:39 ns37 sshd[20814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.74.6	2019-09-29 06:01:42
209.97.128.177	attackbots	Sep 28 17:21:45 ny01 sshd[22338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.128.177 Sep 28 17:21:46 ny01 sshd[22338]: Failed password for invalid user gitlab_ci from 209.97.128.177 port 53098 ssh2 Sep 28 17:25:25 ny01 sshd[23446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.128.177	2019-09-29 05:49:05
222.186.31.145	attackspam	Sep 28 23:47:09 MK-Soft-Root1 sshd[32122]: Failed password for root from 222.186.31.145 port 63244 ssh2 Sep 28 23:47:12 MK-Soft-Root1 sshd[32122]: Failed password for root from 222.186.31.145 port 63244 ssh2 ...	2019-09-29 05:48:42
154.8.164.214	attackbots	Sep 28 22:52:28 cp sshd[31765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.164.214	2019-09-29 06:01:18
151.80.61.103	attack	Sep 29 00:03:42 mail sshd\[24945\]: Failed password for invalid user hu from 151.80.61.103 port 39528 ssh2 Sep 29 00:07:03 mail sshd\[25299\]: Invalid user kishori from 151.80.61.103 port 51646 Sep 29 00:07:03 mail sshd\[25299\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.61.103 Sep 29 00:07:05 mail sshd\[25299\]: Failed password for invalid user kishori from 151.80.61.103 port 51646 ssh2 Sep 29 00:10:33 mail sshd\[25690\]: Invalid user cancri from 151.80.61.103 port 35534 Sep 29 00:10:33 mail sshd\[25690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.61.103	2019-09-29 06:16:21
83.174.223.160	attackspambots	2019-09-28T17:24:21.0563241495-001 sshd\[5691\]: Invalid user wb from 83.174.223.160 port 7712 2019-09-28T17:24:21.0647131495-001 sshd\[5691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=h83-174-223-160.static.bashtel.ru 2019-09-28T17:24:22.7307681495-001 sshd\[5691\]: Failed password for invalid user wb from 83.174.223.160 port 7712 ssh2 2019-09-28T17:28:22.8330691495-001 sshd\[6035\]: Invalid user stock from 83.174.223.160 port 48097 2019-09-28T17:28:22.8400551495-001 sshd\[6035\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=h83-174-223-160.static.bashtel.ru 2019-09-28T17:28:24.5914971495-001 sshd\[6035\]: Failed password for invalid user stock from 83.174.223.160 port 48097 ssh2 ...	2019-09-29 05:42:04
95.170.205.151	attack	Sep 28 11:04:29 aiointranet sshd\[28725\]: Invalid user ubuntu from 95.170.205.151 Sep 28 11:04:29 aiointranet sshd\[28725\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.170.205.151 Sep 28 11:04:31 aiointranet sshd\[28725\]: Failed password for invalid user ubuntu from 95.170.205.151 port 48931 ssh2 Sep 28 11:08:33 aiointranet sshd\[29120\]: Invalid user spam from 95.170.205.151 Sep 28 11:08:33 aiointranet sshd\[29120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.170.205.151	2019-09-29 05:56:54
222.186.15.204	attackspam	Sep 28 23:48:48 dcd-gentoo sshd[32027]: User root from 222.186.15.204 not allowed because none of user's groups are listed in AllowGroups Sep 28 23:48:51 dcd-gentoo sshd[32027]: error: PAM: Authentication failure for illegal user root from 222.186.15.204 Sep 28 23:48:48 dcd-gentoo sshd[32027]: User root from 222.186.15.204 not allowed because none of user's groups are listed in AllowGroups Sep 28 23:48:51 dcd-gentoo sshd[32027]: error: PAM: Authentication failure for illegal user root from 222.186.15.204 Sep 28 23:48:48 dcd-gentoo sshd[32027]: User root from 222.186.15.204 not allowed because none of user's groups are listed in AllowGroups Sep 28 23:48:51 dcd-gentoo sshd[32027]: error: PAM: Authentication failure for illegal user root from 222.186.15.204 Sep 28 23:48:51 dcd-gentoo sshd[32027]: Failed keyboard-interactive/pam for invalid user root from 222.186.15.204 port 43871 ssh2 ...	2019-09-29 05:51:12
219.143.186.82	attack	2019-09-28T22:06:23.096930abusebot-4.cloudsearch.cf sshd\[27048\]: Invalid user mysql from 219.143.186.82 port 38924	2019-09-29 06:07:35
128.199.125.95	attackspam	Sep 28 22:52:51 icinga sshd[8402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.125.95 Sep 28 22:52:53 icinga sshd[8402]: Failed password for invalid user judith from 128.199.125.95 port 46025 ssh2 ...	2019-09-29 05:44:34
146.185.180.19	attack	Sep 29 00:03:51 mail sshd\[24947\]: Invalid user alor from 146.185.180.19 port 36670 Sep 29 00:03:51 mail sshd\[24947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.185.180.19 Sep 29 00:03:52 mail sshd\[24947\]: Failed password for invalid user alor from 146.185.180.19 port 36670 ssh2 Sep 29 00:09:49 mail sshd\[25585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.185.180.19 user=nagios Sep 29 00:09:52 mail sshd\[25585\]: Failed password for nagios from 146.185.180.19 port 57203 ssh2	2019-09-29 06:16:55

Recently Reported IPs

169.229.186.98	180.76.150.6	169.229.185.115	92.47.119.78
84.198.245.11	109.195.162.136	110.54.28.45	254.170.156.49
137.226.231.173	137.226.224.247	169.229.60.225	169.229.83.75
169.229.83.195	169.229.82.70	169.229.85.248	137.226.121.223
137.226.122.0	137.226.162.189	137.226.163.152	120.48.65.56