106.11.158.116

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.11.158.90	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413e8898fa576b6 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:43:40

Type

Details

Datetime

106.11.158.90

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 5413e8898fa576b6 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:43:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.11.158.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20417
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.11.158.116.			IN	A

;; AUTHORITY SECTION:
.			423	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022063001 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 01 06:35:18 CST 2022
;; MSG SIZE  rcvd: 107

Host info

116.158.11.106.in-addr.arpa domain name pointer shenmaspider-106-11-158-116.crawl.sm.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
116.158.11.106.in-addr.arpa	name = shenmaspider-106-11-158-116.crawl.sm.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
202.114.113.218	attackbotsspam	Unauthorized connection attempt detected from IP address 202.114.113.218 to port 2220 [J]	2020-01-25 14:57:54
114.67.101.203	attackspam	Jan 25 08:57:32 pkdns2 sshd\[53354\]: Invalid user igor from 114.67.101.203Jan 25 08:57:34 pkdns2 sshd\[53354\]: Failed password for invalid user igor from 114.67.101.203 port 46614 ssh2Jan 25 08:59:55 pkdns2 sshd\[53461\]: Failed password for root from 114.67.101.203 port 35146 ssh2Jan 25 09:02:43 pkdns2 sshd\[53669\]: Invalid user peer from 114.67.101.203Jan 25 09:02:45 pkdns2 sshd\[53669\]: Failed password for invalid user peer from 114.67.101.203 port 52108 ssh2Jan 25 09:04:34 pkdns2 sshd\[53764\]: Failed password for root from 114.67.101.203 port 40506 ssh2 ...	2020-01-25 15:09:52
51.68.127.137	attackspambots	Jan 22 16:51:14 admin sshd[3937]: Invalid user mongkol from 51.68.127.137 port 36684 Jan 22 16:51:14 admin sshd[3937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.127.137 Jan 22 16:51:16 admin sshd[3937]: Failed password for invalid user mongkol from 51.68.127.137 port 36684 ssh2 Jan 22 16:51:16 admin sshd[3937]: Received disconnect from 51.68.127.137 port 36684:11: Bye Bye [preauth] Jan 22 16:51:16 admin sshd[3937]: Disconnected from 51.68.127.137 port 36684 [preauth] Jan 22 17:10:52 admin sshd[5100]: Invalid user dylan from 51.68.127.137 port 36616 Jan 22 17:10:52 admin sshd[5100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.127.137 Jan 22 17:10:53 admin sshd[5100]: Failed password for invalid user dylan from 51.68.127.137 port 36616 ssh2 Jan 22 17:10:53 admin sshd[5100]: Received disconnect from 51.68.127.137 port 36616:11: Bye Bye [preauth] Jan 22 17:10:53 admin sshd[........ -------------------------------	2020-01-25 15:00:01
171.220.243.179	attackspambots	Jan 25 07:17:59 lnxded64 sshd[22491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.220.243.179	2020-01-25 14:48:16
222.186.175.169	attack	Jan 25 08:06:36 dcd-gentoo sshd[18256]: User root from 222.186.175.169 not allowed because none of user's groups are listed in AllowGroups Jan 25 08:06:38 dcd-gentoo sshd[18256]: error: PAM: Authentication failure for illegal user root from 222.186.175.169 Jan 25 08:06:36 dcd-gentoo sshd[18256]: User root from 222.186.175.169 not allowed because none of user's groups are listed in AllowGroups Jan 25 08:06:38 dcd-gentoo sshd[18256]: error: PAM: Authentication failure for illegal user root from 222.186.175.169 Jan 25 08:06:36 dcd-gentoo sshd[18256]: User root from 222.186.175.169 not allowed because none of user's groups are listed in AllowGroups Jan 25 08:06:38 dcd-gentoo sshd[18256]: error: PAM: Authentication failure for illegal user root from 222.186.175.169 Jan 25 08:06:38 dcd-gentoo sshd[18256]: Failed keyboard-interactive/pam for invalid user root from 222.186.175.169 port 62304 ssh2 ...	2020-01-25 15:11:14
62.234.91.113	attack	Invalid user qq from 62.234.91.113 port 41350	2020-01-25 15:25:58
60.13.172.9	attackspam	Unauthorized connection attempt detected from IP address 60.13.172.9 to port 22 [T]	2020-01-25 14:55:32
222.186.175.23	attackbots	Jan 25 08:12:08 MK-Soft-VM6 sshd[31655]: Failed password for root from 222.186.175.23 port 64035 ssh2 Jan 25 08:12:12 MK-Soft-VM6 sshd[31655]: Failed password for root from 222.186.175.23 port 64035 ssh2 ...	2020-01-25 15:17:18
159.203.179.80	attackbots	Unauthorized connection attempt detected from IP address 159.203.179.80 to port 2220 [J]	2020-01-25 15:13:46
160.238.74.201	attackspambots	Unauthorized connection attempt detected from IP address 160.238.74.201 to port 1433 [J]	2020-01-25 15:14:17
184.57.83.177	attackspam	Telnetd brute force attack detected by fail2ban	2020-01-25 14:47:53
24.154.188.15	attackspam	Unauthorized connection attempt detected from IP address 24.154.188.15 to port 2220 [J]	2020-01-25 15:12:52
51.15.46.184	attackspambots	2020-01-25T04:48:12.326882abusebot-3.cloudsearch.cf sshd[20627]: Invalid user minecraft from 51.15.46.184 port 38520 2020-01-25T04:48:12.333131abusebot-3.cloudsearch.cf sshd[20627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.46.184 2020-01-25T04:48:12.326882abusebot-3.cloudsearch.cf sshd[20627]: Invalid user minecraft from 51.15.46.184 port 38520 2020-01-25T04:48:14.365872abusebot-3.cloudsearch.cf sshd[20627]: Failed password for invalid user minecraft from 51.15.46.184 port 38520 ssh2 2020-01-25T04:50:44.204300abusebot-3.cloudsearch.cf sshd[20801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.46.184 user=root 2020-01-25T04:50:46.437959abusebot-3.cloudsearch.cf sshd[20801]: Failed password for root from 51.15.46.184 port 40100 ssh2 2020-01-25T04:54:40.259413abusebot-3.cloudsearch.cf sshd[21127]: Invalid user front from 51.15.46.184 port 41686 ...	2020-01-25 15:01:00
134.209.81.92	attackbots	Jan 25 05:54:33 lnxded64 sshd[675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.81.92	2020-01-25 15:10:13
185.173.35.5	attackbots	Unauthorized connection attempt detected from IP address 185.173.35.5 to port 22 [J]	2020-01-25 15:27:24

Recently Reported IPs

42.119.51.110	169.229.213.211	114.33.126.55	180.76.98.211
106.11.157.40	14.7.166.135	36.57.88.141	27.156.193.97
169.229.241.30	108.187.44.97	209.127.115.107	80.82.65.231
180.76.80.149	180.76.83.178	122.117.100.235	129.126.244.135
124.132.110.26	169.229.151.15	139.162.102.209	144.22.242.147