106.11.158.71 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.11.158.90	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413e8898fa576b6 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:43:40

Type

Details

Datetime

106.11.158.90

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 5413e8898fa576b6 | WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:43:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.11.158.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51547
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.11.158.71.			IN	A

;; AUTHORITY SECTION:
.			153	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 18:14:09 CST 2022
;; MSG SIZE  rcvd: 106

Host info

71.158.11.106.in-addr.arpa domain name pointer shenmaspider-106-11-158-71.crawl.sm.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
71.158.11.106.in-addr.arpa	name = shenmaspider-106-11-158-71.crawl.sm.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.70.188.23	attack	DATE:2020-05-31 10:48:30, IP:95.70.188.23, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-05-31 19:35:48
14.98.22.102	attackbotsspam	Failed password for invalid user memcached from 14.98.22.102 port 57072 ssh2	2020-05-31 19:40:38
218.28.238.162	attack	May 31 11:30:16 cloud sshd[14540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.28.238.162 May 31 11:30:18 cloud sshd[14540]: Failed password for invalid user st from 218.28.238.162 port 26051 ssh2	2020-05-31 19:30:17
212.166.68.146	attackspam	May 31 07:07:53 ny01 sshd[24100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.166.68.146 May 31 07:07:56 ny01 sshd[24100]: Failed password for invalid user st from 212.166.68.146 port 38894 ssh2 May 31 07:11:56 ny01 sshd[24557]: Failed password for root from 212.166.68.146 port 44844 ssh2	2020-05-31 19:27:57
198.108.66.104	attackspam	TCP (SYN) 198.108.66.104:55929 -> port 6379, len 44	2020-05-31 19:17:28
162.12.210.122	attack	Attempted connection to port 445.	2020-05-31 19:55:15
122.117.0.227	attackspam	TCP (SYN) 122.117.0.227:31508 -> port 23, len 44	2020-05-31 19:24:33
218.104.128.54	attackbots	May 31 13:06:37 vps333114 sshd[8393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.104.128.54 user=root May 31 13:06:39 vps333114 sshd[8393]: Failed password for root from 218.104.128.54 port 58591 ssh2 ...	2020-05-31 19:37:57
138.197.162.28	attack	Invalid user jackie from 138.197.162.28 port 37754	2020-05-31 19:18:09
152.92.88.151	attackbotsspam	1590896801 - 05/31/2020 05:46:41 Host: 152.92.88.151/152.92.88.151 Port: 445 TCP Blocked	2020-05-31 19:16:53
190.64.64.77	attackspambots	Automatic report - Banned IP Access	2020-05-31 19:56:36
128.163.8.100	attack	Attempts against non-existent wp-login	2020-05-31 19:17:13
94.232.63.128	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-31 19:20:45
45.55.180.7	attackspam	SSH Brute-Force reported by Fail2Ban	2020-05-31 19:53:53
139.186.4.114	attackbots	(sshd) Failed SSH login from 139.186.4.114 (CN/China/-): 5 in the last 3600 secs	2020-05-31 19:22:32

Recently Reported IPs

78.39.36.164	180.124.2.105	222.88.201.225	185.83.185.149
185.112.148.93	92.209.75.191	61.186.21.56	79.47.249.74
182.217.50.173	61.53.42.244	8.210.153.106	181.164.42.123
177.47.183.33	193.202.85.240	79.110.17.75	113.219.63.141
91.242.228.92	201.249.161.51	223.167.29.85	177.198.34.54