106.11.159.171

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.11.159.109	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5436d4ba9e4fe819 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 03:11:43
106.11.159.82	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 5415d7cce96f990b \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:07:14
106.11.159.142	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410032158f8e7c9 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: YisouSpider \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:58:39
106.11.159.49	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541680b9ee8feef2 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 00:43:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.11.159.171
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64198
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.11.159.171.			IN	A

;; AUTHORITY SECTION:
.			339	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062801 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 29 02:32:43 CST 2022
;; MSG SIZE  rcvd: 107

Host info

171.159.11.106.in-addr.arpa domain name pointer shenmaspider-106-11-159-171.crawl.sm.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
171.159.11.106.in-addr.arpa	name = shenmaspider-106-11-159-171.crawl.sm.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.34.246.73	attackbots	May 7 14:45:07 host sshd\[5809\]: Invalid user ftp from 212.34.246.73 port 46188	2020-05-07 22:40:51
207.46.13.198	attackspambots	Automatic report - Banned IP Access	2020-05-07 22:09:56
222.186.30.57	attackbotsspam	May 7 14:26:54 scw-6657dc sshd[4526]: Failed password for root from 222.186.30.57 port 54896 ssh2 May 7 14:26:54 scw-6657dc sshd[4526]: Failed password for root from 222.186.30.57 port 54896 ssh2 May 7 14:26:57 scw-6657dc sshd[4526]: Failed password for root from 222.186.30.57 port 54896 ssh2 ...	2020-05-07 22:28:07
27.246.107.162	attack	Unauthorized connection attempt from IP address 27.246.107.162 on Port 445(SMB)	2020-05-07 22:23:32
211.116.234.149	attackspam	(sshd) Failed SSH login from 211.116.234.149 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 7 13:40:50 amsweb01 sshd[20353]: Invalid user hadoop from 211.116.234.149 port 36322 May 7 13:40:52 amsweb01 sshd[20353]: Failed password for invalid user hadoop from 211.116.234.149 port 36322 ssh2 May 7 13:56:14 amsweb01 sshd[22225]: Invalid user odin from 211.116.234.149 port 57940 May 7 13:56:16 amsweb01 sshd[22225]: Failed password for invalid user odin from 211.116.234.149 port 57940 ssh2 May 7 14:00:47 amsweb01 sshd[22660]: Invalid user hadoop from 211.116.234.149 port 38954	2020-05-07 22:24:20
35.173.249.72	attackbotsspam	tcp 27017	2020-05-07 22:17:03
95.106.202.166	attack	Unauthorized connection attempt from IP address 95.106.202.166 on Port 445(SMB)	2020-05-07 22:32:19
195.204.16.82	attackspam	May 7 14:14:48 vmd26974 sshd[23796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.204.16.82 May 7 14:14:50 vmd26974 sshd[23796]: Failed password for invalid user chenj from 195.204.16.82 port 36742 ssh2 ...	2020-05-07 22:14:27
5.182.211.76	attackspam	ZyXEL/Billion/TrueOnline Routers Remote Code Execution Vulnerability	2020-05-07 22:38:58
85.239.35.161	attackspambots	Blocked by fail2ban.	2020-05-07 22:22:38
180.76.183.59	attackbotsspam	(sshd) Failed SSH login from 180.76.183.59 (CN/China/-): 5 in the last 3600 secs	2020-05-07 22:26:48
122.51.136.99	attackspam	May 7 13:57:55 piServer sshd[3973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.136.99 May 7 13:57:57 piServer sshd[3973]: Failed password for invalid user hg from 122.51.136.99 port 54470 ssh2 May 7 14:00:35 piServer sshd[4160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.136.99 ...	2020-05-07 22:39:14
46.27.140.1	attackspambots	May 7 15:43:01 vps639187 sshd\[22578\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.27.140.1 user=root May 7 15:43:02 vps639187 sshd\[22578\]: Failed password for root from 46.27.140.1 port 40174 ssh2 May 7 15:47:10 vps639187 sshd\[22702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.27.140.1 user=root ...	2020-05-07 22:23:14
80.211.116.102	attack	May 7 15:59:11 nextcloud sshd\[14999\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.116.102 user=root May 7 15:59:13 nextcloud sshd\[14999\]: Failed password for root from 80.211.116.102 port 47660 ssh2 May 7 16:07:56 nextcloud sshd\[26650\]: Invalid user go from 80.211.116.102	2020-05-07 22:30:43
97.83.129.159	attackbots	WEB_SERVER 403 Forbidden	2020-05-07 22:25:56

Recently Reported IPs

137.226.224.207	106.11.153.232	180.76.29.5	169.229.158.97
180.76.181.74	180.76.93.77	202.218.138.15	169.229.163.172
220.181.124.199	180.76.138.160	137.226.205.81	137.226.226.176
137.226.226.134	137.226.225.50	181.78.3.131	180.76.69.191
47.199.244.231	180.76.45.213	180.76.26.113	181.32.93.66