106.75.13.73 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanghai UCloud Information Technology Company Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Aug 26 21:41:22 Server10 sshd[32409]: Invalid user training from 106.75.13.73 port 41612 Aug 26 21:41:22 Server10 sshd[32409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.13.73 Aug 26 21:41:23 Server10 sshd[32409]: Failed password for invalid user training from 106.75.13.73 port 41612 ssh2	2019-09-02 06:31:42
attack	SSH invalid-user multiple login try	2019-08-24 06:16:06
attackbotsspam	Aug 16 07:21:50 MK-Soft-VM4 sshd\[1257\]: Invalid user postgres from 106.75.13.73 port 43790 Aug 16 07:21:50 MK-Soft-VM4 sshd\[1257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.13.73 Aug 16 07:21:52 MK-Soft-VM4 sshd\[1257\]: Failed password for invalid user postgres from 106.75.13.73 port 43790 ssh2 ...	2019-08-16 19:32:20
attackspambots	2019-08-08T16:32:09.449808abusebot-3.cloudsearch.cf sshd\[19778\]: Invalid user damon from 106.75.13.73 port 41820	2019-08-09 00:37:33
attackspam	Jul 31 01:30:47 master sshd[17751]: Failed password for invalid user almacen from 106.75.13.73 port 39214 ssh2	2019-07-31 13:49:04

Comments on same subnet:

IP	Type	Details	Datetime
106.75.134.86	attack	Malicious IP / Malware	2024-04-16 12:45:08
106.75.132.3	attack	2020-10-10T00:49:10.865600mail.standpoint.com.ua sshd[3703]: Failed password for invalid user admin from 106.75.132.3 port 59184 ssh2 2020-10-10T00:52:28.503689mail.standpoint.com.ua sshd[4265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.132.3 user=root 2020-10-10T00:52:30.893562mail.standpoint.com.ua sshd[4265]: Failed password for root from 106.75.132.3 port 56420 ssh2 2020-10-10T00:55:51.343084mail.standpoint.com.ua sshd[4926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.132.3 user=root 2020-10-10T00:55:53.602300mail.standpoint.com.ua sshd[4926]: Failed password for root from 106.75.132.3 port 53642 ssh2 ...	2020-10-10 07:25:17
106.75.132.3	attackbots	2020-10-09T16:43:37.829414amanda2.illicoweb.com sshd\[12094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.132.3 user=root 2020-10-09T16:43:39.800961amanda2.illicoweb.com sshd\[12094\]: Failed password for root from 106.75.132.3 port 34668 ssh2 2020-10-09T16:45:50.328788amanda2.illicoweb.com sshd\[12235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.132.3 user=root 2020-10-09T16:45:52.225043amanda2.illicoweb.com sshd\[12235\]: Failed password for root from 106.75.132.3 port 58714 ssh2 2020-10-09T16:48:00.184111amanda2.illicoweb.com sshd\[12276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.132.3 user=root ...	2020-10-09 23:46:05
106.75.132.3	attackspam	SSH login attempts.	2020-10-09 15:32:51
106.75.139.131	attack	Oct 7 11:19:41 dhoomketu sshd[3625984]: Failed password for root from 106.75.139.131 port 40808 ssh2 Oct 7 11:21:25 dhoomketu sshd[3626010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.139.131 user=root Oct 7 11:21:26 dhoomketu sshd[3626010]: Failed password for root from 106.75.139.131 port 57422 ssh2 Oct 7 11:23:06 dhoomketu sshd[3626061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.139.131 user=root Oct 7 11:23:08 dhoomketu sshd[3626061]: Failed password for root from 106.75.139.131 port 45804 ssh2 ...	2020-10-07 20:38:21
106.75.139.131	attackbotsspam	Oct 7 09:44:01 dhoomketu sshd[3623264]: Failed password for root from 106.75.139.131 port 53698 ssh2 Oct 7 09:45:35 dhoomketu sshd[3623291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.139.131 user=root Oct 7 09:45:38 dhoomketu sshd[3623291]: Failed password for root from 106.75.139.131 port 42080 ssh2 Oct 7 09:47:19 dhoomketu sshd[3623324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.139.131 user=root Oct 7 09:47:22 dhoomketu sshd[3623324]: Failed password for root from 106.75.139.131 port 58694 ssh2 ...	2020-10-07 12:23:48
106.75.132.3	attack	Sep 28 08:31:36 Tower sshd[1477]: refused connect from 119.28.59.16 (119.28.59.16) Sep 28 17:51:17 Tower sshd[1477]: Connection from 106.75.132.3 port 59792 on 192.168.10.220 port 22 rdomain "" Sep 28 17:51:19 Tower sshd[1477]: Failed password for root from 106.75.132.3 port 59792 ssh2 Sep 28 17:51:19 Tower sshd[1477]: Received disconnect from 106.75.132.3 port 59792:11: Bye Bye [preauth] Sep 28 17:51:19 Tower sshd[1477]: Disconnected from authenticating user root 106.75.132.3 port 59792 [preauth]	2020-09-29 06:06:38
106.75.132.3	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-28T11:36:41Z and 2020-09-28T11:40:01Z	2020-09-28 22:32:33
106.75.132.3	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-09-28 14:37:17
106.75.135.166	attackspambots	Postfix SMTP rejection	2020-09-27 06:21:50
106.75.135.166	attackspambots	Postfix SMTP rejection	2020-09-26 22:44:48
106.75.135.166	attackspambots	Postfix SMTP rejection	2020-09-26 14:30:20
106.75.133.250	attackspam	Invalid user zabbix from 106.75.133.250 port 58955	2020-08-30 16:23:38
106.75.138.38	attackbotsspam	" "	2020-08-28 05:12:33
106.75.133.250	attack	Aug 26 01:07:07 lukav-desktop sshd\[11434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.133.250 user=root Aug 26 01:07:09 lukav-desktop sshd\[11434\]: Failed password for root from 106.75.133.250 port 56879 ssh2 Aug 26 01:11:19 lukav-desktop sshd\[20421\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.133.250 user=root Aug 26 01:11:21 lukav-desktop sshd\[20421\]: Failed password for root from 106.75.133.250 port 60418 ssh2 Aug 26 01:15:33 lukav-desktop sshd\[2980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.133.250 user=root	2020-08-26 07:44:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.13.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39854
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.13.73.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 31 13:48:56 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 73.13.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 73.13.75.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.41.92.123	attack	1576131873 - 12/12/2019 07:24:33 Host: 189.41.92.123/189.41.92.123 Port: 445 TCP Blocked	2019-12-12 19:12:00
27.72.73.139	attackspam	1576131809 - 12/12/2019 07:23:29 Host: 27.72.73.139/27.72.73.139 Port: 445 TCP Blocked	2019-12-12 19:24:19
45.55.42.17	attackspam	Dec 12 11:37:20 vmd26974 sshd[32283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.42.17 Dec 12 11:37:22 vmd26974 sshd[32283]: Failed password for invalid user mythtv from 45.55.42.17 port 36881 ssh2 ...	2019-12-12 19:26:01
190.129.47.148	attackspambots	Dec 12 10:47:37 game-panel sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.129.47.148 Dec 12 10:47:39 game-panel sshd[11852]: Failed password for invalid user admin from 190.129.47.148 port 34890 ssh2 Dec 12 10:55:14 game-panel sshd[12254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.129.47.148	2019-12-12 19:13:29
178.176.105.82	attackspambots	" "	2019-12-12 19:40:09
185.156.73.38	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-12 19:27:25
51.83.69.78	attackspambots	Dec 12 11:36:35 MK-Soft-VM3 sshd[9467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.69.78 Dec 12 11:36:36 MK-Soft-VM3 sshd[9467]: Failed password for invalid user kj from 51.83.69.78 port 34206 ssh2 ...	2019-12-12 19:24:01
59.90.28.141	attack	1576131868 - 12/12/2019 07:24:28 Host: 59.90.28.141/59.90.28.141 Port: 445 TCP Blocked	2019-12-12 19:12:40
149.202.59.85	attackspambots	Dec 12 11:22:48 tux-35-217 sshd\[8851\]: Invalid user dykstra from 149.202.59.85 port 35081 Dec 12 11:22:48 tux-35-217 sshd\[8851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.59.85 Dec 12 11:22:50 tux-35-217 sshd\[8851\]: Failed password for invalid user dykstra from 149.202.59.85 port 35081 ssh2 Dec 12 11:28:00 tux-35-217 sshd\[8888\]: Invalid user dnslog from 149.202.59.85 port 39073 Dec 12 11:28:00 tux-35-217 sshd\[8888\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.59.85 ...	2019-12-12 19:18:53
51.68.220.249	attackbots	Dec 12 05:43:22 ny01 sshd[1444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.220.249 Dec 12 05:43:25 ny01 sshd[1444]: Failed password for invalid user rpc from 51.68.220.249 port 59340 ssh2 Dec 12 05:52:24 ny01 sshd[2466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.220.249	2019-12-12 19:15:47
106.75.17.245	attackbots	Dec 12 12:56:30 server sshd\[27156\]: Invalid user guest from 106.75.17.245 Dec 12 12:56:30 server sshd\[27156\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.17.245 Dec 12 12:56:32 server sshd\[27156\]: Failed password for invalid user guest from 106.75.17.245 port 41452 ssh2 Dec 12 13:04:19 server sshd\[29276\]: Invalid user mz from 106.75.17.245 Dec 12 13:04:19 server sshd\[29276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.17.245 ...	2019-12-12 19:43:46
182.52.137.127	attack	1576131830 - 12/12/2019 07:23:50 Host: 182.52.137.127/182.52.137.127 Port: 445 TCP Blocked	2019-12-12 19:22:48
216.218.206.99	attackbotsspam	1576134302 - 12/12/2019 08:05:02 Host: scan-06h.shadowserver.org/216.218.206.99 Port: 111 UDP Blocked	2019-12-12 19:37:30
183.80.52.98	attack	1576131792 - 12/12/2019 07:23:12 Host: 183.80.52.98/183.80.52.98 Port: 445 TCP Blocked	2019-12-12 19:28:04
176.109.244.75	attackspam	firewall-block, port(s): 23/tcp	2019-12-12 19:38:01

Recently Reported IPs

59.46.142.115	203.129.113.142	186.88.78.61	189.126.219.218
167.71.9.233	125.161.105.40	183.82.3.248	200.54.108.33
163.179.32.100	65.105.149.208	106.12.86.56	218.17.228.216
180.126.130.101	35.233.75.57	14.247.25.12	210.209.68.67
201.243.16.156	154.125.226.105	101.249.16.24	182.61.58.131