106.75.141.91 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanghai UCloud Information Technology Company Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jan 8 22:03:38 legacy sshd[12340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 Jan 8 22:03:40 legacy sshd[12340]: Failed password for invalid user lie from 106.75.141.91 port 54914 ssh2 Jan 8 22:06:51 legacy sshd[12510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 ...	2020-01-09 08:54:56
attackbots	2019-12-09T08:10:43.848401abusebot-8.cloudsearch.cf sshd\[31113\]: Invalid user vusa from 106.75.141.91 port 55388	2019-12-09 16:35:17
attackbotsspam	2019-12-08T17:18:36.332559abusebot-5.cloudsearch.cf sshd\[23643\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 user=root	2019-12-09 03:54:54
attackspam	Dec 5 07:02:40 root sshd[11172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 Dec 5 07:02:42 root sshd[11172]: Failed password for invalid user jeniece from 106.75.141.91 port 48996 ssh2 Dec 5 07:10:01 root sshd[11447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 ...	2019-12-05 14:18:48
attack	Dec 4 06:58:42 MK-Soft-VM8 sshd[905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 Dec 4 06:58:44 MK-Soft-VM8 sshd[905]: Failed password for invalid user surdiales from 106.75.141.91 port 49724 ssh2 ...	2019-12-04 14:27:21
attackspambots	Dec 2 11:14:46 cp sshd[1200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91	2019-12-02 18:37:05
attack	Oct 29 04:44:52 fr01 sshd[30921]: Invalid user dreambaseftp from 106.75.141.91 Oct 29 04:44:52 fr01 sshd[30921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 Oct 29 04:44:52 fr01 sshd[30921]: Invalid user dreambaseftp from 106.75.141.91 Oct 29 04:44:53 fr01 sshd[30921]: Failed password for invalid user dreambaseftp from 106.75.141.91 port 38298 ssh2 ...	2019-10-29 19:37:53
attackbots	SSH Bruteforce	2019-10-27 18:52:01
attackbots	Oct 25 07:09:32 dedicated sshd[27772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 user=root Oct 25 07:09:34 dedicated sshd[27772]: Failed password for root from 106.75.141.91 port 57846 ssh2	2019-10-25 16:43:52
attackbots	Oct 23 16:29:40 xtremcommunity sshd\[37480\]: Invalid user mnbjhguyt765 from 106.75.141.91 port 39840 Oct 23 16:29:40 xtremcommunity sshd\[37480\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 Oct 23 16:29:42 xtremcommunity sshd\[37480\]: Failed password for invalid user mnbjhguyt765 from 106.75.141.91 port 39840 ssh2 Oct 23 16:33:43 xtremcommunity sshd\[37570\]: Invalid user test1 from 106.75.141.91 port 45738 Oct 23 16:33:43 xtremcommunity sshd\[37570\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 ...	2019-10-24 04:37:58
attackbotsspam	SSH invalid-user multiple login attempts	2019-10-22 03:29:03
attackspambots	Oct 20 04:23:23 eddieflores sshd\[21623\]: Invalid user administrator from 106.75.141.91 Oct 20 04:23:23 eddieflores sshd\[21623\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 Oct 20 04:23:25 eddieflores sshd\[21623\]: Failed password for invalid user administrator from 106.75.141.91 port 37050 ssh2 Oct 20 04:29:24 eddieflores sshd\[22107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 user=root Oct 20 04:29:26 eddieflores sshd\[22107\]: Failed password for root from 106.75.141.91 port 45986 ssh2	2019-10-21 01:17:25
attackbotsspam	2019-09-14T16:33:09.364168suse-nuc sshd[10183]: Invalid user alan from 106.75.141.91 port 40546 ...	2019-10-20 12:27:11
attackbotsspam	$f2bV_matches	2019-10-14 18:24:49
attackspam	Oct 12 21:49:43 wbs sshd\[20344\]: Invalid user Heslo1234% from 106.75.141.91 Oct 12 21:49:43 wbs sshd\[20344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 Oct 12 21:49:45 wbs sshd\[20344\]: Failed password for invalid user Heslo1234% from 106.75.141.91 port 34760 ssh2 Oct 12 21:55:23 wbs sshd\[20834\]: Invalid user Bonjour from 106.75.141.91 Oct 12 21:55:23 wbs sshd\[20834\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91	2019-10-13 16:34:31
attackbotsspam	Automatic report - Banned IP Access	2019-10-13 05:31:44
attackbotsspam	Oct 10 13:14:12 MK-Soft-VM7 sshd[22942]: Failed password for root from 106.75.141.91 port 41722 ssh2 ...	2019-10-10 19:49:53
attackspambots	Oct 4 12:27:03 *** sshd[23550]: User root from 106.75.141.91 not allowed because not listed in AllowUsers	2019-10-04 22:47:37
attack	Sep 22 11:19:40 auw2 sshd\[7159\]: Invalid user system1 from 106.75.141.91 Sep 22 11:19:40 auw2 sshd\[7159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 Sep 22 11:19:42 auw2 sshd\[7159\]: Failed password for invalid user system1 from 106.75.141.91 port 44242 ssh2 Sep 22 11:24:29 auw2 sshd\[7618\]: Invalid user sales1 from 106.75.141.91 Sep 22 11:24:29 auw2 sshd\[7618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91	2019-09-23 05:26:02
attack	Sep 22 07:42:21 auw2 sshd\[15350\]: Invalid user odroid from 106.75.141.91 Sep 22 07:42:21 auw2 sshd\[15350\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 Sep 22 07:42:22 auw2 sshd\[15350\]: Failed password for invalid user odroid from 106.75.141.91 port 42286 ssh2 Sep 22 07:48:08 auw2 sshd\[15941\]: Invalid user NetLinx from 106.75.141.91 Sep 22 07:48:08 auw2 sshd\[15941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91	2019-09-23 01:51:08
attack	Sep 13 05:48:58 aiointranet sshd\[8616\]: Invalid user 1q2w3e from 106.75.141.91 Sep 13 05:48:58 aiointranet sshd\[8616\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91 Sep 13 05:49:00 aiointranet sshd\[8616\]: Failed password for invalid user 1q2w3e from 106.75.141.91 port 48538 ssh2 Sep 13 05:52:58 aiointranet sshd\[8926\]: Invalid user password from 106.75.141.91 Sep 13 05:52:58 aiointranet sshd\[8926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.91	2019-09-14 04:07:30

Comments on same subnet:

IP	Type	Details	Datetime
106.75.141.219	attackspam	Invalid user shop from 106.75.141.219 port 48330	2020-10-14 01:34:36
106.75.141.219	attackbots	2020-10-13T00:08:57.751318morrigan.ad5gb.com sshd[907538]: Invalid user cacti from 106.75.141.219 port 46868	2020-10-13 16:45:00
106.75.141.160	attack	Brute-force attempt banned	2020-09-14 21:05:31
106.75.141.160	attackbots	$f2bV_matches	2020-09-14 12:58:35
106.75.141.160	attack	SSH Brute-Force Attack	2020-09-14 04:59:22
106.75.141.223	attackbotsspam	UDP 106.75.141.223:58914 -> port 30311, len 72	2020-09-10 21:56:08
106.75.141.223	attackspambots	UDP 106.75.141.223:58914 -> port 30311, len 72	2020-09-10 13:36:55
106.75.141.223	attack	UDP 106.75.141.223:58914 -> port 30311, len 72	2020-09-10 04:19:39
106.75.141.160	attackbots	SSH login attempts.	2020-09-08 00:34:29
106.75.141.160	attack	Sep 7 09:21:15 ip106 sshd[27329]: Failed password for root from 106.75.141.160 port 44922 ssh2 Sep 7 09:23:58 ip106 sshd[27423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.160 ...	2020-09-07 16:03:10
106.75.141.160	attack	Sep 6 18:27:07 ns382633 sshd\[3463\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.160 user=root Sep 6 18:27:09 ns382633 sshd\[3463\]: Failed password for root from 106.75.141.160 port 50476 ssh2 Sep 6 18:50:24 ns382633 sshd\[7607\]: Invalid user ggggg from 106.75.141.160 port 40336 Sep 6 18:50:24 ns382633 sshd\[7607\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.160 Sep 6 18:50:26 ns382633 sshd\[7607\]: Failed password for invalid user ggggg from 106.75.141.160 port 40336 ssh2	2020-09-07 08:25:20
106.75.141.223	attackbots	" "	2020-09-06 01:06:12
106.75.141.223	attackbots	" "	2020-09-05 16:37:01
106.75.141.202	attackbots	SSH auth scanning - multiple failed logins	2020-08-28 17:58:24
106.75.141.48	attackspambots	2020-08-26 13:40:37 unexpected disconnection while reading SMTP command from online-mails.com [106.75.141.48]:34000 I=[10.100.18.25]:25 2020-08-26 14:11:16 unexpected disconnection while reading SMTP command from online-mails.com [106.75.141.48]:51844 I=[10.100.18.25]:25 2020-08-26 14:52:10 unexpected disconnection while reading SMTP command from online-mails.com [106.75.141.48]:47470 I=[10.100.18.25]:25 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.75.141.48	2020-08-27 16:20:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.141.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55500
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.141.91.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Sep 11 17:50:13 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 91.141.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 91.141.75.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.101.0.209	attackspambots	Apr 9 00:53:25 debian-2gb-nbg1-2 kernel: \[8645420.309119\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=5.101.0.209 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=63229 PROTO=TCP SPT=44062 DPT=8081 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-09 07:10:25
195.54.166.70	attackspam	04/08/2020-18:57:22.149779 195.54.166.70 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-09 06:59:19
212.64.29.79	attackspambots	2020-04-08T23:48:28.394723vps773228.ovh.net sshd[29980]: Invalid user phoenix from 212.64.29.79 port 55994 2020-04-08T23:48:28.409700vps773228.ovh.net sshd[29980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.29.79 2020-04-08T23:48:28.394723vps773228.ovh.net sshd[29980]: Invalid user phoenix from 212.64.29.79 port 55994 2020-04-08T23:48:29.922680vps773228.ovh.net sshd[29980]: Failed password for invalid user phoenix from 212.64.29.79 port 55994 ssh2 2020-04-08T23:50:18.680091vps773228.ovh.net sshd[30689]: Invalid user openvpn from 212.64.29.79 port 45890 ...	2020-04-09 06:39:45
104.236.47.37	attack	Apr 8 23:50:09 sshd\[27654\]: Invalid user postgres from 104.236.47.37Apr 8 23:50:11 sshd\[27654\]: Failed password for invalid user postgres from 104.236.47.37 port 37706 ssh2 ...	2020-04-09 06:49:56
123.202.216.69	attackspambots	firewall-block, port(s): 5555/tcp	2020-04-09 06:46:49
142.93.34.237	attackbotsspam	firewall-block, port(s): 7309/tcp	2020-04-09 06:44:58
159.89.115.126	attack	Apr 9 05:46:59 webhost01 sshd[7073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.115.126 Apr 9 05:47:01 webhost01 sshd[7073]: Failed password for invalid user video from 159.89.115.126 port 41364 ssh2 ...	2020-04-09 06:49:26
43.243.128.213	attackbots	(sshd) Failed SSH login from 43.243.128.213 (CN/China/-): 5 in the last 3600 secs	2020-04-09 06:52:59
124.105.173.17	attackspam	Apr 9 00:38:56 plex sshd[19195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.105.173.17 user=root Apr 9 00:38:58 plex sshd[19195]: Failed password for root from 124.105.173.17 port 45360 ssh2	2020-04-09 07:02:27
125.70.105.32	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 08-04-2020 22:50:08.	2020-04-09 06:57:42
92.118.37.95	attackspambots	Apr 9 00:15:44 [host] kernel: [3013437.902262] [U Apr 9 00:18:30 [host] kernel: [3013603.180684] [U Apr 9 00:21:23 [host] kernel: [3013776.112348] [U Apr 9 00:22:10 [host] kernel: [3013823.852736] [U Apr 9 00:25:46 [host] kernel: [3014039.040675] [U Apr 9 00:31:48 [host] kernel: [3014401.552227] [U	2020-04-09 06:58:16
5.135.181.53	attackspambots	Apr 9 00:22:56 silence02 sshd[15726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.181.53 Apr 9 00:22:57 silence02 sshd[15726]: Failed password for invalid user user from 5.135.181.53 port 51022 ssh2 Apr 9 00:29:19 silence02 sshd[16184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.181.53	2020-04-09 06:37:23
222.186.169.192	attackspambots	2020-04-08T18:40:53.212335xentho-1 sshd[114150]: Failed password for root from 222.186.169.192 port 21596 ssh2 2020-04-08T18:40:47.165283xentho-1 sshd[114150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.192 user=root 2020-04-08T18:40:49.276167xentho-1 sshd[114150]: Failed password for root from 222.186.169.192 port 21596 ssh2 2020-04-08T18:40:53.212335xentho-1 sshd[114150]: Failed password for root from 222.186.169.192 port 21596 ssh2 2020-04-08T18:40:58.477846xentho-1 sshd[114150]: Failed password for root from 222.186.169.192 port 21596 ssh2 2020-04-08T18:40:47.165283xentho-1 sshd[114150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.192 user=root 2020-04-08T18:40:49.276167xentho-1 sshd[114150]: Failed password for root from 222.186.169.192 port 21596 ssh2 2020-04-08T18:40:53.212335xentho-1 sshd[114150]: Failed password for root from 222.186.169.192 port 21596 ssh2 2020-0 ...	2020-04-09 06:47:42
138.122.202.200	attackspambots	(sshd) Failed SSH login from 138.122.202.200 (CO/Colombia/Departamento del Valle del Cauca/Buenaventura/dsl-emcali-138.122.202.200.emcali.net.co/[AS10299 EMPRESAS MUNICIPALES DE CALI E.I.C.E. E.S.P.]): 1 in the last 3600 secs	2020-04-09 06:43:42
222.186.175.23	attackbots	Apr 9 01:10:04 dcd-gentoo sshd[21263]: User root from 222.186.175.23 not allowed because none of user's groups are listed in AllowGroups Apr 9 01:10:07 dcd-gentoo sshd[21263]: error: PAM: Authentication failure for illegal user root from 222.186.175.23 Apr 9 01:10:04 dcd-gentoo sshd[21263]: User root from 222.186.175.23 not allowed because none of user's groups are listed in AllowGroups Apr 9 01:10:07 dcd-gentoo sshd[21263]: error: PAM: Authentication failure for illegal user root from 222.186.175.23 Apr 9 01:10:04 dcd-gentoo sshd[21263]: User root from 222.186.175.23 not allowed because none of user's groups are listed in AllowGroups Apr 9 01:10:07 dcd-gentoo sshd[21263]: error: PAM: Authentication failure for illegal user root from 222.186.175.23 Apr 9 01:10:07 dcd-gentoo sshd[21263]: Failed keyboard-interactive/pam for invalid user root from 222.186.175.23 port 25084 ssh2 ...	2020-04-09 07:10:56

Recently Reported IPs

1.166.0.83	220.237.151.190	244.36.101.158	236.52.84.86
127.162.222.195	186.194.220.221	91.32.168.69	225.68.24.154
135.129.232.232	132.46.38.203	84.5.92.67	47.38.87.221
142.93.99.56	103.62.142.214	91.43.46.233	14.82.168.76
75.221.25.73	155.179.124.80	95.32.183.22	167.249.98.223