106.75.142.149

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanghai UCloud Information Technology Company Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug 17 08:23:43 mail sshd\[2200\]: Failed password for invalid user pad from 106.75.142.149 port 43168 ssh2 Aug 17 08:43:57 mail sshd\[2739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.142.149 user=root ...	2019-08-17 15:47:33

Type

Details

Datetime

attack

Aug 17 08:23:43 mail sshd\[2200\]: Failed password for invalid user pad from 106.75.142.149 port 43168 ssh2
Aug 17 08:43:57 mail sshd\[2739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.142.149  user=root
...

2019-08-17 15:47:33

Comments on same subnet:

IP	Type	Details	Datetime
106.75.142.8	attack	Brute conection	2024-03-20 21:23:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.142.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33582
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.142.149.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 17 15:46:51 CST 2019
;; MSG SIZE  rcvd: 118

Host info

149.142.75.106.in-addr.arpa domain name pointer gossipnewsnow.info.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
149.142.75.106.in-addr.arpa	name = gossipnewsnow.info.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.176.27.170	attack	02/04/2020-01:52:09.040086 185.176.27.170 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-02-04 09:38:07
190.247.105.153	attackbots	Feb 4 02:24:12 grey postfix/smtpd\[9304\]: NOQUEUE: reject: RCPT from unknown\[190.247.105.153\]: 554 5.7.1 Service unavailable\; Client host \[190.247.105.153\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?190.247.105.153\; from=\ to=\ proto=ESMTP helo=\<153-105-247-190.fibertel.com.ar\> ...	2020-02-04 09:49:06
163.172.198.253	attackbotsspam	Feb 4 01:23:11 debian-2gb-nbg1-2 kernel: \[3035042.454761\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=163.172.198.253 DST=195.201.40.59 LEN=446 TOS=0x00 PREC=0x00 TTL=56 ID=0 DF PROTO=UDP SPT=5148 DPT=5060 LEN=426	2020-02-04 09:39:01
59.56.111.136	attackspam	2020-02-04T01:45:38.819539abusebot.cloudsearch.cf sshd[25637]: Invalid user astabast from 59.56.111.136 port 38528 2020-02-04T01:45:38.832012abusebot.cloudsearch.cf sshd[25637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.56.111.136 2020-02-04T01:45:38.819539abusebot.cloudsearch.cf sshd[25637]: Invalid user astabast from 59.56.111.136 port 38528 2020-02-04T01:45:40.554995abusebot.cloudsearch.cf sshd[25637]: Failed password for invalid user astabast from 59.56.111.136 port 38528 ssh2 2020-02-04T01:45:46.388861abusebot.cloudsearch.cf sshd[25722]: Invalid user nextgen from 59.56.111.136 port 41016 2020-02-04T01:45:46.394808abusebot.cloudsearch.cf sshd[25722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.56.111.136 2020-02-04T01:45:46.388861abusebot.cloudsearch.cf sshd[25722]: Invalid user nextgen from 59.56.111.136 port 41016 2020-02-04T01:45:47.881818abusebot.cloudsearch.cf sshd[25722]: Failed pa ...	2020-02-04 10:09:45
103.101.52.48	attackbotsspam	SSH Bruteforce attempt	2020-02-04 09:54:14
94.25.171.194	attackbots	Feb 4 02:13:38 sshd[32508]: Failed password for invalid user einstein from 94.25.171.194 port 22757 ssh2	2020-02-04 09:46:51
185.234.217.164	attackbots	smtp probe/invalid login attempt	2020-02-04 09:59:48
186.219.133.246	attack	Automatic report - Port Scan Attack	2020-02-04 09:58:16
80.82.65.82	attackspam	Feb 4 02:55:14 debian-2gb-nbg1-2 kernel: \[3040564.649748\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.65.82 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=34943 PROTO=TCP SPT=49955 DPT=19435 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-04 09:57:21
51.79.71.92	attack	Automatic report - Banned IP Access	2020-02-04 09:51:56
180.76.138.132	attack	Feb 4 00:57:48 srv-ubuntu-dev3 sshd[61886]: Invalid user ruckle from 180.76.138.132 Feb 4 00:57:48 srv-ubuntu-dev3 sshd[61886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.138.132 Feb 4 00:57:48 srv-ubuntu-dev3 sshd[61886]: Invalid user ruckle from 180.76.138.132 Feb 4 00:57:50 srv-ubuntu-dev3 sshd[61886]: Failed password for invalid user ruckle from 180.76.138.132 port 46738 ssh2 Feb 4 01:01:34 srv-ubuntu-dev3 sshd[62197]: Invalid user huawei from 180.76.138.132 Feb 4 01:01:34 srv-ubuntu-dev3 sshd[62197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.138.132 Feb 4 01:01:34 srv-ubuntu-dev3 sshd[62197]: Invalid user huawei from 180.76.138.132 Feb 4 01:01:37 srv-ubuntu-dev3 sshd[62197]: Failed password for invalid user huawei from 180.76.138.132 port 45814 ssh2 Feb 4 01:05:30 srv-ubuntu-dev3 sshd[62521]: Invalid user titan from 180.76.138.132 ...	2020-02-04 09:55:51
32.114.249.30	attackbotsspam	Unauthorized connection attempt detected from IP address 32.114.249.30 to port 2220 [J]	2020-02-04 09:41:34
188.226.220.112	attackspam	Unauthorized connection attempt detected from IP address 188.226.220.112 to port 2220 [J]	2020-02-04 09:49:44
92.252.241.202	attackspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-02-04 09:56:55
177.69.221.75	attack	Unauthorized connection attempt detected from IP address 177.69.221.75 to port 2220 [J]	2020-02-04 10:06:51

Recently Reported IPs

185.196.214.21	202.191.58.82	72.221.232.138	193.233.3.218
224.31.12.55	168.32.246.123	103.219.205.81	228.157.190.15
90.110.159.159	116.102.15.183	183.184.49.213	115.41.57.249
190.197.14.147	109.73.176.216	118.25.14.19	211.141.124.24
186.236.102.46	117.247.194.21	45.235.87.126	64.79.101.52