106.75.168.107

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanghai UCloud Information Technology Company Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	SSH Brute Force	2020-04-29 12:42:14
attackspambots	Mar 6 23:00:46 Ubuntu-1404-trusty-64-minimal sshd\[317\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.168.107 user=root Mar 6 23:00:48 Ubuntu-1404-trusty-64-minimal sshd\[317\]: Failed password for root from 106.75.168.107 port 58034 ssh2 Mar 6 23:12:09 Ubuntu-1404-trusty-64-minimal sshd\[8301\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.168.107 user=root Mar 6 23:12:11 Ubuntu-1404-trusty-64-minimal sshd\[8301\]: Failed password for root from 106.75.168.107 port 45764 ssh2 Mar 6 23:14:21 Ubuntu-1404-trusty-64-minimal sshd\[9780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.168.107 user=root	2020-03-07 08:20:11
attack	Mar 4 08:06:51 jane sshd[26563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.168.107 Mar 4 08:06:53 jane sshd[26563]: Failed password for invalid user zhangdy from 106.75.168.107 port 34776 ssh2 ...	2020-03-04 15:44:14
attack	Feb 20 17:19:43 plusreed sshd[19430]: Invalid user gitlab-prometheus from 106.75.168.107 ...	2020-02-21 06:29:59
attack	Feb 20 05:28:53 hpm sshd\[2420\]: Invalid user cpanelrrdtool from 106.75.168.107 Feb 20 05:28:53 hpm sshd\[2420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.168.107 Feb 20 05:28:55 hpm sshd\[2420\]: Failed password for invalid user cpanelrrdtool from 106.75.168.107 port 41258 ssh2 Feb 20 05:34:08 hpm sshd\[2929\]: Invalid user avatar from 106.75.168.107 Feb 20 05:34:08 hpm sshd\[2929\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.168.107	2020-02-20 23:59:18
attack	Unauthorized connection attempt detected from IP address 106.75.168.107 to port 2220 [J]	2020-01-23 19:56:06
attackbots	Dec 18 15:44:57 game-panel sshd[8845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.168.107 Dec 18 15:45:00 game-panel sshd[8845]: Failed password for invalid user carper from 106.75.168.107 port 53552 ssh2 Dec 18 15:49:50 game-panel sshd[9047]: Failed password for root from 106.75.168.107 port 34432 ssh2	2019-12-19 00:55:09
attackbots	2019-12-05T08:16:23.181391abusebot-4.cloudsearch.cf sshd\[12282\]: Invalid user ARTEFACT from 106.75.168.107 port 52478	2019-12-05 16:22:50
attack	Dec 3 23:32:09 herz-der-gamer sshd[3133]: Invalid user aragorn from 106.75.168.107 port 33814 Dec 3 23:32:09 herz-der-gamer sshd[3133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.168.107 Dec 3 23:32:09 herz-der-gamer sshd[3133]: Invalid user aragorn from 106.75.168.107 port 33814 Dec 3 23:32:10 herz-der-gamer sshd[3133]: Failed password for invalid user aragorn from 106.75.168.107 port 33814 ssh2 ...	2019-12-04 06:39:47
attackbotsspam	Nov 30 21:05:37 areeb-Workstation sshd[11637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.168.107 Nov 30 21:05:39 areeb-Workstation sshd[11637]: Failed password for invalid user jjbly from 106.75.168.107 port 57794 ssh2 ...	2019-12-01 06:26:32
attackbotsspam	$f2bV_matches	2019-11-15 17:32:13
attack	[Aegis] @ 2019-11-05 22:44:08 0000 -> Multiple authentication failures.	2019-11-06 08:03:53
attackbots	Sep 4 09:47:56 markkoudstaal sshd[687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.168.107 Sep 4 09:47:58 markkoudstaal sshd[687]: Failed password for invalid user tmp from 106.75.168.107 port 32940 ssh2 Sep 4 09:53:11 markkoudstaal sshd[1265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.168.107	2019-09-04 16:22:29

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.168.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21026
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.168.107.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090400 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Sep 04 16:22:14 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 107.168.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 107.168.75.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.244.25.239	attackbotsspam	Jul 23 13:59:57 datentool sshd[20662]: Invalid user ek from 186.244.25.239 Jul 23 13:59:57 datentool sshd[20662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.244.25.239 Jul 23 13:59:59 datentool sshd[20662]: Failed password for invalid user ek from 186.244.25.239 port 4385 ssh2 Jul 23 14:03:19 datentool sshd[20690]: Invalid user angel1 from 186.244.25.239 Jul 23 14:03:19 datentool sshd[20690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.244.25.239 Jul 23 14:03:21 datentool sshd[20690]: Failed password for invalid user angel1 from 186.244.25.239 port 62785 ssh2 Jul 23 14:06:35 datentool sshd[20730]: Invalid user clee from 186.244.25.239 Jul 23 14:06:35 datentool sshd[20730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.244.25.239 Jul 23 14:06:37 datentool sshd[20730]: Failed password for invalid user clee from 186.244.25.239 po........ -------------------------------	2020-07-23 20:11:21
116.1.149.196	attackbotsspam	Jul 23 14:04:09 ns3164893 sshd[7333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Jul 23 14:04:12 ns3164893 sshd[7333]: Failed password for invalid user wingate from 116.1.149.196 port 40570 ssh2 ...	2020-07-23 20:12:30
103.72.144.228	attack	Invalid user student from 103.72.144.228 port 44724	2020-07-23 20:06:14
106.12.47.27	attack	Jul 23 04:53:46 dignus sshd[10138]: Failed password for invalid user snow from 106.12.47.27 port 38500 ssh2 Jul 23 04:58:49 dignus sshd[10846]: Invalid user dcc from 106.12.47.27 port 41130 Jul 23 04:58:49 dignus sshd[10846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.27 Jul 23 04:58:51 dignus sshd[10846]: Failed password for invalid user dcc from 106.12.47.27 port 41130 ssh2 Jul 23 05:04:02 dignus sshd[11488]: Invalid user conti from 106.12.47.27 port 43780 ...	2020-07-23 20:23:24
104.35.131.153	attack	Jul 23 15:04:07 server2 sshd\[16431\]: Invalid user admin from 104.35.131.153 Jul 23 15:04:09 server2 sshd\[16433\]: Invalid user admin from 104.35.131.153 Jul 23 15:04:10 server2 sshd\[16435\]: Invalid user admin from 104.35.131.153 Jul 23 15:04:12 server2 sshd\[16439\]: Invalid user admin from 104.35.131.153 Jul 23 15:04:14 server2 sshd\[16441\]: Invalid user admin from 104.35.131.153 Jul 23 15:04:16 server2 sshd\[16445\]: Invalid user admin from 104.35.131.153	2020-07-23 20:09:34
183.252.49.122	attackbots	Brute forcing RDP port 3389	2020-07-23 19:48:33
37.59.123.166	attackspambots	2020-07-23T06:40:06.911569abusebot-6.cloudsearch.cf sshd[29178]: Invalid user sftpuser from 37.59.123.166 port 49006 2020-07-23T06:40:06.917950abusebot-6.cloudsearch.cf sshd[29178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.ip-37-59-123.eu 2020-07-23T06:40:06.911569abusebot-6.cloudsearch.cf sshd[29178]: Invalid user sftpuser from 37.59.123.166 port 49006 2020-07-23T06:40:09.069239abusebot-6.cloudsearch.cf sshd[29178]: Failed password for invalid user sftpuser from 37.59.123.166 port 49006 ssh2 2020-07-23T06:43:52.548065abusebot-6.cloudsearch.cf sshd[29232]: Invalid user lxb from 37.59.123.166 port 57076 2020-07-23T06:43:52.554431abusebot-6.cloudsearch.cf sshd[29232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.ip-37-59-123.eu 2020-07-23T06:43:52.548065abusebot-6.cloudsearch.cf sshd[29232]: Invalid user lxb from 37.59.123.166 port 57076 2020-07-23T06:43:54.399240abusebot-6.cloudsearch.cf ss ...	2020-07-23 19:57:53
132.255.116.14	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2020-07-23 19:58:18
113.175.101.193	attackspam	SMB Server BruteForce Attack	2020-07-23 20:07:53
103.112.4.102	attackbotsspam	Jul 23 12:38:08 h1745522 sshd[6732]: Invalid user sword from 103.112.4.102 port 51602 Jul 23 12:38:08 h1745522 sshd[6732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.112.4.102 Jul 23 12:38:08 h1745522 sshd[6732]: Invalid user sword from 103.112.4.102 port 51602 Jul 23 12:38:10 h1745522 sshd[6732]: Failed password for invalid user sword from 103.112.4.102 port 51602 ssh2 Jul 23 12:45:58 h1745522 sshd[7115]: Invalid user grieco from 103.112.4.102 port 57202 Jul 23 12:45:58 h1745522 sshd[7115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.112.4.102 Jul 23 12:45:58 h1745522 sshd[7115]: Invalid user grieco from 103.112.4.102 port 57202 Jul 23 12:46:00 h1745522 sshd[7115]: Failed password for invalid user grieco from 103.112.4.102 port 57202 ssh2 Jul 23 12:47:55 h1745522 sshd[7187]: Invalid user guest from 103.112.4.102 port 51184 ...	2020-07-23 19:52:52
106.12.13.185	attack	Jul 23 11:20:45 serwer sshd\[30591\]: Invalid user gj from 106.12.13.185 port 35160 Jul 23 11:20:45 serwer sshd\[30591\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.13.185 Jul 23 11:20:47 serwer sshd\[30591\]: Failed password for invalid user gj from 106.12.13.185 port 35160 ssh2 ...	2020-07-23 19:52:07
106.12.74.99	attackbots	$f2bV_matches	2020-07-23 19:51:04
191.116.239.199	attack	WP-Login.php_	2020-07-23 20:05:19
14.182.176.87	attackspam	firewall-block, port(s): 445/tcp	2020-07-23 19:45:11
113.125.132.53	attackspam	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-07-23 20:08:37

Recently Reported IPs

210.44.57.242	24.21.191.92	189.127.39.112	217.182.252.161
209.151.235.167	123.173.151.206	167.71.222.50	125.24.104.9
91.250.96.120	216.229.221.32	213.113.47.140	32.64.193.241
88.228.117.102	111.198.208.102	91.243.93.15	112.27.91.233
68.223.63.83	182.63.43.107	73.155.166.11	82.255.185.110