106.75.252.214

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.75.252.57	attack	Tried sshing with brute force.	2019-12-18 01:51:46
106.75.252.57	attack	Dec 12 08:22:32 MK-Soft-VM4 sshd[32036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.252.57 Dec 12 08:22:34 MK-Soft-VM4 sshd[32036]: Failed password for invalid user wati2 from 106.75.252.57 port 60058 ssh2 ...	2019-12-12 16:22:54
106.75.252.57	attackbotsspam	Nov 23 05:55:37 jane sshd[20757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.252.57 Nov 23 05:55:39 jane sshd[20757]: Failed password for invalid user host from 106.75.252.57 port 42344 ssh2 ...	2019-11-23 13:13:57
106.75.252.57	attack	2019-11-22T23:53:59.0802381240 sshd\[2363\]: Invalid user relational from 106.75.252.57 port 53604 2019-11-22T23:53:59.0833081240 sshd\[2363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.252.57 2019-11-22T23:54:01.5595211240 sshd\[2363\]: Failed password for invalid user relational from 106.75.252.57 port 53604 ssh2 ...	2019-11-23 08:49:09
106.75.252.57	attackspambots	Nov 22 07:58:15 amit sshd\[6956\]: Invalid user edmund from 106.75.252.57 Nov 22 07:58:15 amit sshd\[6956\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.252.57 Nov 22 07:58:17 amit sshd\[6956\]: Failed password for invalid user edmund from 106.75.252.57 port 33342 ssh2 ...	2019-11-22 18:25:37
106.75.252.57	attack	Nov 16 20:59:08 lnxweb62 sshd[18503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.252.57	2019-11-17 04:16:10
106.75.252.57	attack	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.252.57 Failed password for invalid user !@\#$% from 106.75.252.57 port 58520 ssh2 Invalid user derley from 106.75.252.57 port 55882 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.252.57 Failed password for invalid user derley from 106.75.252.57 port 55882 ssh2	2019-11-09 02:15:06
106.75.252.57	attackspambots	2019-11-02T21:12:13.151181lon01.zurich-datacenter.net sshd\[14614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.252.57 user=root 2019-11-02T21:12:14.521457lon01.zurich-datacenter.net sshd\[14614\]: Failed password for root from 106.75.252.57 port 43928 ssh2 2019-11-02T21:16:15.138864lon01.zurich-datacenter.net sshd\[14692\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.252.57 user=root 2019-11-02T21:16:17.065886lon01.zurich-datacenter.net sshd\[14692\]: Failed password for root from 106.75.252.57 port 43902 ssh2 2019-11-02T21:20:15.406683lon01.zurich-datacenter.net sshd\[14774\]: Invalid user cn from 106.75.252.57 port 43884 ...	2019-11-03 04:52:55
106.75.252.57	attackspambots	Oct 15 12:23:15 master sshd[16078]: Failed password for root from 106.75.252.57 port 38904 ssh2	2019-10-15 18:15:54
106.75.252.57	attack	Oct 14 00:24:44 icinga sshd[9916]: Failed password for root from 106.75.252.57 port 51600 ssh2 ...	2019-10-14 06:52:25
106.75.252.57	attackbotsspam	Unauthorized SSH login attempts	2019-10-07 14:18:47
106.75.252.57	attack	Automatic report - SSH Brute-Force Attack	2019-10-06 23:09:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.252.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25408
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.75.252.214.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030301 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 02:36:10 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 214.252.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 214.252.75.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
121.128.135.74	attack	(imapd) Failed IMAP login from 121.128.135.74 (KR/South Korea/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: May 26 03:54:43 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 7 secs): user=, method=PLAIN, rip=121.128.135.74, lip=5.63.12.44, TLS: Connection closed, session=	2020-05-26 11:16:39
206.251.220.240	attackspam	Email SASL login failure	2020-05-26 10:43:21
123.25.155.44	attackbotsspam	Automatic report - Port Scan Attack	2020-05-26 11:15:09
103.145.12.115	attackspambots	[2020-05-25 19:56:35] NOTICE[1157][C-00009694] chan_sip.c: Call from '' (103.145.12.115:5086) to extension '01146406820686' rejected because extension not found in context 'public'. [2020-05-25 19:56:35] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-25T19:56:35.313-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146406820686",SessionID="0x7f5f100266a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.115/5086",ACLName="no_extension_match" [2020-05-25 20:01:19] NOTICE[1157][C-00009698] chan_sip.c: Call from '' (103.145.12.115:5102) to extension '901146406820686' rejected because extension not found in context 'public'. [2020-05-25 20:01:19] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-25T20:01:19.953-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146406820686",SessionID="0x7f5f10678288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/10 ...	2020-05-26 10:54:35
198.108.66.220	attackspambots	Unauthorized connection attempt detected from IP address 198.108.66.220 to port 3012	2020-05-26 10:46:16
187.177.182.222	attack	Automatic report - Port Scan Attack	2020-05-26 11:11:12
111.229.124.215	attack	May 26 01:20:21 legacy sshd[30460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.124.215 May 26 01:20:22 legacy sshd[30460]: Failed password for invalid user bnjoroge from 111.229.124.215 port 46018 ssh2 May 26 01:25:33 legacy sshd[30621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.124.215 ...	2020-05-26 10:42:38
223.240.109.231	attackbots	May 26 01:22:14 buvik sshd[1451]: Failed password for root from 223.240.109.231 port 40703 ssh2 May 26 01:24:43 buvik sshd[1703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.240.109.231 user=root May 26 01:24:45 buvik sshd[1703]: Failed password for root from 223.240.109.231 port 60610 ssh2 ...	2020-05-26 11:16:07
106.13.20.73	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2020-05-26 10:45:17
80.240.141.20	attackspam	May 26 01:22:21 *** sshd[6314]: User root from 80.240.141.20 not allowed because not listed in AllowUsers	2020-05-26 10:48:26
184.106.81.166	attackspam	Scanned 1 times in the last 24 hours on port 5060	2020-05-26 11:01:51
210.211.107.3	attack	May 26 00:25:36 cdc sshd[29231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.211.107.3 May 26 00:25:37 cdc sshd[29231]: Failed password for invalid user morissette from 210.211.107.3 port 35794 ssh2	2020-05-26 10:40:26
51.143.90.17	attackbots	26.05.2020 01:25:30 - SMTP Spam without Auth on hMailserver Detected by ELinOX-hMail-A2F	2020-05-26 10:46:46
167.99.204.251	attack	167.99.204.251 - - [26/May/2020:01:24:46 +0200] "GET /wp-login.php HTTP/1.1" 200 6287 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.204.251 - - [26/May/2020:01:24:48 +0200] "POST /wp-login.php HTTP/1.1" 200 6517 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.204.251 - - [26/May/2020:01:24:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-26 11:14:08
119.29.158.26	attackbots	May 26 01:59:10 sso sshd[16775]: Failed password for root from 119.29.158.26 port 57722 ssh2 ...	2020-05-26 11:02:25

Recently Reported IPs

106.75.251.81	106.75.252.220	106.75.252.99	106.75.254.123
106.75.254.131	106.75.37.98	106.75.75.244	17.104.20.116
199.8.143.208	106.76.77.76	106.76.78.170	106.77.161.106
94.181.57.234	106.77.167.116	106.78.35.166	17.93.209.163
106.79.92.57	106.8.203.213	87.31.219.152	106.8.216.172