106.75.53.140 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanghai UCloud Information Technology Company Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Apr 18 19:29:40 auw2 sshd\[17399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.140 user=root Apr 18 19:29:42 auw2 sshd\[17399\]: Failed password for root from 106.75.53.140 port 51304 ssh2 Apr 18 19:36:04 auw2 sshd\[17856\]: Invalid user cl from 106.75.53.140 Apr 18 19:36:04 auw2 sshd\[17856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.140 Apr 18 19:36:06 auw2 sshd\[17856\]: Failed password for invalid user cl from 106.75.53.140 port 60220 ssh2	2020-04-19 14:07:20

Type

Details

Datetime

attack

Apr 18 19:29:40 auw2 sshd\[17399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.140  user=root
Apr 18 19:29:42 auw2 sshd\[17399\]: Failed password for root from 106.75.53.140 port 51304 ssh2
Apr 18 19:36:04 auw2 sshd\[17856\]: Invalid user cl from 106.75.53.140
Apr 18 19:36:04 auw2 sshd\[17856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.140
Apr 18 19:36:06 auw2 sshd\[17856\]: Failed password for invalid user cl from 106.75.53.140 port 60220 ssh2

2020-04-19 14:07:20

Comments on same subnet:

IP	Type	Details	Datetime
106.75.53.49	attack	Aug 11 23:37:16 hosting sshd[22155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.49 user=root Aug 11 23:37:17 hosting sshd[22155]: Failed password for root from 106.75.53.49 port 49794 ssh2 ...	2020-08-12 05:10:22
106.75.53.49	attackspambots	firewall-block, port(s): 4923/tcp	2020-08-06 20:24:26
106.75.53.49	attack	Jul 15 11:44:29 django-0 sshd[18571]: Invalid user bike from 106.75.53.49 ...	2020-07-15 19:47:20
106.75.53.228	attackbots	Invalid user tom from 106.75.53.228 port 50084	2020-06-17 01:09:28
106.75.53.228	attack	Jun 16 00:47:26 * sshd[15599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.228 Jun 16 00:47:29 * sshd[15599]: Failed password for invalid user test from 106.75.53.228 port 55392 ssh2	2020-06-16 07:36:39
106.75.53.49	attackbotsspam	Jun 16 02:33:12 dhoomketu sshd[776155]: Invalid user nox from 106.75.53.49 port 44624 Jun 16 02:33:12 dhoomketu sshd[776155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.49 Jun 16 02:33:12 dhoomketu sshd[776155]: Invalid user nox from 106.75.53.49 port 44624 Jun 16 02:33:14 dhoomketu sshd[776155]: Failed password for invalid user nox from 106.75.53.49 port 44624 ssh2 Jun 16 02:35:28 dhoomketu sshd[776190]: Invalid user webuser from 106.75.53.49 port 50600 ...	2020-06-16 05:24:29
106.75.53.228	attackbots	Invalid user es from 106.75.53.228 port 48998	2020-06-14 08:18:28
106.75.53.228	attackspambots	Jun 13 22:16:15 vps sshd[700094]: Invalid user ine from 106.75.53.228 port 50130 Jun 13 22:16:15 vps sshd[700094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.228 Jun 13 22:16:17 vps sshd[700094]: Failed password for invalid user ine from 106.75.53.228 port 50130 ssh2 Jun 13 22:17:46 vps sshd[705559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.228 user=root Jun 13 22:17:49 vps sshd[705559]: Failed password for root from 106.75.53.228 port 38974 ssh2 ...	2020-06-14 04:25:25
106.75.53.49	attackbotsspam	Jun 10 05:48:46 pi sshd[26616]: Failed password for root from 106.75.53.49 port 50260 ssh2	2020-06-11 00:10:24
106.75.53.49	attackbots	Jun 10 01:00:42 ny01 sshd[7412]: Failed password for root from 106.75.53.49 port 34320 ssh2 Jun 10 01:03:07 ny01 sshd[7728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.49 Jun 10 01:03:09 ny01 sshd[7728]: Failed password for invalid user og from 106.75.53.49 port 35674 ssh2	2020-06-10 13:06:36
106.75.53.49	attackspam	Jun 7 22:32:48 mail sshd[21943]: Failed password for root from 106.75.53.49 port 33686 ssh2 Jun 7 22:37:05 mail sshd[22485]: Failed password for root from 106.75.53.49 port 54102 ssh2 Jun 7 22:39:01 mail sshd[22723]: Failed password for root from 106.75.53.49 port 56940 ssh2 ...	2020-06-08 04:47:42
106.75.53.228	attackspambots	Jun 6 07:17:27 minden010 sshd[10707]: Failed password for root from 106.75.53.228 port 50082 ssh2 Jun 6 07:19:53 minden010 sshd[11582]: Failed password for root from 106.75.53.228 port 47072 ssh2 ...	2020-06-06 16:44:09
106.75.53.49	attackbotsspam	2020-06-04T10:21:29.444983v22018076590370373 sshd[21116]: Failed password for root from 106.75.53.49 port 52676 ssh2 2020-06-04T10:24:50.501017v22018076590370373 sshd[24176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.49 user=root 2020-06-04T10:24:52.791413v22018076590370373 sshd[24176]: Failed password for root from 106.75.53.49 port 44392 ssh2 2020-06-04T10:28:05.243998v22018076590370373 sshd[30211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.49 user=root 2020-06-04T10:28:06.966948v22018076590370373 sshd[30211]: Failed password for root from 106.75.53.49 port 36110 ssh2 ...	2020-06-04 19:48:36
106.75.53.228	attackbotsspam	Invalid user mio from 106.75.53.228 port 57566	2020-05-24 12:47:03
106.75.53.228	attackbots	May 15 05:56:59 ns381471 sshd[23758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.53.228 May 15 05:57:01 ns381471 sshd[23758]: Failed password for invalid user user from 106.75.53.228 port 44482 ssh2	2020-05-15 13:00:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.53.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54513
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.53.140.			IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041900 1800 900 604800 86400

;; Query time: 92 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 19 14:07:15 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 140.53.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.53.75.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.191.232.6	attackbots	MYH,DEF GET /shell?busybox	2019-09-16 01:30:56
178.128.174.202	attackspam	Sep 15 07:56:01 kapalua sshd\[30814\]: Invalid user Tuomo from 178.128.174.202 Sep 15 07:56:01 kapalua sshd\[30814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.174.202 Sep 15 07:56:03 kapalua sshd\[30814\]: Failed password for invalid user Tuomo from 178.128.174.202 port 60988 ssh2 Sep 15 08:00:12 kapalua sshd\[31143\]: Invalid user deskman from 178.128.174.202 Sep 15 08:00:12 kapalua sshd\[31143\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.174.202	2019-09-16 02:01:58
188.254.0.112	attackspambots	Sep 15 07:35:57 tdfoods sshd\[25562\]: Invalid user server from 188.254.0.112 Sep 15 07:35:57 tdfoods sshd\[25562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.112 Sep 15 07:35:59 tdfoods sshd\[25562\]: Failed password for invalid user server from 188.254.0.112 port 33422 ssh2 Sep 15 07:41:12 tdfoods sshd\[26068\]: Invalid user disk from 188.254.0.112 Sep 15 07:41:12 tdfoods sshd\[26068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.112	2019-09-16 01:52:41
202.95.136.150	attackbots	SPF Fail sender not permitted to send mail for @0sg.net / Sent mail to target address hacked/leaked from abandonia in 2016	2019-09-16 02:16:59
104.131.84.59	attackspambots	Automated report - ssh fail2ban: Sep 15 19:36:25 authentication failure Sep 15 19:36:26 wrong password, user=rochester, port=41054, ssh2 Sep 15 19:40:41 authentication failure	2019-09-16 02:04:21
119.162.213.83	attackspambots	2019-09-15T15:20:39.148310 sshd[19699]: Invalid user pi from 119.162.213.83 port 59294 2019-09-15T15:20:39.223721 sshd[19701]: Invalid user pi from 119.162.213.83 port 59296 2019-09-15T15:20:39.529295 sshd[19699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.162.213.83 2019-09-15T15:20:39.148310 sshd[19699]: Invalid user pi from 119.162.213.83 port 59294 2019-09-15T15:20:41.184842 sshd[19699]: Failed password for invalid user pi from 119.162.213.83 port 59294 ssh2 2019-09-15T15:20:39.590101 sshd[19701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.162.213.83 2019-09-15T15:20:39.223721 sshd[19701]: Invalid user pi from 119.162.213.83 port 59296 2019-09-15T15:20:41.245466 sshd[19701]: Failed password for invalid user pi from 119.162.213.83 port 59296 ssh2 ...	2019-09-16 01:51:27
61.144.244.211	attackspam	Sep 15 20:03:10 OPSO sshd\[8088\]: Invalid user oracle from 61.144.244.211 port 15030 Sep 15 20:03:10 OPSO sshd\[8088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.144.244.211 Sep 15 20:03:12 OPSO sshd\[8088\]: Failed password for invalid user oracle from 61.144.244.211 port 15030 ssh2 Sep 15 20:07:32 OPSO sshd\[9395\]: Invalid user villepinte from 61.144.244.211 port 59300 Sep 15 20:07:32 OPSO sshd\[9395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.144.244.211	2019-09-16 02:12:07
59.10.6.152	attackbotsspam	Sep 15 22:19:10 itv-usvr-02 sshd[4128]: Invalid user robbie from 59.10.6.152 port 53744 Sep 15 22:19:10 itv-usvr-02 sshd[4128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.10.6.152 Sep 15 22:19:10 itv-usvr-02 sshd[4128]: Invalid user robbie from 59.10.6.152 port 53744 Sep 15 22:19:12 itv-usvr-02 sshd[4128]: Failed password for invalid user robbie from 59.10.6.152 port 53744 ssh2 Sep 15 22:29:07 itv-usvr-02 sshd[4134]: Invalid user pichu from 59.10.6.152 port 44826	2019-09-16 02:10:47
62.210.178.245	attackbotsspam	Sep 15 18:45:10 nextcloud sshd\[11135\]: Invalid user admin from 62.210.178.245 Sep 15 18:45:10 nextcloud sshd\[11135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.178.245 Sep 15 18:45:12 nextcloud sshd\[11135\]: Failed password for invalid user admin from 62.210.178.245 port 45122 ssh2 ...	2019-09-16 01:41:21
41.232.84.211	attack	Chat Spam	2019-09-16 01:38:17
68.183.50.149	attackspam	2019-09-15T17:42:51.149571abusebot-5.cloudsearch.cf sshd\[23672\]: Invalid user zk from 68.183.50.149 port 52072	2019-09-16 02:13:35
193.32.160.135	attackspam	Sep 15 18:16:24 relay postfix/smtpd\[2612\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.135\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.145\]\> Sep 15 18:16:24 relay postfix/smtpd\[2612\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.135\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.145\]\> Sep 15 18:16:24 relay postfix/smtpd\[2612\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.135\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.145\]\> Sep 15 18:16:24 relay postfix/smtpd\[2612\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.135\]: 554 5.7.1 \ ...	2019-09-16 01:44:02
117.192.242.0	attackspam	Automatic report - Port Scan Attack	2019-09-16 02:09:13
67.205.152.196	attackspam	Sep 15 05:30:29 eddieflores sshd\[3071\]: Invalid user larsson from 67.205.152.196 Sep 15 05:30:29 eddieflores sshd\[3071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.152.196 Sep 15 05:30:31 eddieflores sshd\[3071\]: Failed password for invalid user larsson from 67.205.152.196 port 52680 ssh2 Sep 15 05:34:46 eddieflores sshd\[3397\]: Invalid user 123456 from 67.205.152.196 Sep 15 05:34:46 eddieflores sshd\[3397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.152.196	2019-09-16 02:00:16
177.84.22.181	attackbotsspam	Sent mail to target address hacked/leaked from abandonia in 2016	2019-09-16 01:53:03

Recently Reported IPs

24.60.30.82	90.167.44.140	78.108.105.108	182.200.85.166
80.241.213.34	35.155.197.171	61.91.64.62	165.22.248.248
49.233.82.94	45.71.230.11	59.57.183.226	113.109.162.221
3.6.40.51	200.53.19.84	119.55.211.246	205.46.163.110
114.33.179.15	171.224.54.106	181.196.28.22	60.190.138.135