106.75.63.137 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.75.63.218	attackspambots	scans once in preceeding hours on the ports (in chronological order) 9080 resulting in total of 1 scans from 106.75.0.0/16 block.	2020-08-27 00:14:51
106.75.63.218	attackspambots	scans once in preceeding hours on the ports (in chronological order) 9191 resulting in total of 3 scans from 106.75.0.0/16 block.	2020-07-13 01:16:30
106.75.63.218	attack	TCP (SYN) 106.75.63.218:58914 -> port 9333, len 44	2020-06-30 01:05:14
106.75.63.36	attackbots	Jun 28 14:45:02 ajax sshd[18287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.63.36 Jun 28 14:45:04 ajax sshd[18287]: Failed password for invalid user veronique from 106.75.63.36 port 41492 ssh2	2020-06-29 00:07:27
106.75.63.36	attack	Jun 27 09:52:10 pkdns2 sshd\[45408\]: Invalid user oracle from 106.75.63.36Jun 27 09:52:12 pkdns2 sshd\[45408\]: Failed password for invalid user oracle from 106.75.63.36 port 56222 ssh2Jun 27 09:56:06 pkdns2 sshd\[45581\]: Invalid user ad from 106.75.63.36Jun 27 09:56:08 pkdns2 sshd\[45581\]: Failed password for invalid user ad from 106.75.63.36 port 45216 ssh2Jun 27 10:00:10 pkdns2 sshd\[45693\]: Invalid user ftpuser from 106.75.63.36Jun 27 10:00:11 pkdns2 sshd\[45693\]: Failed password for invalid user ftpuser from 106.75.63.36 port 34214 ssh2 ...	2020-06-27 15:27:05
106.75.63.36	attackbots	SSH Invalid Login	2020-06-19 05:53:24
106.75.63.36	attackspambots	fail2ban	2020-06-15 14:52:34
106.75.63.218	attackbots	May 27 13:57:46 debian-2gb-nbg1-2 kernel: \[12839461.014429\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=106.75.63.218 DST=195.201.40.59 LEN=41 TOS=0x00 PREC=0x00 TTL=237 ID=45081 PROTO=UDP SPT=58914 DPT=5050 LEN=21	2020-05-27 20:11:36
106.75.63.142	attack	Apr 6 07:13:18 server1 sshd\[10878\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.63.142 user=root Apr 6 07:13:21 server1 sshd\[10878\]: Failed password for root from 106.75.63.142 port 37134 ssh2 Apr 6 07:16:28 server1 sshd\[11873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.63.142 user=root Apr 6 07:16:29 server1 sshd\[11873\]: Failed password for root from 106.75.63.142 port 41442 ssh2 Apr 6 07:19:31 server1 sshd\[13057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.63.142 user=root ...	2020-04-06 21:32:36
106.75.63.218	attack	Port scan: Attack repeated for 24 hours	2020-03-30 04:30:01
106.75.63.218	attackspam	firewall-block, port(s): 5985/tcp	2020-03-07 21:49:44
106.75.63.218	attackbotsspam	1471/tcp 62078/tcp 502/tcp... [2019-10-29/12-27]58pkt,24pt.(tcp)	2019-12-28 03:42:46
106.75.63.218	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-10 00:14:18
106.75.63.218	attack	Scanning random ports - tries to find possible vulnerable services	2019-11-24 20:34:39
106.75.63.218	attackbotsspam	Automatic report - Banned IP Access	2019-11-23 07:19:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.63.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53362
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.75.63.137.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 14:43:37 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 137.63.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 137.63.75.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.75.18.212	attack	Port Scan: Events[1] countPorts[1]: 22 ..	2020-04-18 00:18:47
42.2.187.232	attackspam	Honeypot attack, port: 5555, PTR: 42-2-187-232.static.netvigator.com.	2020-04-18 00:22:39
106.208.81.61	attackbotsspam	2020-04-1712:54:301jPOdh-0005Dg-7n\<=info@whatsup2013.chH=$localhost$[222.254.6.120]:41095P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3141id=87cc9ecdc6ed38341356e0b347808a86b5726265@whatsup2013.chT="RecentlikefromRead"fordougcrudup@gmail.comhdhdb@gmail.com2020-04-1712:50:371jPOZs-0004wr-87\<=info@whatsup2013.chH=$localhost$[115.84.92.243]:41475P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3078id=8ca7199f94bf6a99ba44b2e1ea3e072b08e23ebc5a@whatsup2013.chT="NewlikefromHaidee"fordabandit77@yahoo.comkonn_k@hotmail.com2020-04-1712:53:181jPOcX-00059S-LB\<=info@whatsup2013.chH=$localhost$[14.187.105.222]:4923P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3091id=8d09bdeee5ce1b173075c39064a3a9a596ac41a6@whatsup2013.chT="NewlikefromSyreeta"fororickeyd@gmail.comcrehan.blake@icloud.com2020-04-1712:53:091jPOcO-00058u-OI\<=info@whatsup2013.chH=$localhost$[106.208.81.61]:16600P	2020-04-17 23:51:49
81.34.114.234	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-18 00:00:50
94.191.94.179	attackspam	Apr 17 14:11:10 server sshd[13225]: Failed password for invalid user admin from 94.191.94.179 port 39610 ssh2 Apr 17 14:24:46 server sshd[15885]: Failed password for root from 94.191.94.179 port 60876 ssh2 Apr 17 14:32:02 server sshd[17404]: Failed password for root from 94.191.94.179 port 45408 ssh2	2020-04-17 23:54:18
70.125.240.42	attackbotsspam	Apr 17 17:56:02 vmd48417 sshd[12923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.125.240.42	2020-04-18 00:07:34
175.165.147.86	attackspambots	Honeypot attack, port: 5555, PTR: PTR record not found	2020-04-18 00:17:28
149.56.28.100	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-04-17 23:55:55
94.247.179.224	attack	$f2bV_matches	2020-04-17 23:58:52
175.6.80.241	attackbots	Invalid user admin from 175.6.80.241 port 40460	2020-04-18 00:24:05
222.254.6.120	attack	2020-04-1712:54:301jPOdh-0005Dg-7n\<=info@whatsup2013.chH=$localhost$[222.254.6.120]:41095P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3141id=87cc9ecdc6ed38341356e0b347808a86b5726265@whatsup2013.chT="RecentlikefromRead"fordougcrudup@gmail.comhdhdb@gmail.com2020-04-1712:50:371jPOZs-0004wr-87\<=info@whatsup2013.chH=$localhost$[115.84.92.243]:41475P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3078id=8ca7199f94bf6a99ba44b2e1ea3e072b08e23ebc5a@whatsup2013.chT="NewlikefromHaidee"fordabandit77@yahoo.comkonn_k@hotmail.com2020-04-1712:53:181jPOcX-00059S-LB\<=info@whatsup2013.chH=$localhost$[14.187.105.222]:4923P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3091id=8d09bdeee5ce1b173075c39064a3a9a596ac41a6@whatsup2013.chT="NewlikefromSyreeta"fororickeyd@gmail.comcrehan.blake@icloud.com2020-04-1712:53:091jPOcO-00058u-OI\<=info@whatsup2013.chH=$localhost$[106.208.81.61]:16600P	2020-04-17 23:55:35
180.76.186.8	attackbots	Apr 17 16:15:12 ns382633 sshd\[379\]: Invalid user test from 180.76.186.8 port 36600 Apr 17 16:15:12 ns382633 sshd\[379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.186.8 Apr 17 16:15:14 ns382633 sshd\[379\]: Failed password for invalid user test from 180.76.186.8 port 36600 ssh2 Apr 17 16:18:06 ns382633 sshd\[800\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.186.8 user=root Apr 17 16:18:08 ns382633 sshd\[800\]: Failed password for root from 180.76.186.8 port 33508 ssh2	2020-04-18 00:21:36
128.199.84.251	attackspam	$f2bV_matches	2020-04-18 00:22:02
188.162.201.10	attack	Honeypot attack, port: 445, PTR: client.yota.ru.	2020-04-18 00:05:33
37.26.99.75	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-17 23:57:03

Recently Reported IPs

106.75.67.86	106.75.60.109	106.75.71.122	106.75.69.174
106.75.71.250	106.75.56.191	106.75.76.126	106.75.79.153
106.75.80.195	106.75.8.141	106.40.242.55	106.75.85.88
106.75.9.149	106.75.86.67	106.75.90.98	106.75.96.71
106.79.186.224	106.8.125.176	106.8.17.10	106.8.17.13