106.75.75.112 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanghai UCloud Information Technology Company Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	SSH Brute Force	2020-04-29 12:41:03
spam	Sent me a phishing email.	2019-11-22 12:53:17
attack	Oct 19 18:56:16 lcl-usvr-02 sshd[3321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.75.112 user=root Oct 19 18:56:18 lcl-usvr-02 sshd[3321]: Failed password for root from 106.75.75.112 port 36988 ssh2 Oct 19 19:00:44 lcl-usvr-02 sshd[4401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.75.112 user=root Oct 19 19:00:46 lcl-usvr-02 sshd[4401]: Failed password for root from 106.75.75.112 port 42426 ssh2 Oct 19 19:05:19 lcl-usvr-02 sshd[5447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.75.112 user=root Oct 19 19:05:21 lcl-usvr-02 sshd[5447]: Failed password for root from 106.75.75.112 port 47876 ssh2 ...	2019-10-19 20:30:18
attackbots	web-1 [ssh_2] SSH Attack	2019-10-13 23:22:31
attackbots	$f2bV_matches	2019-09-28 17:36:28
attackbotsspam	Sep 23 13:10:54 kapalua sshd\[6477\]: Invalid user sj from 106.75.75.112 Sep 23 13:10:54 kapalua sshd\[6477\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.75.112 Sep 23 13:10:57 kapalua sshd\[6477\]: Failed password for invalid user sj from 106.75.75.112 port 55936 ssh2 Sep 23 13:13:30 kapalua sshd\[6682\]: Invalid user dohona from 106.75.75.112 Sep 23 13:13:30 kapalua sshd\[6682\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.75.112	2019-09-24 08:54:44
attack	Sep 11 11:02:17 dedicated sshd[12480]: Invalid user testpass from 106.75.75.112 port 34912	2019-09-11 17:20:02
attackbotsspam	2019-09-09T07:49:48.394467abusebot-4.cloudsearch.cf sshd\[3090\]: Invalid user administrador from 106.75.75.112 port 53206	2019-09-09 16:01:46
attackspambots	Aug 28 08:12:03 hanapaa sshd\[19701\]: Invalid user zipcode from 106.75.75.112 Aug 28 08:12:03 hanapaa sshd\[19701\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.75.112 Aug 28 08:12:06 hanapaa sshd\[19701\]: Failed password for invalid user zipcode from 106.75.75.112 port 58140 ssh2 Aug 28 08:16:23 hanapaa sshd\[20108\]: Invalid user inux from 106.75.75.112 Aug 28 08:16:23 hanapaa sshd\[20108\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.75.112	2019-08-29 06:46:18
attack	Aug 21 23:43:46 itv-usvr-01 sshd[11011]: Invalid user sistema from 106.75.75.112 Aug 21 23:43:46 itv-usvr-01 sshd[11011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.75.112 Aug 21 23:43:46 itv-usvr-01 sshd[11011]: Invalid user sistema from 106.75.75.112 Aug 21 23:43:47 itv-usvr-01 sshd[11011]: Failed password for invalid user sistema from 106.75.75.112 port 45850 ssh2 Aug 21 23:46:27 itv-usvr-01 sshd[11134]: Invalid user osram from 106.75.75.112	2019-08-28 17:58:15

Comments on same subnet:

IP	Type	Details	Datetime
106.75.75.174	attackbots	Invalid user yann from 106.75.75.174 port 57946	2020-06-25 03:58:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.75.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30805
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.75.112.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 28 17:58:10 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 112.75.75.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 112.75.75.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
102.133.165.93	attack	Jun 30 18:41:47 mellenthin sshd[2878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.133.165.93 user=root Jun 30 18:41:50 mellenthin sshd[2878]: Failed password for invalid user root from 102.133.165.93 port 17899 ssh2	2020-07-01 17:52:33
42.225.188.209	attackbots	06/30/2020-15:15:18.686876 42.225.188.209 Protocol: 6 ET SCAN Suspicious inbound to mySQL port 3306	2020-07-01 18:32:29
185.57.28.218	attackbotsspam	445/tcp 445/tcp 445/tcp... [2020-04-29/06-24]5pkt,1pt.(tcp)	2020-07-01 18:32:47
171.244.68.33	attackspambots	Unauthorized connection attempt detected from IP address 171.244.68.33 to port 23	2020-07-01 17:49:06
128.199.130.217	attackspam	detected by Fail2Ban	2020-07-01 18:24:53
42.115.90.116	attackbotsspam	TCP (SYN) 42.115.90.116:48098 -> port 80, len 40	2020-07-01 18:26:44
189.213.109.179	attack	Unauthorized connection attempt detected from IP address 189.213.109.179 to port 23	2020-07-01 18:13:10
51.75.249.70	attack	TCP (SYN) 51.75.249.70:32767 -> port 8545, len 44	2020-07-01 18:20:49
138.121.70.117	attackspambots	2020-06-30T21:39:14.289550afi-git.jinr.ru sshd[1947]: Failed password for invalid user cad from 138.121.70.117 port 52664 ssh2 2020-06-30T21:40:49.670190afi-git.jinr.ru sshd[2383]: Invalid user support from 138.121.70.117 port 49518 2020-06-30T21:40:49.673603afi-git.jinr.ru sshd[2383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.70.117 2020-06-30T21:40:49.670190afi-git.jinr.ru sshd[2383]: Invalid user support from 138.121.70.117 port 49518 2020-06-30T21:40:51.382910afi-git.jinr.ru sshd[2383]: Failed password for invalid user support from 138.121.70.117 port 49518 ssh2 ...	2020-07-01 17:52:11
51.91.123.235	attackbotsspam	51.91.123.235 has been banned for [WebApp Attack] ...	2020-07-01 18:10:22
183.88.240.211	attackspambots	Dovecot Invalid User Login Attempt.	2020-07-01 18:28:07
80.246.2.153	attackbots	Fail2Ban Ban Triggered (2)	2020-07-01 18:05:55
178.62.116.156	attackbots	50050/tcp [2020-06-30]1pkt	2020-07-01 17:48:42
88.204.204.162	attackspambots	20/6/30@04:09:52: FAIL: Alarm-Network address from=88.204.204.162 20/6/30@04:09:52: FAIL: Alarm-Network address from=88.204.204.162 ...	2020-07-01 17:52:53
59.126.239.173	attack	unauthorized connection attempt	2020-07-01 18:09:59

Recently Reported IPs

111.230.116.149	94.191.70.54	167.71.3.163	142.93.109.153
88.129.208.35	165.22.209.133	86.254.12.212	191.96.43.46
151.56.37.192	104.227.162.109	138.68.128.80	117.60.134.249
217.67.21.68	103.94.120.66	182.112.75.90	62.102.220.136
252.138.10.182	18.225.91.5	183.97.41.248	107.174.61.118