106.75.78.149 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Telecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.75.78.135	attack	Automatic report - Banned IP Access	2020-05-04 04:51:20
106.75.78.135	attack	Port 8545 (Ethereum client) access denied	2020-04-24 08:02:17
106.75.78.135	attackspambots	631/tcp 7000/tcp 7779/tcp... [2020-02-10/04-08]68pkt,16pt.(tcp)	2020-04-09 03:50:24
106.75.78.135	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-14 02:06:11
106.75.78.135	attackbotsspam	Automatic report - Banned IP Access	2020-01-11 06:30:40
106.75.78.135	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-10 23:16:39
106.75.78.135	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-16 00:35:03
106.75.78.135	attackbots	Port Scan	2019-10-30 02:20:32
106.75.78.135	attackspambots	port scan and connect, tcp 5984 (couchdb)	2019-10-09 07:47:45

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '106.75.0.0 - 106.75.255.255'

% Abuse contact for '106.75.0.0 - 106.75.255.255' is 'jacky.jia@ucloud.cn'

inetnum:        106.75.0.0 - 106.75.255.255
netname:        UCLOUD-NET
descr:          Shanghai UCloud Information Technology Company Limited
country:        CN
admin-c:        JJ2197-AP
tech-c:         JJ2197-AP
abuse-c:        AC1601-AP
status:         ALLOCATED PORTABLE
mnt-by:         MAINT-CNNIC-AP
mnt-irt:        IRT-UCLOUD-NET-CN
mnt-lower:      MAINT-CNNIC-AP
mnt-routes:     MAINT-CNNIC-AP
last-modified:  2023-11-28T00:56:50Z
source:         APNIC

irt:            IRT-UCLOUD-NET-CN
address:        2nd Floor 3rd Building No.200 EAST Guoding Road,Yangpu District,Shanghai
e-mail:         jacky.jia@ucloud.cn
abuse-mailbox:  jacky.jia@ucloud.cn
auth:           # Filtered
admin-c:        JJ2197-AP
tech-c:         JJ2197-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2021-09-01T00:41:22Z
source:         APNIC

role:           ABUSE CNNICCN
country:        ZZ
address:        Beijing, China
phone:          +000000000
e-mail:         ipas@cnnic.cn
admin-c:        IP50-AP
tech-c:         IP50-AP
nic-hdl:        AC1601-AP
remarks:        Generated from irt object IRT-CNNIC-CN
remarks:        ipas@cnnic.cn is invalid
abuse-mailbox:  ipas@cnnic.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-09-19T17:20:32Z
source:         APNIC

person:         Jinhui Jia
e-mail:         hegui@ucloud.cn
address:        510,SOHO B,Zhongguancun,Haidian, Beijing
phone:          +86-13811069300
country:        CN
mnt-by:         MAINT-CNNIC-AP
nic-hdl:        JJ2197-AP
last-modified:  2022-03-23T06:19:21Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.34 (WHOIS-AU4)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.78.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2520
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.75.78.149.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025092302 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 24 10:37:51 CST 2025
;; MSG SIZE  rcvd: 106

Host info

149.78.75.106.in-addr.arpa domain name pointer xmhziuk.cn.
149.78.75.106.in-addr.arpa domain name pointer by4hxne5.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.78.75.106.in-addr.arpa	name = xmhziuk.cn.
149.78.75.106.in-addr.arpa	name = by4hxne5.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
175.213.185.129	attackbots	Dec 4 06:45:28 wbs sshd\[24214\]: Invalid user nelly from 175.213.185.129 Dec 4 06:45:28 wbs sshd\[24214\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.213.185.129 Dec 4 06:45:29 wbs sshd\[24214\]: Failed password for invalid user nelly from 175.213.185.129 port 39396 ssh2 Dec 4 06:53:08 wbs sshd\[24924\]: Invalid user teamovero from 175.213.185.129 Dec 4 06:53:08 wbs sshd\[24924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.213.185.129	2019-12-05 01:04:38
193.188.22.188	attackspam	2019-12-04T15:47:11.587870abusebot-6.cloudsearch.cf sshd\[20430\]: Invalid user admin from 193.188.22.188 port 47431	2019-12-05 01:19:07
103.56.114.212	attack	Wordpress XMLRPC attack	2019-12-05 01:09:18
73.203.102.132	attack	Dec 4 15:20:04 server sshd\[30838\]: Invalid user chinnery from 73.203.102.132 Dec 4 15:20:04 server sshd\[30838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-203-102-132.hsd1.co.comcast.net Dec 4 15:20:05 server sshd\[30838\]: Failed password for invalid user chinnery from 73.203.102.132 port 57142 ssh2 Dec 4 15:29:54 server sshd\[878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-203-102-132.hsd1.co.comcast.net user=root Dec 4 15:29:56 server sshd\[878\]: Failed password for root from 73.203.102.132 port 43478 ssh2 ...	2019-12-05 01:17:50
36.79.248.38	attackspambots	Unauthorized connection attempt from IP address 36.79.248.38 on Port 445(SMB)	2019-12-05 01:10:23
201.116.194.210	attack	Dec 4 17:04:09 sbg01 sshd[5317]: Failed password for games from 201.116.194.210 port 28365 ssh2 Dec 4 17:11:02 sbg01 sshd[5350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.116.194.210 Dec 4 17:11:04 sbg01 sshd[5350]: Failed password for invalid user home from 201.116.194.210 port 50157 ssh2	2019-12-05 01:09:05
104.236.224.69	attackbotsspam	Dec 4 17:17:37 nextcloud sshd\[8751\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.224.69 user=root Dec 4 17:17:39 nextcloud sshd\[8751\]: Failed password for root from 104.236.224.69 port 57685 ssh2 Dec 4 17:22:56 nextcloud sshd\[18661\]: Invalid user kirstyn from 104.236.224.69 ...	2019-12-05 01:08:00
88.250.2.223	attackspambots	Unauthorized connection attempt from IP address 88.250.2.223 on Port 445(SMB)	2019-12-05 01:16:25
144.76.84.116	attackspambots	12/04/2019-06:15:47.448451 144.76.84.116 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-05 01:30:11
27.72.102.190	attackspambots	Dec 4 06:25:52 eddieflores sshd\[30445\]: Invalid user adrc from 27.72.102.190 Dec 4 06:25:52 eddieflores sshd\[30445\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.72.102.190 Dec 4 06:25:54 eddieflores sshd\[30445\]: Failed password for invalid user adrc from 27.72.102.190 port 59184 ssh2 Dec 4 06:32:44 eddieflores sshd\[31141\]: Invalid user roshin from 27.72.102.190 Dec 4 06:32:44 eddieflores sshd\[31141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.72.102.190	2019-12-05 00:52:05
183.83.255.214	attack	Unauthorized connection attempt from IP address 183.83.255.214 on Port 445(SMB)	2019-12-05 01:34:58
78.187.31.37	attackspambots	Unauthorized connection attempt from IP address 78.187.31.37 on Port 445(SMB)	2019-12-05 00:56:39
5.89.10.81	attackspambots	Dec 4 04:06:59 home sshd[22660]: Invalid user nicko from 5.89.10.81 port 40606 Dec 4 04:06:59 home sshd[22660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.89.10.81 Dec 4 04:06:59 home sshd[22660]: Invalid user nicko from 5.89.10.81 port 40606 Dec 4 04:07:02 home sshd[22660]: Failed password for invalid user nicko from 5.89.10.81 port 40606 ssh2 Dec 4 04:19:27 home sshd[22789]: Invalid user tit0nich from 5.89.10.81 port 47150 Dec 4 04:19:27 home sshd[22789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.89.10.81 Dec 4 04:19:27 home sshd[22789]: Invalid user tit0nich from 5.89.10.81 port 47150 Dec 4 04:19:28 home sshd[22789]: Failed password for invalid user tit0nich from 5.89.10.81 port 47150 ssh2 Dec 4 04:27:50 home sshd[22891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.89.10.81 user=uucp Dec 4 04:27:52 home sshd[22891]: Failed password for uucp from 5.89.10.81	2019-12-05 01:00:30
59.10.5.156	attack	Dec 4 17:12:00 web8 sshd\[29529\]: Invalid user ident from 59.10.5.156 Dec 4 17:12:00 web8 sshd\[29529\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.10.5.156 Dec 4 17:12:01 web8 sshd\[29529\]: Failed password for invalid user ident from 59.10.5.156 port 46518 ssh2 Dec 4 17:19:04 web8 sshd\[417\]: Invalid user crp from 59.10.5.156 Dec 4 17:19:04 web8 sshd\[417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.10.5.156	2019-12-05 01:25:42
67.55.92.90	attackbots	Dec 3 09:55:46 master sshd[29161]: Failed password for invalid user smmsp from 67.55.92.90 port 52248 ssh2 Dec 4 18:44:25 master sshd[10615]: Failed password for invalid user stifle from 67.55.92.90 port 39842 ssh2	2019-12-05 01:02:29

Recently Reported IPs

1.71.140.154	1.10.176.77	192.228.113.165	43.229.9.35
51.38.112.254	54.221.2.44	196.251.85.178	10.0.189.66
5.34.223.12	37.6.212.144	49.232.151.112	100.24.15.129
44.203.121.250	100.100.174.147	106.15.201.179	194.187.179.65
194.187.179.199	185.151.33.105	7.56.45.228	7.56.45.199