140.75.164.106

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.75.164.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32338
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.75.164.106.			IN	A

;; AUTHORITY SECTION:
.			402	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 09:13:20 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 106.164.75.140.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.164.75.140.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.209.233.225	attack	"Unauthorized connection attempt on SSHD detected"	2020-09-14 02:56:56
78.195.178.119	attack	Sep 13 11:16:36 tor-proxy-08 sshd\[10949\]: Invalid user pi from 78.195.178.119 port 60338 Sep 13 11:16:37 tor-proxy-08 sshd\[10949\]: Connection closed by 78.195.178.119 port 60338 \[preauth\] Sep 13 11:16:37 tor-proxy-08 sshd\[10951\]: Invalid user pi from 78.195.178.119 port 60339 Sep 13 11:16:37 tor-proxy-08 sshd\[10951\]: Connection closed by 78.195.178.119 port 60339 \[preauth\] ...	2020-09-14 02:39:33
138.68.99.46	attackspambots	(sshd) Failed SSH login from 138.68.99.46 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 13 12:49:04 optimus sshd[3841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.99.46 user=root Sep 13 12:49:06 optimus sshd[3841]: Failed password for root from 138.68.99.46 port 41436 ssh2 Sep 13 12:58:53 optimus sshd[7459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.99.46 user=root Sep 13 12:58:55 optimus sshd[7459]: Failed password for root from 138.68.99.46 port 53490 ssh2 Sep 13 13:04:06 optimus sshd[9215]: Invalid user android from 138.68.99.46	2020-09-14 03:07:27
91.137.189.62	attack	Attempted Brute Force (dovecot)	2020-09-14 02:47:41
91.121.173.98	attackbotsspam	Sep 11 19:09:32 Ubuntu-1404-trusty-64-minimal sshd\[21147\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.173.98 user=root Sep 11 19:09:34 Ubuntu-1404-trusty-64-minimal sshd\[21147\]: Failed password for root from 91.121.173.98 port 45984 ssh2 Sep 11 19:17:32 Ubuntu-1404-trusty-64-minimal sshd\[26863\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.173.98 user=root Sep 11 19:17:35 Ubuntu-1404-trusty-64-minimal sshd\[26863\]: Failed password for root from 91.121.173.98 port 51300 ssh2 Sep 11 19:21:16 Ubuntu-1404-trusty-64-minimal sshd\[29246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.173.98 user=root	2020-09-14 03:09:24
5.182.39.64	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "user" at 2020-09-13T17:21:57Z	2020-09-14 02:57:20
85.209.0.103	attack	Sep 13 19:49:45 shivevps sshd[32098]: Failed password for root from 85.209.0.103 port 47552 ssh2 Sep 13 19:49:44 shivevps sshd[32097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.103 user=root Sep 13 19:49:46 shivevps sshd[32097]: Failed password for root from 85.209.0.103 port 47520 ssh2 ...	2020-09-14 02:58:50
47.180.212.134	attack	(sshd) Failed SSH login from 47.180.212.134 (-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 13 20:14:11 grace sshd[26674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.180.212.134 user=root Sep 13 20:14:13 grace sshd[26674]: Failed password for root from 47.180.212.134 port 44644 ssh2 Sep 13 20:17:48 grace sshd[27142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.180.212.134 user=root Sep 13 20:17:50 grace sshd[27142]: Failed password for root from 47.180.212.134 port 41769 ssh2 Sep 13 20:19:41 grace sshd[27180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.180.212.134 user=root	2020-09-14 02:59:20
45.241.166.142	attackspam	1599929438 - 09/12/2020 18:50:38 Host: 45.241.166.142/45.241.166.142 Port: 445 TCP Blocked	2020-09-14 02:40:48
51.77.215.227	attack	51.77.215.227 (FR/France/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 13 11:17:59 server2 sshd[26188]: Failed password for root from 51.77.215.227 port 39602 ssh2 Sep 13 11:16:38 server2 sshd[25629]: Failed password for root from 186.121.217.26 port 41305 ssh2 Sep 13 11:19:20 server2 sshd[27615]: Failed password for root from 46.39.253.178 port 46010 ssh2 Sep 13 11:19:18 server2 sshd[27615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.39.253.178 user=root Sep 13 11:16:28 server2 sshd[25579]: Failed password for root from 88.88.254.207 port 34702 ssh2 IP Addresses Blocked:	2020-09-14 02:55:44
20.36.194.79	attackbots	srvr2: (mod_security) mod_security (id:934100) triggered by 20.36.194.79 (US/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/13 07:52:22 [error] 70302#0: 112258 [client 20.36.194.79] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf"] [line "48"] [id "934100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-javascript"] [tag "platform-multi"] [tag "attack-rce"] [tag "attack-injection-nodejs"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/242"] [redacted] [uri "/p/i/"] [unique_id "159997634234.076801"] [ref ""], client: 20.36.194.79, [redacted] request: "GET /p/i/?a=">alert(String.fromCharCode(88,83,83))&get=f_26&order=ASC&token=f1c6dd4b95196516b8a5cafed373733de1dafb9d HTTP/1.1" [redacted]	2020-09-14 03:06:18
46.162.12.37	attack	[portscan] Port scan	2020-09-14 03:15:27
192.35.169.39	attackspam	TCP (SYN) 192.35.169.39:1550 -> port 7547, len 44	2020-09-14 02:53:12
218.75.210.46	attackbots	Sep 13 17:09:41 OPSO sshd\[27452\]: Invalid user suporte_password from 218.75.210.46 port 5821 Sep 13 17:09:41 OPSO sshd\[27452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.75.210.46 Sep 13 17:09:43 OPSO sshd\[27452\]: Failed password for invalid user suporte_password from 218.75.210.46 port 5821 ssh2 Sep 13 17:13:43 OPSO sshd\[28053\]: Invalid user tweety2 from 218.75.210.46 port 45927 Sep 13 17:13:43 OPSO sshd\[28053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.75.210.46	2020-09-14 02:37:14
27.6.184.227	attackbots	firewall-block, port(s): 23/tcp	2020-09-14 03:08:39

Recently Reported IPs

140.75.164.140	140.75.154.215	140.75.164.156	140.75.164.155
140.75.164.146	140.75.164.16	140.75.164.180	140.75.164.202
140.75.164.222	140.75.164.251	118.89.206.235	140.75.164.249
140.75.164.238	140.75.164.27	140.75.164.205	140.75.164.31
140.75.164.43	140.75.164.33	140.75.164.45	140.75.164.65