JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.75.142.8

106.75.142.8 was found in our database!

This IP was reported 201 times. Confidence of Abuse is 0%: ?

ISP	Shanghai UCloud Information Technology Company Limited
Usage Type	Commercial
ASN	AS58466
Hostname(s)	jepdmmb.cn jwjmjni.cn
Domain Name	ucloud.cn
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.75.142.8

Whois 106.75.142.8

IP Abuse Reports for 106.75.142.8:

This IP address has been reported a total of 201 times from 98 distinct sources. 106.75.142.8 was first reported on September 22nd 2023, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇦 llighthunter	2024-04-19 11:03:12 (2 years ago)	Apr 17 04:04:43 mail dovecot: pop3-login: Disconnected (no auth attempts in 4 secs): user=<>, rip=10 ... show more Apr 17 04:04:43 mail dovecot: pop3-login: Disconnected (no auth attempts in 4 secs): user=<>, rip=106.75.142.8, lip=192.168.1.80, TLS, session=<QV6fcEAWSvlqS44I> Apr 17 04:04:54 mail dovecot: pop3-login: Disconnected (no auth attempts in 10 secs): user=<>, rip=106.75.142.8, lip=192.168.1.80, TLS handshaking: Connection closed, session=<EYxGcUAWjCpqS44I> Apr 17 04:05:13 mail dovecot: pop3-login: Disconnected (no auth attempts in 19 secs): user=<>, rip=106.75.142.8, lip=192.168.1.80, TLS, session=<K11sckAWfDpqS44I> show less	Port Scan Hacking Spoofing
🇩🇪 Lars	2024-04-18 07:44:31 (2 years ago)	Apr 18 09:44:20 h2996638 dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 1 ... show more Apr 18 09:44:20 h2996638 dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 1 secs): user=<>, rip=106.75.142.8, lip=85.214.19.161, TLS, session=<WsuVI1oWTEdqS44I> Apr 18 09:44:30 h2996638 dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 10 secs): user=<>, rip=106.75.142.8, lip=85.214.19.161, TLS handshaking: Connection closed, session=<YdkxJFoWTEhqS44I> Apr 18 09:44:30 h2996638 dovecot: imap-login: Disconnected: Too many invalid commands (no auth attempts in 0 secs): user=<>, rip=106.75.142.8, lip=85.214.19.161, TLS, session=<13k4JFoWJFlqS44I> ... show less	Hacking Brute-Force
🇩🇪 ghostwarriors	2024-04-18 07:20:36 (2 years ago)	Unauthorized connection attempt detected, SSH Brute-Force	Port Scan Brute-Force SSH
🇺🇸 ISPLtd	2024-04-18 06:06:16 (2 years ago)	Apr 18 03:03:27 SRC=106.75.142.8 PROTO=TCP SPT=10773 DPT=21268 SYN Apr 18 03:05:21 SRC=106.75.142.8 ... show more Apr 18 03:03:27 SRC=106.75.142.8 PROTO=TCP SPT=10773 DPT=21268 SYN Apr 18 03:05:21 SRC=106.75.142.8 PROTO=TCP SPT=57546 DPT=21304 SYN Apr 18 03:06:14 SRC=106.75.142.8 PROTO=TCP SPT=30964 DPT=9140 SYN ... show less	Port Scan
🇩🇪 thierolf.org (Abuse reporting)	2024-04-18 05:35:00 (2 years ago)	Fail2Ban: Mail-Server	Port Scan Brute-Force
🇩🇪 odenwald.social (Abuse reporting)	2024-04-18 02:02:52 (2 years ago)	Fail2Ban: Mail-Server	Port Scan Brute-Force
🇺🇸 ISPLtd	2024-04-17 19:23:19 (2 years ago)	Apr 17 13:22:30 SRC=106.75.142.8 PROTO=TCP SPT=50830 DPT=4244 SYN Apr 17 13:23:04 SRC=106.75.142.8 P ... show more Apr 17 13:22:30 SRC=106.75.142.8 PROTO=TCP SPT=50830 DPT=4244 SYN Apr 17 13:23:04 SRC=106.75.142.8 PROTO=TCP SPT=59494 DPT=44350 SYN Apr 17 13:23:19 SRC=106.75.142.8 PROTO=TCP SPT=19657 DPT=1976 SYN ... show less	Port Scan
🇺🇸 ISPLtd	2024-04-17 18:03:10 (2 years ago)	Apr 17 15:00:19 SRC=106.75.142.8 PROTO=TCP SPT=32811 DPT=500 SYN Apr 17 15:00:58 SRC=106.75.142.8 PR ... show more Apr 17 15:00:19 SRC=106.75.142.8 PROTO=TCP SPT=32811 DPT=500 SYN Apr 17 15:00:58 SRC=106.75.142.8 PROTO=TCP SPT=34110 DPT=12288 SYN Apr 17 15:03:09 SRC=106.75.142.8 PROTO=TCP SPT=27370 DPT=3166 SYN ... show less	Port Scan
Anonymous	2024-04-17 17:12:05 (2 years ago)	2024-04-17T19:11:44.863810v22019037947384217 sshd[28975]: Bad protocol version identification '\026\ ... show more 2024-04-17T19:11:44.863810v22019037947384217 sshd[28975]: Bad protocol version identification '\026\003\001' from 106.75.142.8 port 18066 2024-04-17T19:12:03.367075v22019037947384217 sshd[28976]: Did not receive identification string from 106.75.142.8 port 18390 2024-04-17T19:12:05.406088v22019037947384217 sshd[28978]: Connection closed by 106.75.142.8 port 24336 [preauth] ... show less	Brute-Force SSH
🇩🇪 Hiffo	2024-04-17 11:22:08 (2 years ago)	Apr 17 13:21:50 h2829583 postfix/smtpd[21418]: lost connection after UNKNOWN from unknown[106.75.142 ... show more Apr 17 13:21:50 h2829583 postfix/smtpd[21418]: lost connection after UNKNOWN from unknown[106.75.142.8] Apr 17 13:22:07 h2829583 postfix/smtpd[21421]: lost connection after CONNECT from unknown[106.75.142.8] show less	Email Spam
🇩🇪 arteagasoft	2024-04-17 08:42:32 (2 years ago)	Apr 17 02:42:24 w3bmin sshd[272099]: refused connect from 106.75.142.8 (106.75.142.8) Apr 17 02:42:3 ... show more Apr 17 02:42:24 w3bmin sshd[272099]: refused connect from 106.75.142.8 (106.75.142.8) Apr 17 02:42:31 w3bmin sshd[272133]: refused connect from 106.75.142.8 (106.75.142.8) ... show less	Brute-Force SSH
🇩🇪 mueller-nils.com	2024-04-17 02:49:41 (2 years ago)	Apr 17 04:43:43 [host] kernel: [6237871.168315] [UFW BLOCK] IN=venet0 OUT= MAC= SRC=106.75.142.8 DST ... show more Apr 17 04:43:43 [host] kernel: [6237871.168315] [UFW BLOCK] IN=venet0 OUT= MAC= SRC=106.75.142.8 DST=[munged] LEN=52 TOS=0x00 PREC=0x00 TTL=45 ID=0 DF PROTO=TCP SPT=39184 DPT=4344 WINDOW=1024 RES=0x00 SYN URGP=0 Apr 17 04:44:25 [host] kernel: [623791 show less	Port Scan
🇺🇸 ISPLtd	2024-04-17 02:05:20 (2 years ago)	Apr 16 20:00:16 SRC=106.75.142.8 PROTO=UDP SPT=45847 DPT=5008 Apr 16 20:05:10 SRC=106.75.142.8 PROTO ... show more Apr 16 20:00:16 SRC=106.75.142.8 PROTO=UDP SPT=45847 DPT=5008 Apr 16 20:05:10 SRC=106.75.142.8 PROTO=TCP SPT=14505 DPT=45786 SYN Apr 16 20:05:19 SRC=106.75.142.8 PROTO=TCP SPT=58105 DPT=21269 SYN ... show less	Port Scan
🇺🇦 llighthunter	2024-04-17 01:05:16 (2 years ago)	Apr 17 04:04:43 mail dovecot: pop3-login: Disconnected (no auth attempts in 4 secs): user=<>, rip=10 ... show more Apr 17 04:04:43 mail dovecot: pop3-login: Disconnected (no auth attempts in 4 secs): user=<>, rip=106.75.142.8, lip=192.168.1.80, TLS, session=<QV6fcEAWSvlqS44I> Apr 17 04:04:54 mail dovecot: pop3-login: Disconnected (no auth attempts in 10 secs): user=<>, rip=106.75.142.8, lip=192.168.1.80, TLS handshaking: Connection closed, session=<EYxGcUAWjCpqS44I> Apr 17 04:05:13 mail dovecot: pop3-login: Disconnected (no auth attempts in 19 secs): user=<>, rip=106.75.142.8, lip=192.168.1.80, TLS, session=<K11sckAWfDpqS44I> show less	Port Scan Hacking Spoofing
🇩🇪 mueller-nils.com	2024-04-17 00:38:58 (2 years ago)	Apr 17 02:34:23 [host] kernel: [6230110.139505] [UFW BLOCK] IN=venet0 OUT= MAC= SRC=106.75.142.8 DST ... show more Apr 17 02:34:23 [host] kernel: [6230110.139505] [UFW BLOCK] IN=venet0 OUT= MAC= SRC=106.75.142.8 DST=[munged] LEN=52 TOS=0x00 PREC=0x00 TTL=45 ID=0 DF PROTO=TCP SPT=44518 DPT=16401 WINDOW=1024 RES=0x00 SYN URGP=0 Apr 17 02:34:49 [host] kernel: [62301 show less	Port Scan

Showing 1 to 15 of 201 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.181.108.92

🇫🇮 147.185.133.130

🇫🇷 91.231.89.2

🇺🇸 74.125.78.154

🇳🇱 45.198.224.143

🇺🇸 216.180.246.53

🇮🇩 202.155.19.8

🇸🇬 178.128.95.99

🇰🇷 175.126.37.156

🇭🇰 172.253.4.26

🇺🇸 144.172.94.186

🇫🇮 65.109.78.84

🇺🇸 64.62.197.122

🇺🇸 20.85.246.45

🇳🇱 2a05:1500:702:6:1c00:41ff:fe00:28fd

🇬🇧 193.32.209.247

🇺🇸 185.201.43.38

🇳🇱 176.65.140.201

🇹🇼 172.217.43.218

🇺🇸 108.30.152.216