JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.75.16.140

106.75.16.140 was found in our database!

This IP was reported 214 times. Confidence of Abuse is 100%: ?

100%

ISP	Shanghai UCloud Information Technology Company Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS4808
Domain Name	ucloud.cn
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.75.16.140

Whois 106.75.16.140

IP Abuse Reports for 106.75.16.140:

This IP address has been reported a total of 214 times from 66 distinct sources. 106.75.16.140 was first reported on April 29th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 iamxorum	2026-06-02 19:12:15 (1 day ago)	2026-06-02T19:12:15.011631+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74 ... show more 2026-06-02T19:12:15.011631+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74:7f:6e:37:e3:08:00 SRC=106.75.16.140 DST=46.62.222.43 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=56413 DF PROTO=TCP SPT=30288 DPT=6379 WINDOW=64952 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇯🇵 VXG-NET	2026-06-02 15:55:28 (1 day ago)	port=6379, indicator_type=scan	Port Scan
🇹🇷 SeczarSecureOps	2026-06-02 05:04:53 (2 days ago)	Seczar SecureOps — Database Service Brute Force (16 events) — quarantined 43200m on fgdcapi	Brute-Force SSH
🇵🇱 genokrad	2026-06-01 23:11:07 (2 days ago)	Unauthorized connection attempt on TCP/6379 (Redis)	Port Scan
🇩🇪 guldkage	2026-06-01 18:18:11 (2 days ago)	Unauthorized connection attempt detected from IP address 106.75.16.140 to port 6379 (ger-02) [REDIS]	Exploited Host
🇳🇱 ByeByte API	2026-06-01 18:00:58 (2 days ago)	byebyte.space auth: TCP packet to port 6379 (Redis) at 2026-06-01T18:00:57Z. Source port 53576. TCP ... show more byebyte.space auth: TCP packet to port 6379 (Redis) at 2026-06-01T18:00:57Z. Source port 53576. TCP flags: SYN. Packet: 60B, TTL 40, window 64952, IP id 15864. Single packet, dropped at firewall. p0f: OS Linux 2.2.x-3.x (generic match), 24 hops, link DSL. show less	Port Scan
Anonymous	2026-06-01 16:04:33 (2 days ago)	2026-06-01T17:04:32.670033+01:00 vps kernel: [42070041.554229] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-01T17:04:32.670033+01:00 vps kernel: [42070041.554229] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=106.75.16.140 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=38 ID=53205 DF PROTO=TCP SPT=19092 DPT=6379 WINDOW=64952 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇦🇹 Pingger Shikkoken	2026-06-01 11:27:38 (3 days ago)	2026-06-01T11:27:38+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6 ... show more 2026-06-01T11:27:38+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=106.75.16.140 DST=152.53.50.28 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=24940 DF PROTO=TCP SPT=49704 DPT=6379 WINDOW=64952 RES=0x00 SYN URGP=0 show less	Hacking
🇨🇳 pengpeng	2026-05-31 23:10:03 (3 days ago)	monitor: on VM-0-7-ubuntu \| port: 6379 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter	Port Scan
🇯🇵 VXG-NET	2026-05-31 22:32:58 (3 days ago)	port=6379, indicator_type=scan	Port Scan
🇨🇿 lp	2026-05-31 22:15:44 (3 days ago)	anomaly: tcp_port_scan, 501 > threshold 500, repeats 1155 times	Port Scan
🇰🇷 winter	2026-05-31 18:39:27 (3 days ago)	Connection attemp from 106.75.16.140 to port 22	Brute-Force SSH
🇩🇪 guldkage	2026-05-31 11:23:55 (4 days ago)	Unauthorized connection attempt detected from IP address 106.75.16.140 to port 6379 (ger-02) [REDIS]	Exploited Host
🇳🇱 genokrad	2026-05-31 08:18:54 (4 days ago)	Unauthorized connection attempt on TCP/6379 (Redis)	Port Scan
🇹🇷 SeczarSecureOps	2026-05-31 01:16:31 (4 days ago)	Auto-blocked by Seczar SecureOps — High-Risk Port Probe (admin-managed entries) — Redis (15 events i ... show more Auto-blocked by Seczar SecureOps — High-Risk Port Probe (admin-managed entries) — Redis (15 events in 10min) at 2026-05-31 01:16 show less	Web App Attack

Showing 16 to 30 of 214 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.107.88.97

🇵🇰 137.59.230.195

🇻🇳 117.1.164.64

🇮🇩 103.151.140.97

🇮🇩 103.26.209.181

🇸🇬 101.32.248.94

🇫🇷 91.196.152.217

🇺🇸 44.220.188.18

🇺🇸 34.125.153.37

🇺🇸 2604:a880:4:1d0::2fa6:d000

🇰🇷 218.145.181.48

🇨🇿 213.195.192.152

🇳🇱 193.176.31.214

🇧🇷 131.221.72.170

🇲🇾 49.124.153.12

🇱🇹 45.227.254.170

🇸🇬 43.134.172.217

🇵🇰 39.56.64.85

🇮🇳 2401:4900:1c82:f0ad:798b:badf:fe51:fd1

🇻🇳 222.252.16.237