JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.75.16.140

106.75.16.140 was found in our database!

This IP was reported 213 times. Confidence of Abuse is 100%: ?

100%

ISP	Shanghai UCloud Information Technology Company Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS4808
Domain Name	ucloud.cn
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.75.16.140

Whois 106.75.16.140

IP Abuse Reports for 106.75.16.140:

This IP address has been reported a total of 213 times from 66 distinct sources. 106.75.16.140 was first reported on April 29th 2026, and the most recent report was 32 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 iamxorum	2026-05-22 08:07:22 (1 week ago)	2026-05-22T08:07:22.531717+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74 ... show more 2026-05-22T08:07:22.531717+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74:7f:6e:37:e3:08:00 SRC=106.75.16.140 DST=46.62.222.43 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=29622 DF PROTO=TCP SPT=55654 DPT=6379 WINDOW=64952 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇯🇵 VXG-NET	2026-05-21 17:57:55 (1 week ago)	port=6379, indicator_type=scan	Port Scan
🇺🇸 donarev419	2026-05-21 02:46:50 (2 weeks ago)	Connection to port 6379 with data transfer. Data preview: *1 $4 info	Port Scan Hacking
🇩🇪 mattk	2026-05-20 22:58:58 (2 weeks ago)	port scan	Port Scan
🇩🇪 centurion	2026-05-20 20:46:22 (2 weeks ago)	Blocked by UFW on ns02 [6379/tcp] Source port: 28908 TTL: 45 Packet length: 60 TOS: 0x00 This repor ... show more Blocked by UFW on ns02 [6379/tcp] Source port: 28908 TTL: 45 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 guldkage	2026-05-20 20:09:19 (2 weeks ago)	Unauthorized connection attempt detected from IP address 106.75.16.140 to port 6379 (ger-02) [REDIS]	Exploited Host
🇦🇹 Pingger Shikkoken	2026-05-20 19:09:25 (2 weeks ago)	2026-05-20T19:09:25+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6 ... show more 2026-05-20T19:09:25+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=106.75.16.140 DST=152.53.50.28 LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=16548 DF PROTO=TCP SPT=58952 DPT=6379 WINDOW=64952 RES=0x00 SYN URGP=0 show less	Hacking
🇨🇭 pingusurmars	2026-05-20 18:52:12 (2 weeks ago)	Blocked by UFW on amperetwo [6379/tcp] Source port: 10114 TTL: 37 Packet length: 60 TOS: 0x00 This ... show more Blocked by UFW on amperetwo [6379/tcp] Source port: 10114 TTL: 37 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇮🇩 hermawan	2026-05-20 16:26:35 (2 weeks ago)	1779294389.012198 106.75.16.140 103.166.156.58 64952_2-4-8-1-3_1412_9 2026-05-20 23:26:29 WIB ...	Email Spam Hacking
🇩🇪 genokrad	2026-05-20 08:56:07 (2 weeks ago)	Unauthorized connection attempt on TCP/6379 (Redis)	Port Scan
🇨🇿 lp	2026-05-20 07:39:50 (2 weeks ago)	anomaly: tcp_port_scan, 501 > threshold 500, repeats 115472 times	Port Scan
🇨🇦 design2web.ca	2026-05-20 07:11:01 (2 weeks ago)	[UniFi FW] Redis unauthorized access attempt on port 6379 (Redis) \| Policy: Region Blocking \| Proto: ... show more [UniFi FW] Redis unauthorized access attempt on port 6379 (Redis) \| Policy: Region Blocking \| Proto: TCP \| Src: 106.75.16.140:33366 \| SrcRegion: CN \| Detected: 2026-05-20 06:00:28 UTC \| ISP: UCLOUD \| D2W UniFi AbuseIPDB Reporter v2 show less	Port Scan
🇯🇵 VXG-NET	2026-05-20 05:02:22 (2 weeks ago)	port=6379, indicator_type=scan	Port Scan
🇩🇪 manuelisus	2026-05-20 04:46:02 (2 weeks ago)	Honeypot REDIS: +10: honeypot_connection, +15: short_automated_session, +20: redis_info_recon, +10: ... show more Honeypot REDIS: +10: honeypot_connection, +15: short_automated_session, +20: redis_info_recon, +10: os_server_linux, +50: abuseipdb_score_high show less	Hacking
🇯🇵 mkaraki	2026-05-19 18:58:30 (2 weeks ago)	1779217109 # Service_probe # SIGNATURE_SEND # source_ip:106.75.16.140 # dst_port:6379 ...	Port Scan

Showing 106 to 120 of 213 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.154.255.26

🇮🇳 106.200.30.161

🇺🇸 54.193.19.114

🇰🇪 196.97.1.123

🇸🇬 194.233.89.40

🇮🇳 43.228.112.254

🇬🇧 35.203.211.68

🇺🇸 20.65.194.40

🇮🇳 14.97.28.238

🇷🇴 2.57.122.238

🇺🇸 192.3.250.115

🇸🇦 169.148.5.222

🇺🇸 162.216.149.237

🇺🇸 124.198.131.39

🇨🇳 115.29.171.141

🇨🇳 106.75.12.244

🇺🇸 91.230.168.90

🇺🇸 66.132.195.124

🇺🇸 64.62.197.137

🇺🇸 35.254.26.12