JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.75.224.165

106.75.224.165 was found in our database!

This IP was reported 278 times. Confidence of Abuse is 100%: ?

100%

ISP	Shanghai UCloud Information Technology Company Limited
Usage Type	Fixed Line ISP
ASN	AS17621
Hostname(s)	xtogi.shop
Domain Name	ucloud.cn
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.75.224.165

Whois 106.75.224.165

IP Abuse Reports for 106.75.224.165:

This IP address has been reported a total of 278 times from 182 distinct sources. 106.75.224.165 was first reported on November 29th 2022, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 amit177	2026-05-25 02:19:18 (1 week ago)		Brute-Force SSH
🇩🇪 jonathanselea.se	2026-05-25 01:21:13 (1 week ago)	May 25 03:21:03 mx1 sshd[3222814]: Failed password for root from 106.75.224.165 port 55832 ssh2 May ... show more May 25 03:21:03 mx1 sshd[3222814]: Failed password for root from 106.75.224.165 port 55832 ssh2 May 25 03:21:05 mx1 sshd[3222833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.224.165 user=root May 25 03:21:07 mx1 sshd[3222833]: Failed password for root from 106.75.224.165 port 55838 ssh2 May 25 03:21:10 mx1 sshd[3222836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.224.165 user=root May 25 03:21:12 mx1 sshd[3222836]: Failed password for root from 106.75.224.165 port 37066 ssh2 ... show less	Brute-Force SSH
🇩🇪 nohacefaltapapel-et.net	2026-05-25 00:50:25 (1 week ago)	2026-05-25T02:50:21.424554ee-nginx-elbernabeu sshd[21606]: Invalid user user from 106.75.224.165 por ... show more 2026-05-25T02:50:21.424554ee-nginx-elbernabeu sshd[21606]: Invalid user user from 106.75.224.165 port 48430 2026-05-25T02:50:22.917290ee-nginx-elbernabeu sshd[21609]: Invalid user user from 106.75.224.165 port 48436 2026-05-25T02:50:24.846866ee-nginx-elbernabeu sshd[21613]: Invalid user user from 106.75.224.165 port 48442 ... show less	Brute-Force SSH
🇩🇪 ipcop.net	2026-05-25 00:00:53 (1 week ago)	2026-05-25T01:58:44.278130+02:00 gw-de11-01.guestgw.net sshd[78699]: Connection closed by authentica ... show more 2026-05-25T01:58:44.278130+02:00 gw-de11-01.guestgw.net sshd[78699]: Connection closed by authenticating user root 106.75.224.165 port 41934 [preauth] 2026-05-25T02:00:46.893025+02:00 gw-de11-01.guestgw.net sshd[79347]: Connection closed by authenticating user root 106.75.224.165 port 50798 [preauth] 2026-05-25T02:00:48.840542+02:00 gw-de11-01.guestgw.net sshd[79358]: Connection closed by authenticating user root 106.75.224.165 port 59292 [preauth] 2026-05-25T02:00:50.718452+02:00 gw-de11-01.guestgw.net sshd[79364]: Connection closed by authenticating user root 106.75.224.165 port 59302 [preauth] 2026-05-25T02:00:52.660764+02:00 gw-de11-01.guestgw.net sshd[79371]: Connection closed by authenticating user root 106.75.224.165 port 59304 [preauth] show less	Brute-Force
🇩🇪 ipcop.net	2026-05-24 21:40:57 (1 week ago)	2026-05-24T23:34:48.337061+02:00 router01.bongen-auto.de sshd[1010347]: Connection closed by authent ... show more 2026-05-24T23:34:48.337061+02:00 router01.bongen-auto.de sshd[1010347]: Connection closed by authenticating user admin 106.75.224.165 port 58022 [preauth] 2026-05-24T23:40:51.244343+02:00 router01.bongen-auto.de sshd[1011195]: Connection closed by authenticating user admin 106.75.224.165 port 55208 [preauth] 2026-05-24T23:40:52.576068+02:00 router01.bongen-auto.de sshd[1011198]: Connection closed by authenticating user admin 106.75.224.165 port 55220 [preauth] 2026-05-24T23:40:55.446798+02:00 router01.bongen-auto.de sshd[1011200]: Connection closed by authenticating user admin 106.75.224.165 port 55224 [preauth] 2026-05-24T23:40:56.834131+02:00 router01.bongen-auto.de sshd[1011208]: Connection closed by authenticating user admin 106.75.224.165 port 54570 [preauth] show less	Brute-Force
🇩🇪 ipcop.net	2026-05-24 18:51:14 (1 week ago)	2026-05-24T20:47:01.392707+02:00 router01.bongen-auto.de sshd[985502]: Connection closed by authenti ... show more 2026-05-24T20:47:01.392707+02:00 router01.bongen-auto.de sshd[985502]: Connection closed by authenticating user root 106.75.224.165 port 40734 [preauth] 2026-05-24T20:49:03.265644+02:00 router01.bongen-auto.de sshd[985909]: Connection closed by authenticating user root 106.75.224.165 port 41068 [preauth] 2026-05-24T20:51:05.478558+02:00 router01.bongen-auto.de sshd[986243]: Connection closed by authenticating user root 106.75.224.165 port 34428 [preauth] 2026-05-24T20:51:07.030192+02:00 router01.bongen-auto.de sshd[986261]: Connection closed by authenticating user root 106.75.224.165 port 48382 [preauth] 2026-05-24T20:51:08.594603+02:00 router01.bongen-auto.de sshd[986263]: Connection closed by authenticating user root 106.75.224.165 port 48392 [preauth] show less	Brute-Force
🇺🇸 bigscoots.com	2026-05-24 18:51:00 (1 week ago)	(sshd) Failed SSH login from 106.75.224.165 (CN/China/xtogi.shop): 5 in the last 3600 secs; Ports: * ... show more (sshd) Failed SSH login from 106.75.224.165 (CN/China/xtogi.shop): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 24 13:50:38 13465 sshd[13003]: Did not receive identification string from 106.75.224.165 port 47164 May 24 13:50:39 13465 sshd[13004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.224.165 user=root May 24 13:50:41 13465 sshd[13004]: Failed password for root from 106.75.224.165 port 47174 ssh2 May 24 13:50:43 13465 sshd[13007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.224.165 user=root May 24 13:50:45 13465 sshd[13007]: Failed password for root from 106.75.224.165 port 47180 ssh2 show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-24 18:19:36 (1 week ago)	(sshd) Failed SSH login from 106.75.224.165 (CN/China/xtogi.shop): 5 in the last 3600 secs; Ports: * ... show more (sshd) Failed SSH login from 106.75.224.165 (CN/China/xtogi.shop): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 24 13:19:02 14815 sshd[20413]: Did not receive identification string from 106.75.224.165 port 36768 May 24 13:19:23 14815 sshd[20414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.224.165 user=root May 24 13:19:25 14815 sshd[20414]: Failed password for root from 106.75.224.165 port 36784 ssh2 May 24 13:19:28 14815 sshd[20428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.224.165 user=root May 24 13:19:30 14815 sshd[20428]: Failed password for root from 106.75.224.165 port 44808 ssh2 show less	Brute-Force SSH
🇩🇪 guldkage	2026-05-24 15:39:30 (1 week ago)	Unauthorized connection attempt detected from IP address 106.75.224.165 to port 22 (ger-03) [H]	Brute-Force Exploited Host
🇧🇷 helix	2026-05-24 12:44:39 (1 week ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
🇸🇪 NordhTech	2026-05-24 12:15:10 (1 week ago)	More than 3 malicious connection attempts, trying port(s) 22/tcp, then blocked from services ...	Port Scan Hacking
🇮🇳 Parth Maniar	2026-05-24 07:48:54 (1 week ago)	This IP address carried out 32 port scanning attempts on 23-05-2026. For more information or to repo ... show more This IP address carried out 32 port scanning attempts on 23-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇮🇳 Parth Maniar	2026-05-24 07:25:22 (1 week ago)	This IP address carried out 6 SSH credential attack (attempts) on 23-05-2026. For more information o ... show more This IP address carried out 6 SSH credential attack (attempts) on 23-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
🇨🇦 Psycho Solutions LLC	2026-05-24 06:08:48 (1 week ago)	Active SSH brute-force detected. Logs: May 24 08:08:36 AVM-361185 sshd[624369]: Failed password for ... show more Active SSH brute-force detected. Logs: May 24 08:08:36 AVM-361185 sshd[624369]: Failed password for root from 106.75.224.165 port 34106 ssh2 May 24 08:08:41 AVM-361185 sshd[624371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty... show less	SSH Brute-Force
🇺🇸 bigscoots.com	2026-05-24 04:40:32 (1 week ago)	106.75.224.165 (CN/China/xtogi.shop), 5 distributed sshd attacks on account [root] in the last 3600 ... show more 106.75.224.165 (CN/China/xtogi.shop), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 23 23:40:14 15216 sshd[14969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.224.165 user=root May 23 23:40:16 15216 sshd[14969]: Failed password for root from 106.75.224.165 port 52738 ssh2 May 23 23:40:17 15216 sshd[14972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.224.165 user=root May 23 23:40:19 15216 sshd[14972]: Failed password for root from 106.75.224.165 port 52414 ssh2 May 23 23:23:38 15216 sshd[11808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.24.77 user=root IP Addresses Blocked: show less	Brute-Force SSH

Showing 91 to 105 of 278 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇦 185.120.89.3

🇩🇪 164.90.234.113

🇮🇩 157.15.40.77

🇺🇸 147.185.132.79

🇺🇸 147.90.235.20

🇨🇳 116.178.130.7

🇺🇸 45.156.129.60

🇱🇦 183.182.115.194

🇺🇸 142.93.15.48

🇧🇷 138.99.207.162

🇨🇳 106.75.144.86

🇮🇩 103.167.23.26

🇧🇩 103.140.166.106

🇮🇳 103.38.37.25

🇨🇦 85.217.149.12

🇺🇸 52.224.241.44

🇺🇸 43.173.69.147

🇨🇳 218.78.131.90

🇩🇪 213.209.159.226

🇩🇪 194.88.98.124