106.75.130.195 Threat Intelligence and Host Information

May 20, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 106.75.130.195 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 12/100

Host and Network Information

  • Country: China
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: ssh
  • Countries Attacked: Poland, Sweden
  • Passive DNS Results: 88api.wuji.com

Malware Detected on Host

Count: 90 59b7856faec49e90709255a047564c8c9142432817f4129cbcfc586756b2beda d0e6048937bf62374c144770c4fad306bb4d100f71c1fc562351571d388d894a dfa5580c1918a8635a1142ca4f2e7a60aa8b79e6185e8b22f92681df70ac75c8 b75f749feb10c7027afd99b4a850bcd09184ec6ee5a06858b97010e2c98899b7 c3cc48084a36681bf5ecbf06cc0dd84898ced091b3fd45ae6f4703f20a782c30 956298454cde287c94cd12d184e462c663ac7c2fdc674bb78aa270f0025de57c 9920d672a6934ffe623549ce85c2d4986f9c0a54e5bc7c9a77eb8bde24e4e5e7 6bcbb4d0f4879987b15d735afb696d257771ca4af208ec8fbb23177aa04fd59b 7173bbc93c5bd3526ef31ac9a8bf1efe50c214c9e965f6e6fe0c0a10fc962696 a98ca696873fa20f2d242d0b0b896028bb6d6db869e96cacfa2f21fdd6d20827

Open Ports Detected

22

Map

Whois Information

  • inetnum: 106.75.0.0 - 106.75.255.255
  • netname: UCLOUD-NET
  • descr: Shanghai UCloud Information Technology Company Limited
  • country: CN
  • admin-c: JJ2197-AP
  • tech-c: JJ2197-AP
  • abuse-c: AC1601-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-CNNIC-AP
  • mnt-irt: IRT-UCLOUD-NET-CN
  • mnt-lower: MAINT-CNNIC-AP
  • mnt-routes: MAINT-CNNIC-AP
  • last-modified: 2023-11-28T00:56:50Z
  • irt: IRT-UCLOUD-NET-CN
  • address: 2nd Floor 3rd Building No.200 EAST Guoding Road,Yangpu District,Shanghai
  • e-mail: jacky.jia@ucloud.cn
  • abuse-mailbox: jacky.jia@ucloud.cn
  • admin-c: JJ2197-AP
  • tech-c: JJ2197-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2021-09-01T00:41:22Z
  • role: ABUSE CNNICCN
  • country: ZZ
  • address: Beijing, China
  • phone: +000000000
  • e-mail: ipas@cnnic.cn
  • admin-c: IP50-AP
  • tech-c: IP50-AP
  • nic-hdl: AC1601-AP
  • abuse-mailbox: ipas@cnnic.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2024-07-30T11:55:46Z
  • person: Jinhui Jia
  • e-mail: hegui@ucloud.cn
  • address: 510,SOHO B,Zhongguancun,Haidian, Beijing
  • phone: +86-13811069300
  • country: CN
  • mnt-by: MAINT-CNNIC-AP
  • nic-hdl: JJ2197-AP
  • last-modified: 2022-03-23T06:19:21Z

Links to attack logs

vultrparis-ssh-bruteforce-ip-list-2025-05-20

Share on: