106.75.137.105 Threat Intelligence and Host Information

May 08, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 106.75.137.105 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

View other sources: Spamhaus VirusTotal

Country: China
Network:
Noticed: times
Protocols Attacked: SSH

Open Ports Detected

10000 8000 8001 8004 8006 8008 8009 8010 8014 8017 8020 8024 8025 8027 8034 8039 8050 8051 8052 8060 8069 8074 8078 8080 8081 8086 8089 8090 8091 8099 8116 8119 8124 8126 8127 8137 8139 8154 8157 8158 8170 8176 8181 8182 8183 8188 8189 8190 8194 8200 8237 8241 8249 8250 8291 8322 8333 8385 8393 8401 8410 8413 8418 8424 8426 8429 8430 8432 8436 8440 8441 8448 8456 8457 8466 8470 8480 8500 8503 8504 8505 8514 8515 8526 8531 8532 8543 8544 8545 8548 8556 8558 8560 8563 8564 8566 8567 8569 8575 8577 8578 8582 8584 8586 8590 8599 8640 8641 8649 8680 8701 8728 8732 8733 8764 8766 8767 8779 8787 8789 8800 8803 8811 8813 8817 8819 8822 8832 8833 8834 8835 8838 8841 8846 8847 8850 8853 8854 8855 8859 8862 8875 8878 8880 8888 8889 8890 8891 8900 8906 8910 8911 8915 8916 8969 8980 8993 9000 9001 9002 9009 9011 9024 9030 9032 9034 9042 9044 9045 9046 9051 9052 9065 9066 9067 9068 9073 9075 9077 9078 9079 9080 9089 9090 9092 9095 9099 9100 9102 9103 9107 9108 9116 9120 9124 9129 9134 9145 9147 9150 9151 9152 9154 9156 9158 9160 9164 9165 9168 9171 9172 9173 9179 9186 9190 9191 9194 9199 9200 9203 9206 9209 9219 9220 9223 9243 9291 9292 9295 9306 9313 9333 9383 9387 9398 9399 9400 9418 9441 9443 9456 9488 9501 9507 9513 9515 9527 9530 9595 9600 9611 9633 9663 9674 9700 9710 9711 9754 9761 9800 9861 9869 9872 9876 9908 9923 9939 9943 9944 9981 9988 9991 9992 9993 9998 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465

Map

Whois Information

inetnum: 106.75.0.0 - 106.75.255.255
netname: UCLOUD-NET
descr: Shanghai UCloud Information Technology Company Limited
country: CN
admin-c: JJ2197-AP
tech-c: JJ2197-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-UCLOUD-NET-CN
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
last-modified: 2023-11-28T00:56:50Z
irt: IRT-UCLOUD-NET-CN
address: 2nd Floor 3rd Building No.200 EAST Guoding Road,Yangpu District,Shanghai
e-mail: jacky.jia@ucloud.cn
abuse-mailbox: jacky.jia@ucloud.cn
admin-c: JJ2197-AP
tech-c: JJ2197-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2021-09-01T00:41:22Z
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2024-07-30T11:55:46Z
person: Jinhui Jia
e-mail: hegui@ucloud.cn
address: 510,SOHO B,Zhongguancun,Haidian, Beijing
phone: +86-13811069300
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: JJ2197-AP
last-modified: 2022-03-23T06:19:21Z

Links to attack logs

****** bruteforce-ip-list-2020-10-20 ****** ******

Share on: