JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.12.240.38

106.12.240.38 was found in our database!

This IP was reported 2,149 times. Confidence of Abuse is 100%: ?

100%

ISP	Beijing Baidu Netcom Science and Technology Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS38365
Domain Name	baidu.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.12.240.38

Whois 106.12.240.38

IP Abuse Reports for 106.12.240.38:

This IP address has been reported a total of 2,149 times from 779 distinct sources. 106.12.240.38 was first reported on February 9th 2026, and the most recent report was 22 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Silly Development	2026-06-10 23:50:04 (22 minutes ago)	Jun 10 23:50:01 mail sshd[4089677]: Invalid user ghost from 106.12.240.38 port 52500 Jun 10 23:50:01 ... show more Jun 10 23:50:01 mail sshd[4089677]: Invalid user ghost from 106.12.240.38 port 52500 Jun 10 23:50:01 mail sshd[4089677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.240.38 Jun 10 23:50:03 mail sshd[4089677]: Failed password for invalid user ghost from 106.12.240.38 port 52500 ssh2 ... show less	Brute-Force SSH
🇩🇪 LoNET	2026-06-10 23:43:22 (29 minutes ago)	Report 2450707 with IP 3334601 for SSH brute-force attack by source 3492932 via ssh-honeypot/0.2.0+h ... show more Report 2450707 with IP 3334601 for SSH brute-force attack by source 3492932 via ssh-honeypot/0.2.0+http show less	Brute-Force SSH
🇮🇹 alph44	2026-06-10 21:35:15 (2 hours ago)	SSH brute force attack detected: 5 failed attempts	Brute-Force
🇺🇸 COMPLEX	2026-06-10 18:13:49 (5 hours ago)	Banned by Multi Agent · node …duop · attempts=5 · SSH brute-force / scan	Brute-Force SSH
🇺🇸 aks4226	2026-06-10 18:02:12 (6 hours ago)	Brute force on SSH.	SSH Brute-Force
Anonymous	2026-06-10 17:17:25 (6 hours ago)	SSH brute force attempt. User: zt, Pass: [REDACTED]	Brute-Force SSH
Anonymous	2026-06-10 17:00:20 (7 hours ago)	SSH brute force attempt. User: stalker, Pass: [REDACTED]	Brute-Force SSH
Anonymous	2026-06-10 16:44:41 (7 hours ago)	SSH brute force attempt. User: facturacion, Pass: [REDACTED]	Brute-Force SSH
Anonymous	2026-06-10 16:24:40 (7 hours ago)	SSH brute force attempt. User: omar, Pass: [REDACTED]	Brute-Force SSH
🇩🇪 christianb	2026-06-10 16:14:21 (7 hours ago)	2026-06-10T18:09:56.525057+02:00 v2202507290157366551 sshd[2473335]: Disconnected from authenticatin ... show more 2026-06-10T18:09:56.525057+02:00 v2202507290157366551 sshd[2473335]: Disconnected from authenticating user postgres 106.12.240.38 port 50078 [preauth] 2026-06-10T18:14:20.871688+02:00 v2202507290157366551 sshd[2476863]: Invalid user remote from 106.12.240.38 port 38084 2026-06-10T18:14:21.102276+02:00 v2202507290157366551 sshd[2476863]: Disconnected from invalid user remote 106.12.240.38 port 38084 [preauth] ... show less	Brute-Force SSH
Anonymous	2026-06-10 16:06:28 (8 hours ago)	SSH brute force attempt. User: monitor, Pass: [REDACTED]	Brute-Force SSH
Anonymous	2026-06-10 15:10:13 (9 hours ago)	2026-06-10T16:44:45.703279+02:00 vps sshd[2570422]: pam_unix(sshd:auth): authentication failure; log ... show more 2026-06-10T16:44:45.703279+02:00 vps sshd[2570422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.240.38 2026-06-10T16:44:47.805058+02:00 vps sshd[2570422]: Failed password for invalid user domreg from 106.12.240.38 port 54890 ssh2 2026-06-10T17:10:12.428369+02:00 vps sshd[2583040]: Invalid user qis from 106.12.240.38 port 59424 ... show less	SSH
🇺🇸 anon333	2026-06-10 13:33:11 (10 hours ago)	Hacker syslog review 1781098391	Hacking
🇩🇪 JoeZappa	2026-06-10 12:18:02 (11 hours ago)	2026-06-10T12:11:13.613403+00:00 lord-kerry-app sshd[643519]: Invalid user monica from 106.12.240.38 ... show more 2026-06-10T12:11:13.613403+00:00 lord-kerry-app sshd[643519]: Invalid user monica from 106.12.240.38 port 38736 2026-06-10T12:15:12.912376+00:00 lord-kerry-app sshd[643585]: Invalid user edward from 106.12.240.38 port 51140 2026-06-10T12:18:01.117089+00:00 lord-kerry-app sshd[643616]: Invalid user jose from 106.12.240.38 port 60726 ... show less	Brute-Force SSH
🇩🇪 gcl046	2026-06-10 11:18:29 (12 hours ago)	2026-06-10T13:08:18.294757+02:00 zg0iiuob sshd-session[658455]: Invalid user mj from 106.12.240.38 p ... show more 2026-06-10T13:08:18.294757+02:00 zg0iiuob sshd-session[658455]: Invalid user mj from 106.12.240.38 port 54592 2026-06-10T13:08:18.507829+02:00 zg0iiuob sshd-session[658455]: Disconnected from invalid user mj 106.12.240.38 port 54592 [preauth] 2026-06-10T13:17:20.907461+02:00 zg0iiuob sshd-session[658908]: Disconnected from authenticating user root 106.12.240.38 port 43302 [preauth] 2026-06-10T13:18:28.982463+02:00 zg0iiuob sshd-session[658962]: Invalid user evil from 106.12.240.38 port 51586 2026-06-10T13:18:29.214734+02:00 zg0iiuob sshd-session[658962]: Disconnected from invalid user evil 106.12.240.38 port 51586 [preauth] ... show less	Brute-Force SSH

Showing 1 to 15 of 2149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.198.224.18

🇬🇧 178.62.87.135

🇬🇧 178.62.80.84

🇳🇱 172.94.9.73

🇫🇮 147.185.133.133

🇵🇰 111.68.98.152

🇷🇺 95.165.159.70

🇷🇺 94.198.1.94

🇫🇷 92.103.134.183

🇩🇪 91.92.240.5

🇺🇸 66.240.236.119

🇺🇸 64.62.197.229

🇺🇸 64.62.197.5

🇨🇳 39.105.205.153

🇮🇶 37.205.113.133

🇬🇧 35.203.211.223

🇬🇧 35.203.211.91

🇺🇸 20.171.28.177

🇮🇳 203.174.22.132

🇺🇸 193.3.53.9