AbuseIPDB » 106.3.140.28

106.3.140.28 was found in our database!

This IP was reported 3,316 times. Confidence of Abuse is 100%: ?

100%

ISP	Beijing capitalonline data service co.,LTD
Usage Type	Commercial
ASN	AS4808
Domain Name	yun-idc.com
Country	China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 106.3.140.28

Whois 106.3.140.28

IP Abuse Reports for 106.3.140.28:

This IP address has been reported a total of 3,316 times from 384 distinct sources. 106.3.140.28 was first reported on March 12th 2024, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
singertc	2025-05-20 09:15:15 (3 hours ago)	2025-05-20 11:15:14 H=([106.3.140.28]) [106.3.140.28] F=<[email protected]> rejected RCPT <ri ... show more2025-05-20 11:15:14 H=([106.3.140.28]) [106.3.140.28] F=<[email protected]> rejected RCPT <[email protected]>: relay not permitted 2025-05-20 11:15:14 H=([106.3.140.28]) [106.3.140.28] F=<[email protected]> rejected RCPT <[email protected]>: relay not permitted ... show less	Email Spam Hacking
Anonymous	2025-05-20 05:10:02 (7 hours ago)	RdpGuard detected brute-force attempt on IMAP	Brute-Force
Anonymous	2025-05-20 00:38:06 (12 hours ago)	2025-05-20T02:38:02.187436+02:00 debian sshd[1498351]: pam_unix(sshd:auth): authentication failure; ... show more2025-05-20T02:38:02.187436+02:00 debian sshd[1498351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.3.140.28 user=nobody 2025-05-20T02:38:04.192449+02:00 debian sshd[1498351]: Failed password for nobody from 106.3.140.28 port 60300 ssh2 ... show less	Brute-Force SSH
KZP	2025-05-19 23:00:11 (13 hours ago)	Automatic report from KZP firewall log.	Port Scan Hacking Brute-Force
ThreatBook.io	2025-05-19 22:56:15 (13 hours ago)	ThreatBook Intelligence: Zombie,IDC more details on https://threatbook.io/ip/106.3.140.28	SSH
userdefender.eu	2025-05-19 22:20:50 (14 hours ago)	2025-05-20T00:20:38.217330+02:00 zrs-network sshd[1545853]: Connection from 106.3.140.28 port 43214 ... show more2025-05-20T00:20:38.217330+02:00 zrs-network sshd[1545853]: Connection from 106.3.140.28 port 43214 on 192.168.1.123 port 22 rdomain "" 2025-05-20T00:20:40.402057+02:00 zrs-network sshd[1545853]: Invalid user guest from 106.3.140.28 port 43214 ... show less	Brute-Force SSH
Anonymous	2025-05-19 21:45:58 (14 hours ago)	May 20 05:45:45 mail sshd[23251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ... show moreMay 20 05:45:45 mail sshd[23251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.3.140.28 May 20 05:45:47 mail sshd[23251]: Failed password for invalid user admin from 106.3.140.28 port 54324 ssh2 show less	Brute-Force SSH
Anonymous	2025-05-19 20:35:06 (16 hours ago)	RdpGuard detected brute-force attempt on SMTP	Brute-Force
rtbh.com.tr	2025-05-19 20:08:14 (16 hours ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
NetWatch	2025-05-19 20:05:55 (16 hours ago)	The IP 106.3.140.28 tried multiple SSH logins	Brute-Force SSH
www.tana.it	2025-05-19 19:15:09 (17 hours ago)	SMTP auth dictionary attack	Brute-Force
Anonymous	2025-05-19 19:09:24 (17 hours ago)	May 20 03:09:10 mail sshd[28465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ... show moreMay 20 03:09:10 mail sshd[28465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.3.140.28 May 20 03:09:13 mail sshd[28465]: Failed password for invalid user guest from 106.3.140.28 port 47088 ssh2 show less	Brute-Force SSH
eskilbrun	2025-05-19 16:59:37 (19 hours ago)	2025-05-19T18:59:37.232303+02:00 linode1.eskil.net postfix/smtpd[50420]: warning: unknown[106.3.140. ... show more2025-05-19T18:59:37.232303+02:00 linode1.eskil.net postfix/smtpd[50420]: warning: unknown[106.3.140.28]: SASL LOGIN authentication failed: (reason unavailable), [email protected] 2025-05-19T18:59:37.258582+02:00 linode1.eskil.net postfix/smtpd[50420]: lost connection after AUTH from unknown[106.3.140.28] 2025-05-19T18:59:37.258637+02:00 linode1.eskil.net postfix/smtpd[50420]: disconnect from unknown[106.3.140.28] ehlo=1 auth=0/1 commands=1/2 ... show less	Brute-Force
Anonymous	2025-05-19 15:51:39 (20 hours ago)		Brute-Force SSH
Woodie	2025-05-19 15:26:35 (21 hours ago)	2025-05-19T11:20:13.899305-04:00 debian sshd[1773343]: pam_unix(sshd:auth): authentication failure; ... show more2025-05-19T11:20:13.899305-04:00 debian sshd[1773343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.3.140.28 2025-05-19T11:20:15.856425-04:00 debian sshd[1773343]: Failed password for invalid user guest from 106.3.140.28 port 59528 ssh2 2025-05-19T11:26:32.919374-04:00 debian sshd[1779008]: Invalid user cmc from 106.3.140.28 port 52888 2025-05-19T11:26:32.922705-04:00 debian sshd[1779008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.3.140.28 2025-05-19T11:26:34.911099-04:00 debian sshd[1779008]: Failed password for invalid user cmc from 106.3.140.28 port 52888 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 3316 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

39.165.221.109

58.17.6.119

91.147.234.159

41.59.197.83

47.128.111.123

165.22.98.8

167.99.153.99

197.49.133.15

194.0.234.107

188.166.150.55

20.168.107.40

176.65.148.57

47.129.171.216

119.246.15.94

92.118.39.68

172.71.222.30

170.39.194.31

195.128.241.207

8.219.94.62

196.218.27.130