JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.38.172.106

202.38.172.106 was found in our database!

This IP was reported 211 times. Confidence of Abuse is 100%: ?

100%

ISP	Asia Pacific Network Information Centre
Usage Type	Data Center/Web Hosting/Transit
ASN	AS56202
Domain Name	apnic.net
Country	🇮🇳 India
City	Pune, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.38.172.106

Whois 202.38.172.106

IP Abuse Reports for 202.38.172.106:

This IP address has been reported a total of 211 times from 141 distinct sources. 202.38.172.106 was first reported on April 30th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 formality	2026-06-03 04:25:21 (1 day ago)	Invalid user test from 202.38.172.106 port 44480	Brute-Force SSH
🇧🇷 helix	2026-06-03 04:25:00 (1 day ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
🇦🇺 Arbuthnott	2026-06-03 04:24:44 (1 day ago)	Fail2Ban SSH ban from NY-CH45-1	Brute-Force SSH
🇩🇪 moretrix	2026-06-03 04:07:44 (1 day ago)	2026-06-03T06:05:37.430961+02:00 ieyasu.moretrix.com sshd-session[1744940]: User root from 202.38.17 ... show more 2026-06-03T06:05:37.430961+02:00 ieyasu.moretrix.com sshd-session[1744940]: User root from 202.38.172.106 not allowed because none of user's groups are listed in AllowGroups 2026-06-03T06:07:42.887467+02:00 ieyasu.moretrix.com sshd-session[1744958]: Connection from 202.38.172.106 port 46116 on 176.9.64.17 port 22 rdomain "" 2026-06-03T06:07:44.047947+02:00 ieyasu.moretrix.com sshd-session[1744958]: User root from 202.38.172.106 not allowed because none of user's groups are listed in AllowGroups ... show less	Brute-Force SSH
🇹🇷 SentinalX by uzumaru	2026-06-03 03:44:24 (1 day ago)	SSH brute-force detected: 19 failed login attempts in the last 1 hour.	Brute-Force SSH
🇫🇷 Ordis Hysa	2026-06-03 03:07:16 (1 day ago)	2026-06-03T04:56:07.369800 vmi2089077.contaboserver.net sshd[2734917]: Invalid user cat from 202.38. ... show more 2026-06-03T04:56:07.369800 vmi2089077.contaboserver.net sshd[2734917]: Invalid user cat from 202.38.172.106 port 34598 2026-06-03T05:04:46.793542 vmi2089077.contaboserver.net sshd[2738444]: Invalid user netbox from 202.38.172.106 port 52612 2026-06-03T05:07:16.058801 vmi2089077.contaboserver.net sshd[2739448]: Invalid user pivpn from 202.38.172.106 port 60462 ... show less	Brute-Force SSH
🇩🇪 moretrix	2026-06-03 03:05:08 (1 day ago)	2026-06-03T05:02:43.945126+02:00 ieyasu.moretrix.com sshd-session[1741570]: User root from 202.38.17 ... show more 2026-06-03T05:02:43.945126+02:00 ieyasu.moretrix.com sshd-session[1741570]: User root from 202.38.172.106 not allowed because none of user's groups are listed in AllowGroups 2026-06-03T05:05:06.413483+02:00 ieyasu.moretrix.com sshd-session[1741630]: Connection from 202.38.172.106 port 44300 on 176.9.64.17 port 22 rdomain "" 2026-06-03T05:05:07.658836+02:00 ieyasu.moretrix.com sshd-session[1741630]: Invalid user netbox from 202.38.172.106 port 44300 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-03 03:04:35 (1 day ago)	(sshd) Failed SSH login from 202.38.172.106 (IN/India/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 202.38.172.106 (IN/India/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 2 21:54:04 8258 sshd[17194]: Invalid user cat from 202.38.172.106 port 60596 Jun 2 21:54:06 8258 sshd[17194]: Failed password for invalid user cat from 202.38.172.106 port 60596 ssh2 Jun 2 22:02:01 8258 sshd[20321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.38.172.106 user=root Jun 2 22:02:04 8258 sshd[20321]: Failed password for root from 202.38.172.106 port 52602 ssh2 Jun 2 22:04:26 8258 sshd[21431]: Invalid user netbox from 202.38.172.106 port 45614 show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-03 01:43:06 (1 day ago)	(sshd) Failed SSH login from 202.38.172.106 (IN/India/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 202.38.172.106 (IN/India/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 2 20:32:51 15574 sshd[5303]: Invalid user sysadm from 202.38.172.106 port 56572 Jun 2 20:32:53 15574 sshd[5303]: Failed password for invalid user sysadm from 202.38.172.106 port 56572 ssh2 Jun 2 20:40:42 15574 sshd[9171]: Invalid user erpuser from 202.38.172.106 port 60396 Jun 2 20:40:44 15574 sshd[9171]: Failed password for invalid user erpuser from 202.38.172.106 port 60396 ssh2 Jun 2 20:43:00 15574 sshd[10289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.38.172.106 user=root show less	Brute-Force SSH
Anonymous	2026-06-03 01:10:52 (1 day ago)	SSH brute force attempt. User: gitlab, Pass: [REDACTED]	Brute-Force SSH
Anonymous	2026-06-03 00:22:07 (1 day ago)	SSH brute force attempt. User: root, Pass: [REDACTED]	Brute-Force SSH
🇺🇸 technojoe99	2026-06-03 00:21:18 (1 day ago)	Attempted SSH connection from 202.38.172.106 port 57424 asn outside arin; no valid users in that asn	Port Scan SSH
🇺🇸 kipfel★	2026-06-02 23:51:59 (1 day ago)	2026-06-02T16:41:31.331098-07:00 buyvm-vm-512m-las sshd-session[878703]: Invalid user amule from 202 ... show more 2026-06-02T16:41:31.331098-07:00 buyvm-vm-512m-las sshd-session[878703]: Invalid user amule from 202.38.172.106 port 41514 2026-06-02T16:46:03.381041-07:00 buyvm-vm-512m-las sshd-session[878711]: Invalid user testuser2 from 202.38.172.106 port 59042 2026-06-02T16:51:58.347684-07:00 buyvm-vm-512m-las sshd-session[878721]: Invalid user alex from 202.38.172.106 port 49012 ... show less	Brute-Force SSH
🇧🇬 IVPLUS LTD	2026-06-02 23:48:05 (1 day ago)	2026-06-03T02:46:07.515781+03:00 uisp sshd[3409865]: Invalid user testuser2 from 202.38.172.106 port ... show more 2026-06-03T02:46:07.515781+03:00 uisp sshd[3409865]: Invalid user testuser2 from 202.38.172.106 port 35498 2026-06-03T02:46:07.526867+03:00 uisp sshd[3409865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.38.172.106 2026-06-03T02:46:09.454022+03:00 uisp sshd[3409865]: Failed password for invalid user testuser2 from 202.38.172.106 port 35498 ssh2 2026-06-03T02:48:02.408903+03:00 uisp sshd[3414252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.38.172.106 user=root 2026-06-03T02:48:04.123614+03:00 uisp sshd[3414252]: Failed password for root from 202.38.172.106 port 34904 ssh2 ... show less	Brute-Force SSH
🇩🇪 ipcop.net	2026-06-02 23:47:41 (1 day ago)	2026-06-03T01:39:26.844599+02:00 gw-de01-01.guestgw.net sshd[295285]: Invalid user amule from 202.38 ... show more 2026-06-03T01:39:26.844599+02:00 gw-de01-01.guestgw.net sshd[295285]: Invalid user amule from 202.38.172.106 port 36100 2026-06-03T01:39:27.014320+02:00 gw-de01-01.guestgw.net sshd[295285]: Disconnected from invalid user amule 202.38.172.106 port 36100 [preauth] 2026-06-03T01:45:45.795498+02:00 gw-de01-01.guestgw.net sshd[297210]: Invalid user testuser2 from 202.38.172.106 port 51716 2026-06-03T01:45:45.968520+02:00 gw-de01-01.guestgw.net sshd[297210]: Disconnected from invalid user testuser2 202.38.172.106 port 51716 [preauth] 2026-06-03T01:47:40.096395+02:00 gw-de01-01.guestgw.net sshd[297760]: Disconnected from authenticating user root 202.38.172.106 port 39772 [preauth] show less	Brute-Force

Showing 16 to 30 of 211 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.128.15.127

🇩🇪 217.154.173.63

🇺🇸 216.180.246.11

🇭🇰 199.45.154.185

🇲🇦 196.64.101.232

🇹🇭 159.192.73.218

🇺🇸 137.184.235.90

🇰🇷 118.33.113.91

🇳🇿 103.75.11.133

🇷🇴 92.118.39.236

🇭🇰 47.239.228.232

🇲🇽 45.134.9.27

🇹🇿 41.59.64.96

🇮🇳 210.212.136.3

🇺🇸 208.84.100.132

🇨🇱 179.61.103.116

🇺🇸 146.190.140.242

🇨🇳 123.163.253.80

🇵🇭 112.208.179.228

🇺🇸 107.0.200.227