JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.13.72.128

106.13.72.128 was found in our database!

This IP was reported 291 times. Confidence of Abuse is 82%: ?

82%

ISP	Beijing Baidu Netcom Science and Technology Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS38365
Domain Name	baidu.com
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.13.72.128

Whois 106.13.72.128

IP Abuse Reports for 106.13.72.128:

This IP address has been reported a total of 291 times from 191 distinct sources. 106.13.72.128 was first reported on April 3rd 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 YF	2026-05-14 19:32:46 (3 weeks ago)	Pays blacklisté (CN)	Brute-Force Web App Attack
🇺🇸 rjdefrancisco	2026-05-14 07:08:10 (3 weeks ago)	Unwanted traffic detected by honeypot on May 13, 2026: port scans (1 port 22 scan).	Port Scan Brute-Force SSH
🇦🇹 kuppit	2026-05-14 04:22:17 (3 weeks ago)	Honeypot bot from CN: 2 SSH login attempts; first 2026-05-13 09:56:24, last 2026-05-13 10:26:29	Brute-Force SSH
🇧🇩 Md Sakibur Rahman	2026-05-13 12:29:33 (3 weeks ago)	2026-05-13T18:29:30.706405+06:00 zabbix sshd[339627]: pam_unix(sshd:auth): authentication failure; l ... show more 2026-05-13T18:29:30.706405+06:00 zabbix sshd[339627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.72.128 2026-05-13T18:29:33.070411+06:00 zabbix sshd[339627]: Failed password for invalid user postgres from 106.13.72.128 port 55330 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-05-13 10:50:56 (3 weeks ago)	2026-05-13T12:44:33.224067+02:00 hvs sshd-session[246237]: Invalid user tommy from 106.13.72.128 por ... show more 2026-05-13T12:44:33.224067+02:00 hvs sshd-session[246237]: Invalid user tommy from 106.13.72.128 port 47246 2026-05-13T12:44:33.455154+02:00 hvs sshd-session[246237]: Disconnected from invalid user tommy 106.13.72.128 port 47246 [preauth] 2026-05-13T12:49:37.298498+02:00 hvs sshd-session[246290]: Connection closed by 106.13.72.128 port 38086 [preauth] 2026-05-13T12:50:00.842207+02:00 hvs sshd-session[246311]: Connection closed by 106.13.72.128 port 33952 [preauth] 2026-05-13T12:50:55.976282+02:00 hvs sshd-session[246329]: Connection closed by 106.13.72.128 port 34830 [preauth] ... show less	Brute-Force SSH
🇺🇸 shaunc	2026-05-13 10:08:27 (3 weeks ago)	May 13 04:55:05 mailman sshd[21805]: Failed password for root from 106.13.72.128 port 57630 ssh2 May ... show more May 13 04:55:05 mailman sshd[21805]: Failed password for root from 106.13.72.128 port 57630 ssh2 May 13 04:55:06 mailman sshd[21805]: Disconnected from 106.13.72.128 port 57630 [preauth] May 13 05:08:25 mailman sshd[29826]: Connection closed by 106.13.72.128 port 49828 [preauth] show less	Brute-Force SSH
🇩🇪 LoNET	2026-05-13 09:22:54 (3 weeks ago)	Report 2363862 with IP 3313563 for SSH brute-force attack by source 3406087 via ssh-honeypot/0.2.1+h ... show more Report 2363862 with IP 3313563 for SSH brute-force attack by source 3406087 via ssh-honeypot/0.2.1+http show less	Brute-Force SSH
🇨🇿 lp	2026-05-13 09:18:45 (3 weeks ago)	SSH Brute force: 2 attempts were recorded from 106.13.72.128 2026-05-13T10:10:47+02:00 Invalid user ... show more SSH Brute force: 2 attempts were recorded from 106.13.72.128 2026-05-13T10:10:47+02:00 Invalid user pacs from 106.13.72.128 port 42692 2026-05-13T10:19:31+02:00 Disconnected from authenticating user root 106.13.72.128 port 38840 [preauth] show less	Brute-Force SSH
🇧🇷 helix	2026-05-11 11:18:19 (3 weeks ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
🇨🇳 ThreatBook.io	2026-05-08 00:39:29 (4 weeks ago)	ThreatBook Intelligence: Scanner,Dynamic IP more details on https://threatbook.io/ip/106.13.72.128	SSH
🇯🇵 rafale2k	2026-04-29 19:36:02 (1 month ago)	SSH Brute Force	Brute-Force SSH
🇯🇵 rafale2k	2026-04-27 19:21:19 (1 month ago)	SSH Brute Force	Brute-Force SSH
🇨🇳 ThreatBook.io	2026-04-23 00:18:12 (1 month ago)	ThreatBook Intelligence: Scanner,Dynamic IP more details on https://threatbook.io/ip/106.13.72.128	SSH
🇫🇷 SpaceHost-Server	2026-04-22 22:26:05 (1 month ago)		Brute-Force Web App Attack
🇮🇳 Parth Maniar	2026-04-22 07:14:37 (1 month ago)	This IP address carried out 2 SSH credential attack (attempts) on 21-04-2026. For more information o ... show more This IP address carried out 2 SSH credential attack (attempts) on 21-04-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH

Showing 1 to 15 of 291 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 217.160.226.51

🇹🇭 125.24.235.150

🇰🇷 112.121.24.149

🇷🇴 92.118.39.236

🇩🇪 46.101.173.8

🇦🇷 190.124.14.229

🇮🇩 163.7.9.84

🇺🇸 104.152.52.231

🇮🇳 103.173.135.190

🇫🇮 86.38.238.75

🇵🇰 72.255.18.93

🇺🇸 64.62.156.152

🇪🇹 196.189.155.89

🇳🇱 195.178.110.30

🇲🇽 186.96.145.241

🇩🇪 176.65.132.149

🇸🇪 176.10.204.72

🇺🇸 104.152.52.235

🇳🇱 84.29.208.185

🇺🇸 74.115.172.118