JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.63.26.148

106.63.26.148 was found in our database!

This IP was reported 311 times. Confidence of Abuse is 100%: ?

100%

ISP	Chinatelecom Cloudy company Tianjin network
Usage Type	Data Center/Web Hosting/Transit
ASN	AS141679
Domain Name	189.cn
Country	🇨🇳 China
City	Tianjin, Tianjin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.63.26.148

Whois 106.63.26.148

IP Abuse Reports for 106.63.26.148:

This IP address has been reported a total of 311 times from 122 distinct sources. 106.63.26.148 was first reported on July 7th 2024, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 ptlab	2026-06-08 12:30:06 (15 hours ago)	Detected forbidden path/plugin attack from WP-host.	Hacking Web App Attack
🇫🇷 masterguru	2026-06-08 10:36:50 (17 hours ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 106.63.26.148 (CN/China/-): 1 in the ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 106.63.26.148 (CN/China/-): 1 in the last 3600 secs (0-195) show less	Hacking
Anonymous	2026-06-07 23:25:02 (1 day ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇿🇦 slartybartfast69420blazit	2026-06-07 20:02:27 (1 day ago)	Fail2ban picked up 106.63.26.148 attacking nginx	Web App Attack
🇨🇴 adalbertoreyes.org	2026-06-07 17:01:19 (1 day ago)	CategoryPortScan	Port Scan
🇮🇹 mgarofano80	2026-06-07 11:51:33 (1 day ago)		Brute-Force Web App Attack
🇫🇷 pm33	2026-06-07 05:13:24 (1 day ago)	Unsolicited connection attempts or aggressive port scan.	Port Scan
🇫🇷 masterguru	2026-06-07 01:37:21 (2 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 106.63.26.148 (CN/China/-): 2 in the ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 106.63.26.148 (CN/China/-): 2 in the last 3600 secs (0-196) show less	Hacking
🇸🇬 securejdprop	2026-06-06 20:08:57 (2 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing. crowdsecurity/http-probing	Hacking Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-06 20:02:20 (2 days ago)	Fail2ban picked up 106.63.26.148 attacking nginx	Web App Attack
🇫🇮 cleverest.eu	2026-06-06 16:44:50 (2 days ago)	MimirWAF has 1 incident from 1 distinct domain => {"bad_request_uri / env_probe"}	Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-06 10:53:02 (2 days ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇫🇷 masterguru	2026-06-06 08:37:27 (2 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 106.63.26.148 (CN/China/-): 1 in the ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 106.63.26.148 (CN/China/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇧🇷 ICS Labs	2026-06-05 20:04:48 (3 days ago)	ICS Labs identified 106.63.26.148 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
Anonymous	2026-06-05 02:00:02 (4 days ago)	Unauthorized SSH login attempts	Brute-Force SSH

Showing 1 to 15 of 311 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.79.218.164

🇳🇱 178.128.248.249

🇺🇸 147.185.132.241

🇨🇳 120.48.114.235

🇭🇰 103.45.68.123

🇺🇸 64.62.156.123

🇺🇸 64.62.156.122

🇮🇪 54.78.155.243

🇮🇩 36.64.190.82

🇺🇸 34.186.42.196

🇯🇵 8.216.6.189

🇺🇸 2607:f8b0:4001:c5f::123

🇺🇸 2607:f8b0:4001:c56::121

🇰🇷 210.118.224.138

🇧🇷 205.210.31.148

🇭🇰 199.45.154.123

🇩🇪 185.242.3.231

🇺🇸 162.216.149.216

🇩🇪 162.62.58.193

🇻🇳 125.212.217.143