JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.63.26.29

106.63.26.29 was found in our database!

This IP was reported 318 times. Confidence of Abuse is 100%: ?

100%

ISP	Chinatelecom Cloudy company Tianjin network
Usage Type	Data Center/Web Hosting/Transit
ASN	AS141679
Domain Name	189.cn
Country	🇨🇳 China
City	Tianjin, Tianjin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.63.26.29

Whois 106.63.26.29

IP Abuse Reports for 106.63.26.29:

This IP address has been reported a total of 318 times from 122 distinct sources. 106.63.26.29 was first reported on July 14th 2024, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 EDSL	2026-06-07 06:22:37 (13 hours ago)	[mail.edsl.fr] Blocked by SysWarden Firewall (Web Attack)	Web App Attack Hacking Port Scan
🇿🇦 slartybartfast69420blazit	2026-06-06 20:02:21 (23 hours ago)	Fail2ban picked up 106.63.26.29 attacking nginx	Web App Attack
🇫🇷 masterguru	2026-06-06 08:37:12 (1 day ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 106.63.26.29 (CN/China/-): 1 in the l ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 106.63.26.29 (CN/China/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇩🇪 barbarella	2026-06-06 07:31:21 (1 day ago)	Configuration snooping (GET /config.json)	Hacking Web App Attack
🇺🇸 LotPhantom	2026-06-06 02:06:01 (1 day ago)	106.63.26.29 - - [06/Jun/2026:02:05:51 +0000] "GET / HTTP/1.1" 404 0 "-" "Mozilla/5.0 (Macintosh; In ... show more 106.63.26.29 - - [06/Jun/2026:02:05:51 +0000] "GET / HTTP/1.1" 404 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0" ... show less	Web App Attack
🇳🇱 lid3rc	2026-06-05 19:18:12 (2 days ago)	According to the AbuseIPDB risk analysis, the IP address is too high risk.	Web App Attack
🇭🇺 kranem	2026-06-05 15:01:09 (2 days ago)	Triggered Cloudflare WAF from CN. Action taken: BLOCK ASN: 141679 (China Telecom Beijing Tianjin Heb ... show more Triggered Cloudflare WAF from CN. Action taken: BLOCK ASN: 141679 (China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch) Protocol: HTTP/1.1 (GET method) Endpoint: / Timestamp: 2026-06-05T13:44:46Z User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0 show less	Bad Web Bot
🇿🇦 slartybartfast69420blazit	2026-06-04 20:02:31 (2 days ago)	Fail2ban picked up 106.63.26.29 attacking nginx	Web App Attack
🇩🇪 FeG Deutschland	2026-06-04 11:27:42 (3 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇷 EDSL	2026-06-04 04:25:01 (3 days ago)	[gps.edsl.fr] Blocked by SysWarden Firewall (Web Attack Port 443)	Web App Attack Port Scan Hacking
🇺🇸 cwytech	2026-06-04 03:50:21 (3 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/web-asn-lockdown-high.	Bad Web Bot Web App Attack
🇫🇷 ELYAZ	2026-06-03 23:04:37 (3 days ago)	(y4) Failed scan -byebye- from 106.63.26.29 (CN/China/-): (CF_ENABLE)	Hacking
🇨🇭 4server	2026-06-03 21:17:28 (3 days ago)	[WedJun0323:17:20.6344322026][security2:error][pid724090:tid724368][client106.63.26.29:0]ModSecurity ... show more [WedJun0323:17:20.6344322026][security2:error][pid724090:tid724368][client106.63.26.29:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\^/wp-content/plugins/[\^/] /\(readme\\\\\\\\.txt\\|changelog\\\\\\\\.txt\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"381\"][id\"960828\"][msg\"WordPresspluginenumerationblocked\"][hostname\"www.giuristifriburgo.ch\"][uri\"/wp-content/plugins/bridge-core/readme.txt\"][unique_id\"aiCZ4E-I2-W6eYy1a12dYgAAAAY\"] show less	Hacking Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-03 20:02:17 (3 days ago)	Fail2ban picked up 106.63.26.29 attacking nginx	Web App Attack
🇫🇷 pm33	2026-06-03 16:53:56 (4 days ago)	Unsolicited connection attempts or aggressive port scan.	Port Scan

Showing 1 to 15 of 318 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇷 151.234.200.143

🇳🇱 45.148.10.141

🇲🇽 186.96.151.198

🇻🇳 180.93.32.67

🇭🇰 150.5.154.160

🇺🇸 147.185.132.46

🇷🇴 102.129.186.87

🇺🇸 66.132.172.186

🇺🇸 54.86.59.155

🇰🇷 1.245.74.10

🇩🇪 195.248.243.247

🇧🇷 172.253.230.23

🇬🇧 138.68.149.147

🇳🇱 107.181.158.18

🇭🇰 103.43.191.43

🇫🇷 78.241.1.147

🇮🇷 31.7.66.163

🇧🇼 168.167.23.125

🇹🇼 128.14.226.125

🇺🇸 74.125.185.150