JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 112.94.253.156

112.94.253.156 was found in our database!

This IP was reported 138 times. Confidence of Abuse is 24%: ?

24%

ISP	United-Communications-Network-Technology-Co-Ltd, GuangZhou
Usage Type	Fixed Line ISP
ASN	AS17622
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Guangzhou, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 112.94.253.156

Whois 112.94.253.156

IP Abuse Reports for 112.94.253.156:

This IP address has been reported a total of 138 times from 42 distinct sources. 112.94.253.156 was first reported on September 9th 2021, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 donarev419	2026-06-17 01:22:34 (14 hours ago)	Connection to port 9000 with data transfer. Data preview: �	Port Scan Hacking
Anonymous	2026-06-14 09:09:13 (3 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-06-12 18:40:56 (4 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-12 03:05:46 (5 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 Cyber Crusader	2025-11-19 14:01:31 (6 months ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇺🇸 MPL	2025-11-03 03:53:41 (7 months ago)	tcp/2103	Port Scan
🇺🇸 MPL	2025-11-03 03:53:41 (7 months ago)	tcp/2103	Port Scan
🇬🇧 guldkage	2025-10-12 17:50:29 (8 months ago)	Unauthorized connection attempt detected from IP address 112.94.253.156 to port 21 (uk-01) [FTP]	Exploited Host
🇺🇸 MPL	2025-09-28 20:54:14 (8 months ago)	tcp/51005	Port Scan
🇺🇸 MPL	2025-09-28 20:54:14 (8 months ago)	tcp/51005	Port Scan
🇺🇸 xmission.com	2025-09-26 02:02:21 (8 months ago)	Blocked by UFW (TCP on 4000) Source port: 35264 TTL: 238 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 4000) Source port: 35264 TTL: 238 Packet length: 44 TOS: 0x00 This report (for 112.94.253.156) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Admins@FBN	2025-09-16 02:35:22 (9 months ago)	FW-PortScan: Traffic Blocked srcport=12362 dstport=22	Port Scan Hacking SSH
🇺🇸 securityalert1st	2025-09-14 13:53:29 (9 months ago)	GET /static/favicon.ico HTTP/1.1	Hacking SQL Injection Brute-Force Bad Web Bot
🇺🇸 securityalert1st	2025-09-14 13:53:29 (9 months ago)	GET /static/favicon.ico HTTP/1.1	Hacking SQL Injection Brute-Force Bad Web Bot
🇺🇸 securityalert1st	2025-09-14 13:53:29 (9 months ago)	GET /static/favicon.ico HTTP/1.1	Hacking SQL Injection Brute-Force Bad Web Bot

Showing 1 to 15 of 138 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇴 212.34.11.244

🇨🇭 213.55.218.103

🇬🇧 195.206.182.207

🇸🇬 194.61.40.7

🇻🇪 190.52.108.5

🇵🇰 182.189.92.162

🇸🇬 159.65.9.57

🇧🇷 138.255.157.62

🇫🇷 91.231.89.215

🇳🇱 91.92.42.147

🇬🇧 51.195.183.227

🇸🇦 51.39.227.117

🇺🇸 47.214.22.7

🇸🇬 43.134.35.72

🇺🇸 34.74.42.99

🇫🇷 2001:41d0:33d:9200::403

🇻🇪 190.97.231.244

🇰🇼 188.236.104.68

🇲🇰 185.233.210.37

🇧🇪 146.148.28.24