JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 112.94.253.237

112.94.253.237 was found in our database!

This IP was reported 161 times. Confidence of Abuse is 32%: ?

32%

ISP	United-Communications-Network-Technology-Co-Ltd, GuangZhou
Usage Type	Fixed Line ISP
ASN	AS17622
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Guangzhou, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 112.94.253.237

Whois 112.94.253.237

IP Abuse Reports for 112.94.253.237:

This IP address has been reported a total of 161 times from 59 distinct sources. 112.94.253.237 was first reported on September 4th 2021, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-24 02:12:47 (2 days ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-19 16:30:15 (1 week ago)	unsolicited connect TCP dport 3002 (sport 64252)	Hacking
Anonymous	2026-06-15 22:33:36 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 kexol	2026-06-13 16:10:17 (1 week ago)	6379 port scanned	Port Scan
🇳🇱 BIV	2026-06-13 02:11:53 (1 week ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 6510. Automated tiered ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 6510. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
Anonymous	2026-06-13 00:35:33 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2025-11-06 20:58:49 (7 months ago)	tcp/2049	Port Scan
🇺🇸 MPL	2025-11-06 20:58:49 (7 months ago)	tcp/2049 (2 or more attempts)	Port Scan
🇯🇵 mkaraki	2025-11-01 19:41:04 (7 months ago)	1762026055 # Service_probe # SIGNATURE_SEND # source_ip:112.94.253.237 # dst_port:51005 ...	Port Scan
🇺🇸 MPL	2025-10-31 22:36:30 (7 months ago)	tcp/20201 (2 or more attempts)	Port Scan
🇺🇸 MPL	2025-10-31 22:36:30 (7 months ago)	tcp/20201	Port Scan
🇩🇪 guldkage	2025-10-22 19:41:16 (8 months ago)	Unauthorized connection attempt detected from IP address 112.94.253.237 to port 8291 (ger-03) [Q]	Brute-Force Exploited Host
🇺🇸 MPL	2025-10-20 17:25:30 (8 months ago)	tcp/1194 (3 or more attempts)	Port Scan
Anonymous	2025-10-20 14:40:01 (8 months ago)		Brute-Force Bad Web Bot Web App Attack
🇨🇦 Largnet SOC	2025-10-18 15:34:52 (8 months ago)	112.94.253.237 triggered Icarus honeypot on port 1723. Check us out on github.	Port Scan Hacking

Showing 1 to 15 of 161 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.206.182.218

🇨🇳 111.225.148.28

🇧🇬 80.66.66.66

🇻🇪 200.84.55.59

🇷🇴 193.46.255.86

🇫🇷 185.177.72.54

🇩🇪 167.94.146.59

🇩🇪 148.153.140.111

🇨🇳 111.225.149.180

🇫🇷 88.142.46.185

🇸🇬 47.84.106.205

🇮🇷 5.239.177.223

🇨🇳 218.201.39.71

🇩🇪 216.132.188.61

🇸🇬 104.207.76.183

🇸🇬 43.156.238.228

🇬🇭 41.155.1.22

🇻🇳 27.71.85.106

🇺🇸 20.168.6.79

🇨🇳 182.127.137.188