JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 113.221.9.152

113.221.9.152 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 100%: ?

100%

ISP	CHINANET HUNAN PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 113.221.9.152

Whois 113.221.9.152

IP Abuse Reports for 113.221.9.152:

This IP address has been reported a total of 22 times from 19 distinct sources. 113.221.9.152 was first reported on June 12th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 LiftUp Hosting	2026-06-17 19:06:34 (1 day ago)	Honeypot hit: Unauthorized connection attempt detected on 23/TELNET	Hacking Port Scan
🇬🇧 PeravixGroup	2026-06-17 01:50:58 (1 day ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇫🇷 security.rdmc.fr	2026-06-16 23:41:20 (1 day ago)	Port Scan Attack proto:TCP src:40412 dst:23	Port Scan
🇺🇸 RAP	2026-06-16 22:39:48 (1 day ago)	2026-06-16 22:39:48 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇵🇱 mkey	2026-06-16 22:10:01 (1 day ago)	Verified scan activity detected by local IDS/firewall correlation. SCAN: HIGHRISK_SINGLEPORT \| PORTS ... show more Verified scan activity detected by local IDS/firewall correlation. SCAN: HIGHRISK_SINGLEPORT \| PORTS=23 \| HITS=2 \| IPSET=ADD \| FIRST=2026-06-17 00:08:30 \| LAST=2026-06-17 00:08:31. Last seen 2026-06-17 00:08:31. show less	Port Scan
🇫🇷 sthoyer.de	2026-06-16 07:22:57 (2 days ago)	Jun 16 09:22:56 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 16 09:22:56 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=113.221.9.152 DST=173.212.223.67 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=5030 DF PROTO=TCP SPT=52031 DPT=23 WINDOW=29040 RES=0x00 SYN URGP=0 ... show less	Port Scan
Anonymous	2026-06-15 18:10:37 (3 days ago)	Unauthorized connection to Telnet port 23	Port Scan
🇺🇸 MPL	2026-06-15 16:52:16 (3 days ago)	tcp/23 (2 or more attempts)	Port Scan
🇫🇷 security.rdmc.fr	2026-06-15 16:34:06 (3 days ago)	Port Scan Attack proto:TCP src:48781 dst:23	Port Scan
🇺🇸 xmission.com	2026-06-15 15:48:47 (3 days ago)	Blocked by UFW (TCP on 23) Source port: 48915 TTL: 50 Packet length: 60 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 48915 TTL: 50 Packet length: 60 TOS: 0x08 This report (for 113.221.9.152) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇦🇹 urnilxfgbez	2026-06-14 22:45:00 (3 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 celestialcity	2026-06-14 21:24:13 (3 days ago)	Blocked by UFW on celestialcityeu [23/tcp] \| SPT: 43421 \| TTL: 50 \| LEN: 60 \| TOS: 0x00 • Reported b ... show more Blocked by UFW on celestialcityeu [23/tcp] \| SPT: 43421 \| TTL: 50 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan IoT Targeted
🇦🇺 dyln	2026-06-14 04:17:00 (4 days ago)	Dyls honeypot brute-force: Telnet (19 total hits)	Brute-Force
🇳🇱 rmvanderspek	2026-06-14 03:30:01 (4 days ago)	Telnet Brute-force (IoT Botnet scan) detected.	Brute-Force IoT Targeted
🇨🇦 Slackin' Jack	2026-06-13 16:14:48 (5 days ago)	Triggered honeypot on port 23. (113.221.9.152)	Port Scan

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 192.42.116.112

🇮🇳 125.19.183.66

🇨🇳 117.165.33.96

🇹🇼 198.235.24.60

🇹🇼 198.235.24.36

🇧🇷 179.228.151.4

🇫🇮 178.20.210.208

🇳🇱 91.92.40.8

🇨🇦 85.217.149.14

🇮🇳 59.145.160.134

🇳🇱 45.148.10.141

🇬🇧 35.203.210.172

🇺🇸 208.109.38.143

🇬🇧 193.163.125.130

🇬🇧 193.163.125.85

🇸🇬 185.200.116.73

🇨🇳 183.232.212.207

🇨🇳 182.113.212.198

🇺🇸 103.143.231.24

🇳🇱 45.148.10.230