JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.96.28.213

122.96.28.213 was found in our database!

This IP was reported 420 times. Confidence of Abuse is 78%: ?

78%

ISP	China Unicom Jiangsu province network
Usage Type	Mobile ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.96.28.213

Whois 122.96.28.213

IP Abuse Reports for 122.96.28.213:

This IP address has been reported a total of 420 times from 111 distinct sources. 122.96.28.213 was first reported on February 7th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-10 19:56:32 (1 day ago)	tcp/1700	Port Scan
🇬🇧 PeravixGroup	2026-06-10 19:38:42 (1 day ago)	Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. A ... show more Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. Aaran.cloud show less	DDoS Attack Hacking
🇬🇧 PeravixGroup	2026-06-10 14:39:09 (1 day ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-09 21:41:58 (2 days ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-09 13:37:30 (3 days ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-09 10:14:09 (3 days ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇺🇸 xmission.com	2026-06-08 16:22:01 (3 days ago)	Blocked by UFW (TCP on 6008) Source port: 64296 TTL: 237 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 6008) Source port: 64296 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 122.96.28.213) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 dispaisyenterprises	2026-06-07 12:09:56 (5 days ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (22 bytes of payload); 8002 [1] TCP Reported by Dis ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (22 bytes of payload); 8002 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 gbzret4d	2026-06-06 03:33:53 (6 days ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 5003 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-06-02 08:41:52 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-06-02 04:07:09 (1 week ago)	Blocked by UFW (TCP on 1132) Source port: 46842 TTL: 237 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1132) Source port: 46842 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 122.96.28.213) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-02 02:16:22 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-06-01 03:31:38 (1 week ago)	Blocked by UFW (TCP on 1443) Source port: 15659 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 1443) Source port: 15659 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 122.96.28.213) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇬 MazenHost	2026-05-31 16:54:57 (1 week ago)	1780246495 - 05/31/2026 19:54:55 Host: 122.96.28.213/122.96.28.213 Port: 6667 TCP Blocked ...	Port Scan
🇺🇸 MPL	2026-05-30 05:50:54 (1 week ago)	tcp/11300	Port Scan

Showing 1 to 15 of 420 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 204.76.203.206

🇧🇷 191.210.72.37

🇺🇸 164.92.82.91

🇨🇳 118.253.182.187

🇩🇪 94.16.17.140

🇺🇸 35.169.206.177

🇩🇪 31.70.78.222

🇬🇧 217.146.80.98

🇦🇷 186.129.15.221

🇬🇧 185.91.69.65

🇨🇳 180.76.236.214

🇬🇾 168.232.145.252

🇩🇪 167.94.146.42

🇭🇰 118.193.44.112

🇨🇳 115.231.78.11

🇺🇸 108.62.59.0

🇨🇳 58.50.72.211

🇭🇰 47.82.87.33

🇬🇧 35.203.210.228

🇺🇸 20.115.90.12