JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.96.28.233

122.96.28.233 was found in our database!

This IP was reported 475 times. Confidence of Abuse is 88%: ?

88%

ISP	China Unicom Jiangsu province network
Usage Type	Mobile ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.96.28.233

Whois 122.96.28.233

IP Abuse Reports for 122.96.28.233:

This IP address has been reported a total of 475 times from 120 distinct sources. 122.96.28.233 was first reported on June 7th 2022, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-19 00:18:44 (13 hours ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 Cyber Crusader	2026-06-18 08:14:25 (1 day ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇫🇮 6kilowatti	2026-06-18 03:33:37 (1 day ago)	2026-06-18T06:33:36.459135+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-06-18T06:33:36.459135+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=122.96.28.233 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=229 ID=11244 PROTO=TCP SPT=47040 DPT=11099 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇳🇱 BIV	2026-06-16 12:28:06 (3 days ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:Fatt,tpot:P0f,tpot:Suricata. Ports: 80. Automate ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:Fatt,tpot:P0f,tpot:Suricata. Ports: 80. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Bad Web Bot
🇳🇱 donarev419	2026-06-16 05:41:09 (3 days ago)	Connection to port 10107 with data transfer. Data preview: GET / HTTP/1.1 Host: 87.229.95.155:10107 ... show more Connection to port 10107 with data transfer. Data preview: GET / HTTP/1.1 Host: 87.229.95.155:10107 Accept: / show less	Port Scan Hacking
🇺🇸 MPL	2026-06-12 18:36:50 (6 days ago)	tcp/84	Port Scan
🇵🇱 sefinek.net	2026-06-11 18:55:44 (1 week ago)	Honeypot hit: HTTP/1.1 request on 7047 GET / Accept: /; 7047 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 7047 GET / Accept: /; 7047 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-10 21:23:05 (1 week ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 micropedro	2026-06-10 04:32:28 (1 week ago)	14 incidents: port scanning. First: 2026-03-20 07:47, Last: 2026-06-10 00:32 UTC. Triggers: non-publ ... show more 14 incidents: port scanning. First: 2026-03-20 07:47, Last: 2026-06-10 00:32 UTC. Triggers: non-public-port,firewall-tcp,ufw-repeater,ufw-repeater. show less	Port Scan
🇬🇧 PeravixGroup	2026-06-09 16:24:38 (1 week ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇬🇧 PeravixGroup	2026-06-09 09:23:35 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-08 09:49:23 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-07 15:47:28 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-06 20:26:54 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-03 11:48:56 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 475 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 199.127.250.86

🇺🇸 195.184.76.170

🇩🇪 167.94.146.45

🇸🇪 157.22.73.89

🇵🇰 103.151.46.217

🇳🇱 91.92.40.8

🇷🇺 85.26.235.162

🇵🇱 83.168.89.49

🇺🇸 65.49.1.122

🇳🇱 51.158.205.47

🇳🇱 34.32.217.126

🇺🇸 216.25.89.102

🇵🇱 194.180.49.216

🇳🇱 176.65.139.242

🇺🇸 165.140.84.48

🇨🇳 124.222.42.49

🇺🇸 91.193.232.53

🇳🇱 91.92.40.6

🇱🇹 81.30.98.144

🇱🇹 81.30.98.62