JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.96.28.46

122.96.28.46 was found in our database!

This IP was reported 443 times. Confidence of Abuse is 88%: ?

88%

ISP	China Unicom Jiangsu province network
Usage Type	Mobile ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.96.28.46

Whois 122.96.28.46

IP Abuse Reports for 122.96.28.46:

This IP address has been reported a total of 443 times from 123 distinct sources. 122.96.28.46 was first reported on February 19th 2022, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 6kilowatti	2026-06-16 03:44:32 (13 hours ago)	2026-06-16T06:44:32.100542+03:00 oh6ah kernel: [UFW BLOCK] IN=enp2s0 OUT= MAC=00:26:18:a8:d6:75:2e:2 ... show more 2026-06-16T06:44:32.100542+03:00 oh6ah kernel: [UFW BLOCK] IN=enp2s0 OUT= MAC=00:26:18:a8:d6:75:2e:2d:5e:71:aa:73:08:00 SRC=122.96.28.46 DST=192.168.0.102 LEN=44 TOS=0x00 PREC=0x00 TTL=234 ID=24435 PROTO=TCP SPT=57323 DPT=2099 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-06-16 03:08:31 (14 hours ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 cazae	2026-06-15 16:08:00 (1 day ago)	Unauthorized attempt on debian [9010/tcp] Source port: 30523 TTL: 235 Packet length: 44 TOS: 0x08 h ... show more Unauthorized attempt on debian [9010/tcp] Source port: 30523 TTL: 235 Packet length: 44 TOS: 0x08 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-15 02:00:43 (1 day ago)	Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: M ... show more Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇺🇸 MPL	2026-06-12 17:44:41 (3 days ago)	tcp/30003 (2 or more attempts)	Port Scan
🇩🇪 Justin F. \| AS204464	2026-06-12 15:10:46 (4 days ago)	Honeypot [nx-infrastructure]: Large payload (1457 bytes); 8096 [1] TCP Reported by: Justin F.	Bad Web Bot
🇸🇪 NordhTech	2026-06-12 03:45:14 (4 days ago)	More than 3 malicious connection attempts, trying port(s) 1024/tcp, then blocked from services ...	Port Scan Hacking
🇵🇱 sefinek.net	2026-06-11 21:53:19 (4 days ago)	Honeypot hit: Large payload (1457 bytes); 6005 [1] TCP Reported by: https://github.com/sefinek/T-Pot ... show more Honeypot hit: Large payload (1457 bytes); 6005 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-11 06:41:01 (5 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇧🇷 ICS Labs	2026-06-09 19:57:17 (6 days ago)	ICS Labs identified 122.96.28.46 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇺🇸 cybsecaoccol	2026-06-08 02:18:34 (1 week ago)	unauthorized connection or malicious port scan attempted on tcp port 3389 - dr	Port Scan Hacking
🇺🇸 MPL	2026-06-03 12:42:52 (1 week ago)	tcp/1102 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-01 08:12:54 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 Coco Bongo	2026-05-31 15:28:15 (2 weeks ago)	1780241294 - 05/31/2026 17:28:14 Host: 122.96.28.46/122.96.28.46 Port: 3389 TCP Blocked ...	Port Scan
🇩🇪 femboy.cat	2026-05-31 12:50:14 (2 weeks ago)	Port scan to tcp/7001 from 122.96.28.46	Brute-Force

Showing 1 to 15 of 443 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 2404:6800:4008:c01::121

🇩🇪 209.50.181.62

🇦🇺 193.114.134.130

🇭🇰 154.221.20.92

🇹🇭 147.50.103.212

🇯🇵 23.249.16.150

🇶🇦 2600:1900:4260:40e::a0

🇹🇼 211.75.252.252

🇩🇪 209.50.191.38

🇺🇸 207.90.244.21

🇺🇸 173.194.99.25

🇩🇪 150.241.116.9

🇺🇸 142.111.152.62

🇰🇪 102.204.88.70

🇬🇧 77.68.32.155

🇺🇸 66.132.172.237

🇺🇸 47.89.193.63

🇮🇳 13.206.101.163

🇨🇳 223.80.102.26

🇺🇸 208.87.242.161