JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.96.28.63

122.96.28.63 was found in our database!

This IP was reported 420 times. Confidence of Abuse is 85%: ?

85%

ISP	China Unicom Jiangsu province network
Usage Type	Mobile ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.96.28.63

Whois 122.96.28.63

IP Abuse Reports for 122.96.28.63:

This IP address has been reported a total of 420 times from 116 distinct sources. 122.96.28.63 was first reported on March 3rd 2022, and the most recent report was 7 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-06-22 16:13:31 (7 minutes ago)	ICS Labs identified 122.96.28.63 as a malicious indicator from threat intelligence.	DDoS Attack Port Scan Hacking Brute-Force Exploited Host
🇺🇸 xmission.com	2026-06-22 13:04:50 (3 hours ago)	Blocked by UFW (TCP on 10214) Source port: 59327 TTL: 237 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 10214) Source port: 59327 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 122.96.28.63) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-22 06:13:53 (10 hours ago)	tcp/5984 (2 or more attempts)	Port Scan
🇺🇸 xmission.com	2026-06-21 00:15:47 (1 day ago)	Blocked by UFW (TCP on 2754) Source port: 63089 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 2754) Source port: 63089 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 122.96.28.63) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 dispaisyenterprises	2026-06-20 06:28:00 (2 days ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 12181 [1] TCP Reported by Di ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 12181 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇦🇷 Bruno	2026-06-20 06:21:02 (2 days ago)	Port Scanner: 122.96.28.63	Port Scan
🇦🇹 Pingger Shikkoken	2026-06-18 03:49:01 (4 days ago)	2026-06-18T03:49:01+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6 ... show more 2026-06-18T03:49:01+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=122.96.28.63 DST=152.53.50.28 LEN=44 TOS=0x00 PREC=0x00 TTL=236 ID=16941 PROTO=TCP SPT=50859 DPT=30009 WINDOW=1024 RES=0x00 SYN URGP=0 show less	Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-18 00:32:20 (4 days ago)	Honeypot hit: HTTP/1.1 request on 14534 GET / Accept: /; 14534 [1] TCP	Web App Attack
🇺🇸 MPL	2026-06-17 03:50:18 (5 days ago)	tcp/9997	Port Scan
🇩🇪 Justin F. \| AS204464	2026-06-15 15:46:42 (1 week ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 12370 [1] TCP Reported by: Justi ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 12370 [1] TCP Reported by: Justin F. show less	Port Scan
🇬🇧 PeravixGroup	2026-06-15 02:13:42 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-14 05:42:00 (1 week ago)	tcp/1311 (2 or more attempts)	Port Scan
🇺🇸 LSPCCU	2026-06-13 23:20:56 (1 week ago)	TSEC Honeypot Network report. Threat score: 100/100. Categories: Port Scan, Hacking, Brute-Force, We ... show more TSEC Honeypot Network report. Threat score: 100/100. Categories: Port Scan, Hacking, Brute-Force, Web App Attack, SSH, IoT Targeted. Honeypot: ssh-telnet, cowrie. Context: 122. show less	Port Scan Hacking Brute-Force Web App Attack SSH IoT Targeted
🇳🇱 BIV	2026-06-13 22:55:16 (1 week ago)	Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 443. Automated tiered (T-Pot+DShi ... show more Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 443. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Bad Web Bot
🇺🇸 MPL	2026-06-13 20:10:15 (1 week ago)	tcp/10171	Port Scan

Showing 1 to 15 of 420 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 2001:4458:c008:808e:31de:a021:699c:9185

🇳🇱 195.178.110.30

🇺🇸 188.213.202.46

🇲🇽 187.189.92.179

🇫🇷 185.192.97.91

🇦🇷 181.97.115.190

🇩🇪 152.53.191.128

🇧🇷 143.105.25.119

🇧🇷 138.185.96.201

🇺🇸 65.49.1.170

🇱🇹 62.60.130.237

🇳🇱 45.153.34.114

🇳🇱 45.148.10.147

🇮🇳 20.244.18.126

🇺🇸 13.58.102.18

🇺🇸 193.3.53.8

🇺🇸 188.213.202.43

🇺🇸 188.213.202.39

🇭🇰 156.226.176.91

🇷🇴 141.98.83.240