JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 175.160.94.94

175.160.94.94 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 99%: ?

99%

ISP	CHINA UNICOM Liaoning province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 175.160.94.94

Whois 175.160.94.94

IP Abuse Reports for 175.160.94.94:

This IP address has been reported a total of 30 times from 20 distinct sources. 175.160.94.94 was first reported on June 3rd 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-10 22:45:00 (5 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 RAP	2026-06-10 13:24:28 (5 days ago)	2026-06-10 13:24:28 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇺🇸 xmission.com	2026-06-09 20:46:32 (6 days ago)	Blocked by UFW (TCP on 1433) Source port: 47969 TTL: 239 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 1433) Source port: 47969 TTL: 239 Packet length: 44 TOS: 0x08 This report (for 175.160.94.94) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇷🇸 Smel	2026-06-09 07:53:07 (1 week ago)	SQL/MH Probe, Scan, Hack -	Port Scan Hacking SQL Injection
🇫🇷 ✨	2026-06-09 01:32:23 (1 week ago)	Rule : MSSQLSERVER Rule: MSSQLSERVER Event: MSSQLSERVER UserAccount : sa sa Reason: Password did ... show more Rule : MSSQLSERVER Rule: MSSQLSERVER Event: MSSQLSERVER UserAccount : sa sa Reason: Password did not match that for the login provided. [CLIENT: 175.160.94.94] show less	Port Scan Brute-Force
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-09 00:45:51 (1 week ago)	Honeypot hit: MSSQL traffic (on 1433) with username sa and empty password	Brute-Force
🇺🇸 RAP	2026-06-08 18:34:30 (1 week ago)	2026-06-08 18:34:30 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇺🇸 RAP	2026-06-08 16:41:01 (1 week ago)	2026-06-08 16:41:01 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇺🇸 MPL	2026-06-08 01:42:19 (1 week ago)	tcp/1433 (2 or more attempts)	Port Scan
Anonymous	2026-06-07 22:43:01 (1 week ago)	ET SCAN Suspicious inbound to MSSQL port 1433	Port Scan
Anonymous	2026-06-07 17:03:04 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-06-07 10:50:55 (1 week ago)	tcp/1433	Port Scan
🇺🇸 MPL	2026-06-07 09:02:41 (1 week ago)	tcp/1433 (3 or more attempts)	Port Scan
🇷🇸 Smel	2026-06-07 08:53:06 (1 week ago)	SQL/MH Probe, Scan, Hack -	Port Scan Hacking SQL Injection
🇺🇸 xmission.com	2026-06-07 04:35:51 (1 week ago)	Blocked by UFW (TCP on 1433) Source port: 32875 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1433) Source port: 32875 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 175.160.94.94) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 91.231.89.131

🇳🇱 91.92.40.10

🇹🇭 58.136.36.24

🇷🇴 2.57.122.238

🇺🇸 209.38.74.191

🇧🇷 170.244.235.146

🇺🇸 147.185.132.136

🇩🇪 130.12.180.65

🇯🇵 124.47.225.100

🇻🇳 117.6.196.41

🇨🇦 85.217.149.60

🇷🇴 80.94.92.165

🇨🇦 74.125.16.247

🇩🇪 46.101.171.187

🇬🇧 35.203.211.246

🇺🇸 35.188.112.111

🇬🇧 198.244.226.22

🇺🇸 172.232.170.74

🇨🇳 114.106.135.0

🇨🇳 112.103.94.205