JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.194.98.202

202.194.98.202 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 100%: ?

100%

ISP	China Education and Research Network
Usage Type	University/College/School
ASN	AS4538
Hostname(s)	;; reply from unexpected source: 67.207.67.3#53, expected 67.207.67.2#5 ;; Warning: ID mismatch: expected ID 12685, got 6339
Domain Name	cernet.edu.cn
Country	🇨🇳 China
City	Qingdao, Shandong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.194.98.202

Whois 202.194.98.202

IP Abuse Reports for 202.194.98.202:

This IP address has been reported a total of 38 times from 31 distinct sources. 202.194.98.202 was first reported on June 23rd 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-24 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 Hugopvigo	2026-06-24 20:59:54 (2 days ago)	"2026-06-24 20:59:53+00:00 202.194.98.202 IP con score alto (100) detectada en el log."	Brute-Force SSH
Anonymous	2026-06-24 10:51:02 (2 days ago)	Apache.HTTP.Server.cgi-bin.Path.Traversal	Hacking
🇦🇺 dyln	2026-06-24 09:48:28 (2 days ago)	Dyls honeypot brute-force: Telnet (1 total hits)	Brute-Force
🇺🇸 bigscoots.com	2026-06-24 09:27:49 (2 days ago)	(sshd) Failed SSH login from 202.194.98.202 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 202.194.98.202 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 24 04:26:19 14405 sshd[16468]: Invalid user admin from 202.194.98.202 port 58910 Jun 24 04:26:21 14405 sshd[16468]: Failed password for invalid user admin from 202.194.98.202 port 58910 ssh2 Jun 24 04:26:56 14405 sshd[16621]: Invalid user orangepi from 202.194.98.202 port 54814 Jun 24 04:26:58 14405 sshd[16621]: Failed password for invalid user orangepi from 202.194.98.202 port 54814 ssh2 Jun 24 04:27:33 14405 sshd[17046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.194.98.202 user=root show less	Brute-Force SSH
🇫🇷 glmx	2026-06-24 09:22:47 (2 days ago)	SSH honeypot interaction detected. The source host initiated a connection to a monitored SSH endpoin ... show more SSH honeypot interaction detected. The source host initiated a connection to a monitored SSH endpoint, behavior consistent with automated SSH scanning or brute-force reconnaissance. show less	Brute-Force SSH
Anonymous	2026-06-24 09:19:38 (2 days ago)	Automated Report: Fail2Ban block triggered by sshd jail.	Brute-Force SSH
🇺🇸 xmission.com	2026-06-24 09:15:01 (2 days ago)	Blocked by UFW (TCP on 2375) Source port: 60747 TTL: 48 Packet length: 40 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 2375) Source port: 60747 TTL: 48 Packet length: 40 TOS: 0x00 This report (for 202.194.98.202) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 sumnone	2026-06-24 09:06:56 (2 days ago)	Port probing on unauthorized port 2375	Port Scan Hacking Exploited Host
🇨🇦 polycoda	2026-06-24 08:55:30 (2 days ago)	📡 Port scan	Hacking Web App Attack
🇫🇷 zulzeen	2026-06-24 08:52:06 (2 days ago)	[incypit-web] Blocked by SysWarden Firewall [GEO] (Web Attack)	Hacking Web App Attack
🇺🇸 xmission.com	2026-06-24 08:43:30 (2 days ago)	Blocked by UFW (TCP on 2222) Source port: 62727 TTL: 48 Packet length: 40 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 2222) Source port: 62727 TTL: 48 Packet length: 40 TOS: 0x00 This report (for 202.194.98.202) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Admins@FBN	2026-06-24 08:40:27 (2 days ago)	FW-PortScan: Traffic Blocked srcport=59093 dstport=22	Port Scan Hacking SSH
🇨🇿 Countryman	2026-06-24 08:20:49 (2 days ago)	repeated unauthorized connection attempts, host sweep, port 22	Hacking Brute-Force
Anonymous	2026-06-24 08:13:36 (2 days ago)	Apache HTTP Server Directory Traversal.	Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇴 181.115.206.242

🇨🇦 104.205.177.247

🇸🇪 4.223.105.56

🇨🇳 123.163.215.13

🇧🇩 103.154.158.70

🇳🇱 51.15.59.186

🇱🇹 45.227.254.170

🇺🇸 44.192.131.141

🇸🇬 35.187.231.181

🇨🇳 219.155.32.144

🇺🇸 165.154.36.71

🇰🇷 61.76.112.4

🇸🇨 45.194.67.26

🇺🇸 44.197.193.24

🇺🇸 44.174.212.248

🇮🇩 2406:da19:776:6e00:7968:8730:e762:c75c

🇬🇧 195.60.166.255

🇬🇧 193.163.125.221

🇬🇧 188.39.141.60

🇺🇸 172.86.114.38