JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.194.98.215

202.194.98.215 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 100%: ?

100%

ISP	China Education and Research Network
Usage Type	University/College/School
ASN	AS4538
Domain Name	cernet.edu.cn
Country	🇨🇳 China
City	Qingdao, Shandong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.194.98.215

Whois 202.194.98.215

IP Abuse Reports for 202.194.98.215:

This IP address has been reported a total of 19 times from 17 distinct sources. 202.194.98.215 was first reported on June 24th 2026, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Justin F. \| AS204464	2026-06-26 05:21:20 (11 hours ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 60022 [1] TCP Reported by: Justi ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 60022 [1] TCP Reported by: Justin F. show less	Port Scan
🇩🇪 Pascal den Bekker	2026-06-25 22:27:19 (18 hours ago)	Fail2Ban report - sshd	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-25 21:49:46 (18 hours ago)	(sshd) Failed SSH login from 202.194.98.215 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 202.194.98.215 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 25 16:49:26 15127 sshd[21231]: Did not receive identification string from 202.194.98.215 port 60172 Jun 25 16:49:28 15127 sshd[21232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.194.98.215 user=root Jun 25 16:49:30 15127 sshd[21232]: Failed password for root from 202.194.98.215 port 60174 ssh2 Jun 25 16:49:32 15127 sshd[21234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.194.98.215 user=root Jun 25 16:49:34 15127 sshd[21234]: Failed password for root from 202.194.98.215 port 59894 ssh2 show less	Brute-Force SSH
🇹🇷 Threat.live	2026-06-25 21:10:02 (19 hours ago)	Suspicious Connection Attempts	Brute-Force
Anonymous	2026-06-25 20:36:03 (20 hours ago)	SSH brute force attempt. User: root, Pass: [REDACTED]	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-25 19:44:49 (20 hours ago)	(sshd) Failed SSH login from 202.194.98.215 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 202.194.98.215 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 25 19:44:22 22243 sshd[21027]: Did not receive identification string from 202.194.98.215 port 38446 Jun 25 19:44:23 22243 sshd[21028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.194.98.215 user=root Jun 25 19:44:25 22243 sshd[21028]: Failed password for root from 202.194.98.215 port 38454 ssh2 Jun 25 19:44:27 22243 sshd[21080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.194.98.215 user=root Jun 25 19:44:29 22243 sshd[21080]: Failed password for root from 202.194.98.215 port 38466 ssh2 show less	Brute-Force SSH
🇺🇸 FurrIX vIX	2026-06-25 17:09:08 (23 hours ago)	[FurrIX NOC, Automated, PHY TWO]: Bonked into empty SSH door. Whatcha looking for in there, eh?!	Brute-Force SSH
🇧🇬 OHOST.BG	2026-06-25 11:29:59 (1 day ago)	2026-06-25T14:29:54.265121+03:00 fastdl sshd[3548389]: Failed password for root from 202.194.98.215 ... show more 2026-06-25T14:29:54.265121+03:00 fastdl sshd[3548389]: Failed password for root from 202.194.98.215 port 53576 ssh2 2026-06-25T14:29:53.300453+03:00 fastdl sshd[3548391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.194.98.215 user=root 2026-06-25T14:29:55.192394+03:00 fastdl sshd[3548391]: Failed password for root from 202.194.98.215 port 53578 ssh2 2026-06-25T14:29:56.665485+03:00 fastdl sshd[3548393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.194.98.215 user=root 2026-06-25T14:29:58.966994+03:00 fastdl sshd[3548393]: Failed password for root from 202.194.98.215 port 53582 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-25 10:00:52 (1 day ago)	(sshd) Failed SSH login from 202.194.98.215 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 202.194.98.215 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 25 05:00:37 13586 sshd[797]: Did not receive identification string from 202.194.98.215 port 33214 Jun 25 05:00:38 13586 sshd[798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.194.98.215 user=root Jun 25 05:00:40 13586 sshd[798]: Failed password for root from 202.194.98.215 port 33226 ssh2 Jun 25 05:00:42 13586 sshd[800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.194.98.215 user=root Jun 25 05:00:44 13586 sshd[800]: Failed password for root from 202.194.98.215 port 39722 ssh2 show less	Brute-Force SSH
🇫🇷 glmx	2026-06-25 09:38:22 (1 day ago)	SSH honeypot interaction detected. The source host initiated a connection to a monitored SSH endpoin ... show more SSH honeypot interaction detected. The source host initiated a connection to a monitored SSH endpoint, behavior consistent with automated SSH scanning or brute-force reconnaissance. show less	Brute-Force SSH
🇩🇪 dispaisyenterprises	2026-06-25 07:52:46 (1 day ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 6022 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 6022 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-24 23:34:24 (1 day ago)	Honeypot hit: Empty payload (likely service probe); 2222 [1] TCP	Port Scan
🇨🇦 senkodev	2026-06-24 22:26:17 (1 day ago)	2026-06-24T22:26:16.469090Z [cowrie.ssh.factory.CowrieSSHFactory] New connection: 202.194.98.215:528 ... show more 2026-06-24T22:26:16.469090Z [cowrie.ssh.factory.CowrieSSHFactory] New connection: 202.194.98.215:52872 (158.69.22.11:2222) [session: d322e86b323d] 2026-06-24T22:26:17.002048Z [cowrie.ssh.factory.CowrieSSHFactory] New connection: 202.194.98.215:52876 (158.69.22.11:2222) [session: 34f5c739aed7] ... show less	Brute-Force SSH
🇺🇸 fazar	2026-06-24 16:52:32 (1 day ago)	crowdsecurity/ssh-bf on node: us01	SSH Brute-Force
🇺🇸 Cobalt IT Inc	2026-06-24 16:08:04 (2 days ago)	Jun 24 09:07:57 server01 sshd[5333]: Failed password for root from 202.194.98.215 port 38010 ssh2 Ju ... show more Jun 24 09:07:57 server01 sshd[5333]: Failed password for root from 202.194.98.215 port 38010 ssh2 Jun 24 09:08:00 server01 sshd[5335]: Failed password for root from 202.194.98.215 port 38018 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇺 202.62.129.18

🇨🇳 112.0.139.251

🇻🇳 103.200.25.198

🇨🇳 47.100.241.201

🇺🇸 44.237.0.89

🇺🇸 44.219.6.110

🇺🇸 40.124.174.247

🇬🇧 193.32.209.238

🇸🇬 167.99.72.161

🇺🇸 69.74.29.21

🇬🇧 44.131.80.194

🇺🇸 4.157.250.195

🇬🇧 2a06:4880:6000::78

🇭🇰 199.45.155.80

🇬🇧 158.220.87.147

🇪🇪 95.85.245.10

🇺🇸 66.132.172.244

🇺🇸 44.59.18.113

🇸🇬 35.187.231.181

🇮🇪 207.254.71.129