JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.98.62.60

202.98.62.60 was found in our database!

This IP was reported 818 times. Confidence of Abuse is 100%: ?

100%

ISP	CHINANET Chongqing province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	cta.cq.cn
Country	🇨🇳 China
City	Chongqing, Chongqing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.98.62.60

Whois 202.98.62.60

IP Abuse Reports for 202.98.62.60:

This IP address has been reported a total of 818 times from 273 distinct sources. 202.98.62.60 was first reported on January 15th 2024, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Eric	2026-06-11 05:08:36 (2 hours ago)	[Thu Jun 11 05:08:08.098591 2026] [security2:error] [pid 2363139:tid 2363139] [client 202.98.62.60:6 ... show more [Thu Jun 11 05:08:08.098591 2026] [security2:error] [pid 2363139:tid 2363139] [client 202.98.62.60:60002] [client 202.98.62.60] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/nmaplowercheck1781154410"] [unique_id "aipCuPbAcfdku9T5dyVx0QAAABQ"] [Thu Jun 11 05:08:11.139766 2026] [security2:error] [pid 2354983:tid 2354983] [client 202.98.62.60:33280] [client 202.98.62.60] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line ... show less	Hacking Web App Attack
🇫🇷 smtp.com.es	2026-06-11 03:04:45 (4 hours ago)	Brute force attempt.	Brute-Force Email Spam
🇬🇧 PeravixGroup	2026-06-10 12:19:20 (19 hours ago)	Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: ME ... show more Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇮🇹 Progetto1	2026-06-09 16:40:02 (1 day ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇮🇱 spd.co.il	2026-06-06 17:01:21 (4 days ago)	Port scan detected on multiple ports	Port Scan
🇬🇧 PeravixGroup	2026-06-06 12:18:25 (4 days ago)	Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: ME ... show more Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 NXTwoThou	2026-06-05 19:14:11 (5 days ago)	174.78	Web App Attack
🇳🇱 i-turnradio.nl	2026-06-05 11:41:58 (5 days ago)	2026-06-05 13:41:58 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇹🇷 SeczarSecureOps	2026-06-05 06:33:15 (6 days ago)	Auto-blocked by Seczar SecureOps — Port Scan Detection (117 events in 10min) at 2026-06-05 06:33	Port Scan
🇩🇪 IVski	2026-06-04 18:34:11 (6 days ago)	IVski WAF \| WebDAV method detected - potential file upload or modification attempt	Port Scan Brute-Force Web App Attack
🇺🇸 kosada.com	2026-06-04 09:07:00 (6 days ago)	Web vulnerability probing: /evox/about (bogus vhost/SNI)	Web App Attack
🇸🇬 drewf.ink	2026-06-04 08:34:19 (6 days ago)	[08:34] Attempted telnet login on port 23 with username	Brute-Force Exploited Host
🇫🇷 Campus France	2026-06-04 08:06:02 (6 days ago)	...	Brute-Force
🇬🇧 PeravixGroup	2026-06-02 08:29:30 (1 week ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇮 gnom4ik	2026-06-01 06:31:34 (1 week ago)	ban-reviewer auto report; ip=202.98.62.60; scenario=ssh:bruteforce; verdict=valid_ban; confidence=0. ... show more ban-reviewer auto report; ip=202.98.62.60; scenario=ssh:bruteforce; verdict=valid_ban; confidence=0.92; categories=14,15,18,22; active_decisions=2; lookback_decisions=2; nginx_requests=0; appsec_matches=0; auth_events=0; kernel_events=0; signals=ip_decision_count_high show less	Port Scan Hacking Brute-Force SSH

Showing 1 to 15 of 818 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 85.217.140.8

🇮🇳 122.179.140.119

🇻🇳 116.110.152.230

🇹🇭 106.0.137.65

🇺🇸 50.145.58.158

🇬🇧 35.203.211.146

🇨🇳 14.103.9.211

🇳🇱 193.176.31.242

🇺🇸 178.95.106.199

🇲🇽 148.233.37.59

🇵🇰 124.29.226.5

🇲🇦 102.53.15.17

🇷🇴 92.118.39.145

🇨🇳 60.191.125.35

🇳🇱 45.225.135.21

🇩🇪 43.228.157.211

🇺🇸 40.124.120.41

🇮🇱 37.142.162.101

🇨🇦 217.181.81.242

🇪🇪 213.35.128.24