JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.197.32.148

220.197.32.148 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 4%: ?

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Chengdu, Sichuan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.197.32.148

Whois 220.197.32.148

IP Abuse Reports for 220.197.32.148:

This IP address has been reported a total of 24 times from 14 distinct sources. 220.197.32.148 was first reported on February 27th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 4server	2026-06-10 13:34:03 (2 days ago)	[WedJun1015:34:01.0643182026][security2:error][pid2308593:tid2308786][client220.197.32.148:0]ModSecu ... show more [WedJun1015:34:01.0643182026][security2:error][pid2308593:tid2308786][client220.197.32.148:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?i\)\(10\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|192\\\\\\\\.168\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|172\\\\\\\\.\(1[6-9]\\|2[0-9]\\|3[0-1]\)\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|fe80::\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"24\"][id\"990004\"][msg\"SSRFattempttoprivate/internalnetworkdetected\"][hostname\"www.vanadhoc.ch\"][uri\"/\"][unique_id\"ailnyddEPFCwd62RfUaOUwAAAJc\"] show less	Hacking Web App Attack
🇨🇭 4server	2026-06-08 18:52:43 (3 days ago)	[MonJun0820:52:38.2242172026][security2:error][pid1355264:tid1355489][client220.197.32.148:0]ModSecu ... show more [MonJun0820:52:38.2242172026][security2:error][pid1355264:tid1355489][client220.197.32.148:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?i\)\(10\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|192\\\\\\\\.168\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|172\\\\\\\\.\(1[6-9]\\|2[0-9]\\|3[0-1]\)\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|fe80::\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"24\"][id\"990004\"][msg\"SSRFattempttoprivate/internalnetworkdetected\"][hostname\"minondou-togo.ch\"][uri\"/\"][unique_id\"aicPdvafZ1h6e4fYHsaZ2gAAAEg\"] show less	Hacking Web App Attack
🇦🇺 MAGIC	2026-01-25 00:00:48 (4 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 Phenix Info	2026-01-22 01:33:13 (4 months ago)	SmallGuard.fr/Prestashop Massive 403	Web App Attack
Anonymous	2025-12-30 10:06:27 (5 months ago)	FortiWeb WAF: 8 attacks detected. Threat Score: 8400. Types: Client Management(4), GEO IP(4). Origin ... show more FortiWeb WAF: 8 attacks detected. Threat Score: 8400. Types: Client Management(4), GEO IP(4). Origin: China. show less	Web App Attack
Anonymous	2025-12-27 11:26:07 (5 months ago)	FortiWeb WAF: 76 attacks detected. Threat Score: 8200. Types: Client Management(38), GEO IP(38). Ori ... show more FortiWeb WAF: 76 attacks detected. Threat Score: 8200. Types: Client Management(38), GEO IP(38). Origin: China. show less	Web App Attack
Anonymous	2025-12-26 09:43:15 (5 months ago)	FortiWeb WAF: 50 attacks detected. Threat Score: 6600. Types: Client Management(25), GEO IP(25). Ori ... show more FortiWeb WAF: 50 attacks detected. Threat Score: 6600. Types: Client Management(25), GEO IP(25). Origin: China. show less	Web App Attack
Anonymous	2025-12-24 10:55:01 (5 months ago)	FortiWeb WAF: 14 attacks detected. Threat Score: 9600. Types: Client Management(7), GEO IP(7). Origi ... show more FortiWeb WAF: 14 attacks detected. Threat Score: 9600. Types: Client Management(7), GEO IP(7). Origin: China. show less	Web App Attack
🇨🇭 backslash	2025-12-23 05:38:38 (5 months ago)		Bad Web Bot
Anonymous	2025-12-22 11:33:39 (5 months ago)	FortiWeb WAF: 44 attacks detected. Threat Score: 5800. Types: Client Management(22), GEO IP(22). Ori ... show more FortiWeb WAF: 44 attacks detected. Threat Score: 5800. Types: Client Management(22), GEO IP(22). Origin: China. show less	Web App Attack
🇨🇦 1gz	2025-12-20 21:30:01 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/e-trishte-ndahet-nga-jeta-ne-moshen-52-vjecare-ipeshkevi-i-vaut-te-dejesit-simon-kulli/840638/ UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇦🇺 MAGIC	2025-12-05 03:20:11 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇬🇧 threewalls.co.uk	2025-11-20 06:05:33 (6 months ago)	Triggered bot honeypot on gclproducts.co.uk	Fraud Orders FTP Brute-Force Brute-Force Exploited Host
🇦🇺 MAGIC	2025-10-28 04:00:37 (7 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇫🇷 conseilgouz	2025-09-18 01:37:50 (8 months ago)	siw-Joomla User : try to access forms...	Hacking

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.8

🇧🇷 177.19.165.90

🇰🇿 95.58.255.251

🇸🇬 68.183.178.130

🇪🇬 197.39.254.135

🇲🇽 187.191.48.9

🇧🇩 118.179.102.248

🇩🇪 69.5.169.249

🇩🇪 69.5.169.204

🇺🇸 66.132.186.195

🇳🇱 45.148.10.183

🇺🇸 162.243.138.30

🇺🇸 162.216.149.170

🇰🇷 125.142.37.91

🇹🇼 114.34.106.146

🇺🇸 108.167.177.224

🇲🇦 81.192.46.45

🇩🇪 69.5.169.235

🇰🇷 222.239.251.12

🇭🇰 199.45.155.72