JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.197.44.221

220.197.44.221 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 100%: ?

100%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Guiyang, Guizhou

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.197.44.221

Whois 220.197.44.221

IP Abuse Reports for 220.197.44.221:

This IP address has been reported a total of 28 times from 22 distinct sources. 220.197.44.221 was first reported on June 11th 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 voolik.com	2026-06-17 06:12:59 (6 hours ago)	2026-06-17T08:12:41.369028+02:00 bla016-truserv-jhb1-001 sshd[3875334]: refused connect from 220.197 ... show more 2026-06-17T08:12:41.369028+02:00 bla016-truserv-jhb1-001 sshd[3875334]: refused connect from 220.197.44.221 (220.197.44.221) 2026-06-17T08:12:47.198772+02:00 bla016-truserv-jhb1-001 sshd[3875466]: refused connect from 220.197.44.221 (220.197.44.221) 2026-06-17T08:12:52.922789+02:00 bla016-truserv-jhb1-001 sshd[3875817]: refused connect from 220.197.44.221 (220.197.44.221) 2026-06-17T08:12:58.646516+02:00 bla016-truserv-jhb1-001 sshd[3876118]: refused connect from 220.197.44.221 (220.197.44.221) ... show less	Brute-Force SSH
🇧🇷 hostmach	2026-06-17 04:55:26 (7 hours ago)	(sshd) Failed SSH login from 220.197.44.221 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 220.197.44.221 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_SSHD; Logs: Jun 17 01:55:00 fortuna sshd[3966050]: Invalid user user from 220.197.44.221 port 53764 Jun 17 01:55:06 fortuna sshd[3966076]: Invalid user user from 220.197.44.221 port 54358 Jun 17 01:55:10 fortuna sshd[3966398]: Invalid user user from 220.197.44.221 port 55208 Jun 17 01:55:12 fortuna sshd[3966419]: Invalid user user from 220.197.44.221 port 55728 Jun 17 01:55:18 fortuna sshd[3966481]: Invalid user user from 220.197.44.221 port 56018 show less	Brute-Force SSH
🇨🇦 senkodev	2026-06-17 04:01:47 (8 hours ago)	2026-06-17T04:01:46.355591Z [cowrie.ssh.factory.CowrieSSHFactory] New connection: 220.197.44.221:439 ... show more 2026-06-17T04:01:46.355591Z [cowrie.ssh.factory.CowrieSSHFactory] New connection: 220.197.44.221:43908 (158.69.22.11:2222) [session: 1691f6c05fa2] 2026-06-17T04:01:46.847053Z [cowrie.ssh.factory.CowrieSSHFactory] New connection: 220.197.44.221:44128 (158.69.22.11:2222) [session: 528241c896d3] ... show less	Brute-Force SSH
🇩🇪 BanHammer99	2026-06-16 23:44:36 (12 hours ago)	Reported by VPN-sin	Brute-Force SSH
🇩🇪 femboy.cat	2026-06-16 20:46:06 (15 hours ago)	Port scan to tcp/22222 from 220.197.44.221	Brute-Force
🇺🇸 ras07	2026-06-16 14:00:13 (22 hours ago)	Brute force SSH login attempts.	Brute-Force SSH
🇬🇧 gbzret4d	2026-06-16 03:51:51 (1 day ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 2222 [1] TCP	Port Scan
🇺🇸 bigscoots.com	2026-06-15 23:24:51 (1 day ago)	(sshd) Failed SSH login from 220.197.44.221 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 220.197.44.221 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 15 18:24:31 21941 sshd[24153]: Did not receive identification string from 220.197.44.221 port 49522 Jun 15 18:24:33 21941 sshd[24154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.197.44.221 user=root Jun 15 18:24:36 21941 sshd[24154]: Failed password for root from 220.197.44.221 port 49608 ssh2 Jun 15 18:24:43 21941 sshd[24201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.197.44.221 user=root Jun 15 18:24:45 21941 sshd[24201]: Failed password for root from 220.197.44.221 port 50518 ssh2 show less	Brute-Force SSH
🇩🇪 teltow-flaeming.it	2026-06-15 19:47:30 (1 day ago)	SSH Brute Force on mail ...	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-15 13:05:38 (1 day ago)	220.197.44.221 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Por ... show more 220.197.44.221 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 15 08:05:14 14487 sshd[1971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.58.212.28 user=root Jun 15 08:02:57 14487 sshd[638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.58.212.28 user=root Jun 15 08:02:59 14487 sshd[638]: Failed password for root from 123.58.212.28 port 56000 ssh2 Jun 15 07:39:07 14487 sshd[21330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.197.44.221 user=root Jun 15 07:39:09 14487 sshd[21330]: Failed password for root from 220.197.44.221 port 33824 ssh2 IP Addresses Blocked: 123.58.212.28 (HK/Hong Kong/-) show less	Brute-Force SSH
🇺🇸 cazae	2026-06-15 08:34:39 (2 days ago)	2026-06-15T04:34:28.200735-04:00 debian sshd[2477669]: Failed password for root from 220.197.44.221 ... show more 2026-06-15T04:34:28.200735-04:00 debian sshd[2477669]: Failed password for root from 220.197.44.221 port 33526 ssh2 2026-06-15T04:34:30.529549-04:00 debian sshd[2477671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.197.44.221 user=root 2026-06-15T04:34:32.642845-04:00 debian sshd[2477671]: Failed password for root from 220.197.44.221 port 34482 ssh2 2026-06-15T04:34:36.614446-04:00 debian sshd[2477673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.197.44.221 user=root 2026-06-15T04:34:38.552172-04:00 debian sshd[2477673]: Failed password for root from 220.197.44.221 port 35264 ssh2 ... show less	Brute-Force SSH
🇹🇷 Threat.live	2026-06-15 06:15:02 (2 days ago)	Threat.live: Brute Force	Brute-Force
🇧🇬 MazenHost	2026-06-14 23:52:46 (2 days ago)	1781481165 - 06/15/2026 02:52:45 Host: 220.197.44.221/220.197.44.221 Port: 2000 TCP Blocked ...	Port Scan
🇺🇸 bigscoots.com	2026-06-14 08:34:51 (3 days ago)	220.197.44.221 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Por ... show more 220.197.44.221 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 14 03:34:29 14632 sshd[8507]: Failed password for root from 220.197.44.221 port 48778 ssh2 Jun 14 03:34:34 14632 sshd[8509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.197.44.221 user=root Jun 14 03:34:27 14632 sshd[8507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.197.44.221 user=root Jun 14 03:30:12 14632 sshd[6428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.20.210.208 user=root Jun 14 03:30:14 14632 sshd[6428]: Failed password for root from 178.20.210.208 port 45375 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇫🇷 Neoloop	2026-06-14 07:41:02 (3 days ago)	Jun 14 09:40:52 athena sshd[426771]: Failed password for root from 220.197.44.221 port 50910 ssh2 Ju ... show more Jun 14 09:40:52 athena sshd[426771]: Failed password for root from 220.197.44.221 port 50910 ssh2 Jun 14 09:40:55 athena sshd[427427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.197.44.221 user=root Jun 14 09:40:57 athena sshd[427427]: Failed password for root from 220.197.44.221 port 51740 ssh2 Jun 14 09:40:59 athena sshd[428097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.197.44.221 user=root Jun 14 09:41:01 athena sshd[428097]: Failed password for root from 220.197.44.221 port 52322 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 189.56.0.19

🇮🇩 163.7.1.156

🇮🇳 152.56.178.155

🇺🇸 107.175.156.160

🇩🇪 69.5.169.197

🇨🇦 64.180.235.193

🇹🇼 60.250.246.239

🇨🇳 49.77.20.221

🇪🇬 41.33.69.242

🇭🇰 23.224.75.250

🇺🇸 20.64.105.152

🇨🇳 14.103.120.138

🇮🇳 217.216.59.228

🇫🇮 178.20.210.208

🇺🇸 172.217.46.155

🇸🇬 167.99.66.42

🇨🇳 122.96.31.8

🇺🇸 107.180.88.176

🇳🇵 103.180.241.231

🇺🇸 34.193.119.44