JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.197.78.132

220.197.78.132 was found in our database!

This IP was reported 121 times. Confidence of Abuse is 73%: ?

73%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Guiyang, Guizhou

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.197.78.132

Whois 220.197.78.132

IP Abuse Reports for 220.197.78.132:

This IP address has been reported a total of 121 times from 45 distinct sources. 220.197.78.132 was first reported on December 6th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-12 09:57:19 (2 days ago)	Fail2ban Nginx log integration.	Brute-Force SSH Port Scan
Anonymous	2026-06-11 17:04:23 (3 days ago)	Honeypot hit: Empty payload (likely service probe); 10000 [1] TCP Reported by: https://github.com/se ... show more Honeypot hit: Empty payload (likely service probe); 10000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-10 02:43:29 (5 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 MPL	2026-06-09 17:50:38 (5 days ago)	tcp/18001	Port Scan
🇬🇧 PeravixGroup	2026-06-09 12:31:29 (5 days ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 pltcldvlpr	2026-06-08 13:32:38 (6 days ago)	Bogus Useragent: 220.197.78.132 - - [08/Jun/2026:15:32:37 +0200] "GET /favicon.ico HTTP/1.1" 404 564 ... show more Bogus Useragent: 220.197.78.132 - - [08/Jun/2026:15:32:37 +0200] "GET /favicon.ico HTTP/1.1" 404 564 "-" "Mozilla/4.047745454 Mozilla/4.0 (compatible; MSIE 5.00; Windows 98)" asn=4837 org="CHINA UNICOM China169 Backbone" country=CN ... show less	Bad Web Bot
🇺🇸 MPL	2026-06-07 03:03:29 (1 week ago)	tcp/90 (2 or more attempts)	Port Scan
🇷🇸 Scan	2026-06-06 01:16:58 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇧🇷 ICS Labs	2026-06-04 18:01:29 (1 week ago)	ICS Labs identified 220.197.78.132 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
🇺🇸 xmission.com	2026-06-04 13:25:44 (1 week ago)	Blocked by UFW (TCP on 18091) Source port: 62723 TTL: 237 Packet length: 44 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 18091) Source port: 62723 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 220.197.78.132) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-31 18:00:41 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 23:08:27 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-29 07:29:38 (2 weeks ago)	Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. A ... show more Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. Aaran.cloud show less	DDoS Attack Hacking
🇳🇱 ByeByte API	2026-05-29 00:19:08 (2 weeks ago)	Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 2013. Single burst at 202 ... show more Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 2013. Single burst at 2026-05-29 00:19 UTC. show less	Port Scan
🇩🇪 _ArminS_	2026-05-28 04:14:32 (2 weeks ago)	SP-Scan 51934:1282 detected 2026.05.28 06:14:32 blocked until 2026.07.16 23:17:19	Port Scan

Showing 1 to 15 of 121 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.95.48.38

🇮🇳 157.20.215.101

🇭🇰 152.32.189.121

🇫🇷 91.231.89.45

🇳🇱 89.248.163.200

🇨🇦 85.217.149.12

🇫🇷 85.217.140.39

🇺🇸 79.127.160.156

🇺🇸 71.6.135.131

🇬🇧 45.82.76.133

🇮🇩 222.124.177.148

🇳🇱 212.56.48.4

🇺🇸 205.210.31.90

🇺🇸 194.195.210.47

🇨🇳 183.150.182.30

🇺🇸 174.35.25.181

🇺🇸 142.93.206.94

🇫🇷 137.74.246.152

🇭🇰 128.1.132.220

🇨🇳 106.12.43.166