JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.197.78.152

220.197.78.152 was found in our database!

This IP was reported 126 times. Confidence of Abuse is 56%: ?

56%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Guiyang, Guizhou

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.197.78.152

Whois 220.197.78.152

IP Abuse Reports for 220.197.78.152:

This IP address has been reported a total of 126 times from 41 distinct sources. 220.197.78.152 was first reported on December 5th 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 diego	2026-06-12 09:23:07 (5 days ago)	[arem1] 2026-06-12 09:04:17, Client: 220.197.78.152, Protocol: 6, Unauthorized activity to HTTP: GET ... show more [arem1] 2026-06-12 09:04:17, Client: 220.197.78.152, Protocol: 6, Unauthorized activity to HTTP: GET / show less	Web App Attack
🇩🇪 Admins@FBN	2026-06-11 10:37:23 (6 days ago)	FW-PortScan: Traffic Blocked srcport=23578 dstport=11111	Port Scan
🇬🇧 PeravixGroup	2026-06-11 04:23:19 (6 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-10 11:01:05 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-06-10 01:57:45 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-09 20:41:27 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-09 04:25:30 (1 week ago)	Honeypot detection: POP3 email brute-force authentication attempt on port 110. Severity: MEDIUM. Aar ... show more Honeypot detection: POP3 email brute-force authentication attempt on port 110. Severity: MEDIUM. Aaran.cloud show less	Brute-Force
Anonymous	2026-06-07 10:24:11 (1 week ago)	Honeypot hit: Large payload (1457 bytes); 5984 [1] TCP Reported by: https://github.com/sefinek/T-Pot ... show more Honeypot hit: Large payload (1457 bytes); 5984 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-06 10:02:31 (1 week ago)	Honeypot detection: OS command injection in HTTP parameters on port 50000. Severity: MEDIUM. Aaran.c ... show more Honeypot detection: OS command injection in HTTP parameters on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Web App Attack
🇬🇧 PeravixGroup	2026-06-06 01:59:09 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-04 13:14:34 (1 week ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
Anonymous	2026-06-03 15:26:11 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 2379 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 2379 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-03 12:25:40 (2 weeks ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-02 21:28:14 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 3097 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 3097 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-02 12:13:39 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 126 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.151.138.139

🇹🇼 198.235.24.82

🇺🇸 173.197.14.231

🇮🇹 172.253.12.158

🇨🇳 171.217.92.33

🇩🇪 167.94.145.18

🇵🇱 151.115.48.199

🇺🇸 64.64.116.238

🇨🇳 47.93.233.71

🇵🇭 2001:fd8:c8d3:f300:c423:de4:a885:a205

🇺🇿 213.230.65.53

🇬🇧 213.166.84.55

🇧🇷 205.210.31.246

🇳🇱 185.107.80.93

🇪🇸 158.158.104.28

🇰🇭 103.193.207.91

🇳🇬 102.216.134.50

🇺🇸 96.3.154.249

🇺🇸 71.205.245.128

🇺🇸 52.91.90.13