JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.197.78.2

220.197.78.2 was found in our database!

This IP was reported 133 times. Confidence of Abuse is 61%: ?

61%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Guiyang, Guizhou

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.197.78.2

Whois 220.197.78.2

IP Abuse Reports for 220.197.78.2:

This IP address has been reported a total of 133 times from 45 distinct sources. 220.197.78.2 was first reported on December 5th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-09 01:25:18 (4 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 10:04:45 (5 days ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇩🇪 femboy.cat	2026-06-08 08:36:56 (5 days ago)	Port scan to tcp/4000 from 220.197.78.2	Brute-Force
🇬🇧 PeravixGroup	2026-06-07 15:30:23 (6 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-07 07:28:05 (6 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇷🇸 Smel	2026-06-04 08:48:16 (1 week ago)	Unauthorized Probe/Connection, Hack -	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-04 07:52:31 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-04 01:02:50 (1 week ago)	tcp/2600	Port Scan
🇺🇸 xmission.com	2026-06-03 02:27:06 (1 week ago)	Blocked by UFW (TCP on 222) Source port: 37352 TTL: 237 Packet length: 44 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 222) Source port: 37352 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 220.197.78.2) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-02 13:54:58 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 18:02:01 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 09:50:38 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-30 13:26:38 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 femboy.cat	2026-05-27 19:24:56 (2 weeks ago)	Port scan to tcp/995 from 220.197.78.2	Brute-Force
🇬🇧 PeravixGroup	2026-05-27 12:58:55 (2 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 133 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.116.59.144

🇧🇷 189.114.136.231

🇻🇪 154.62.123.117

🇭🇰 152.32.189.59

🇨🇦 142.93.153.43

🇻🇳 103.179.172.233

🇩🇪 69.5.169.127

🇺🇸 2001:470:1:fb5::22b

🇪🇸 193.125.46.254

🇦🇷 190.221.217.137

🇭🇰 152.32.171.99

🇯🇵 124.156.212.23

🇨🇳 123.145.9.253

🇺🇸 104.248.77.54

🇩🇪 57.129.5.143

🇺🇸 47.88.94.171

🇳🇱 45.148.10.151

🇬🇧 45.82.76.117

🇺🇸 20.65.194.183

🇺🇸 205.210.31.77