JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.197.78.254

220.197.78.254 was found in our database!

This IP was reported 117 times. Confidence of Abuse is 72%: ?

72%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Chongqing, Chongqing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.197.78.254

Whois 220.197.78.254

IP Abuse Reports for 220.197.78.254:

This IP address has been reported a total of 117 times from 45 distinct sources. 220.197.78.254 was first reported on December 5th 2025, and the most recent report was 23 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-07 16:44:28 (23 minutes ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-03 01:19:59 (4 days ago)	Honeypot detection: rsync unauthorized access / data sync attempt on port 873. Severity: LOW. Aaran. ... show more Honeypot detection: rsync unauthorized access / data sync attempt on port 873. Severity: LOW. Aaran.cloud show less	Port Scan
🇬🇧 PeravixGroup	2026-06-02 16:04:54 (5 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 11:06:01 (5 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 01:56:30 (5 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 BIV	2026-06-02 01:03:25 (5 days ago)	Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 12313. Automated t ... show more Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 12313. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Brute-Force SSH
🇩🇪 AS213449.net	2026-05-31 03:07:01 (1 week ago)	05/31/2026-05:06:57.845767 src=220.197.78.254 dst=5.175.170.163:1521 proto=6 msg=ET SCAN Suspicious ... show more 05/31/2026-05:06:57.845767 src=220.197.78.254 dst=5.175.170.163:1521 proto=6 msg=ET SCAN Suspicious inbound to Oracle SQL port 1521 show less	SQL Injection
🇬🇧 PeravixGroup	2026-05-30 10:54:35 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-30 02:54:54 (1 week ago)	Honeypot hit: Large payload (1457 bytes); 16993 [1] TCP	Hacking
🇬🇧 PeravixGroup	2026-05-29 11:40:55 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-28 23:20:10 (1 week ago)	tcp/3689	Port Scan
🇬🇧 PeravixGroup	2026-05-28 11:30:15 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 08:23:04 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 23:06:46 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇩🇪 femboy.cat	2026-05-25 13:13:41 (1 week ago)	Port scan to tcp/16000 from 220.197.78.254	Brute-Force

Showing 1 to 15 of 117 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 152.233.20.103

🇸🇬 147.93.158.72

🇩🇿 129.45.70.118

🇮🇩 103.98.176.164

🇨🇳 103.61.188.93

🇺🇸 66.132.195.105

🇺🇸 152.32.235.107

🇻🇳 113.161.144.72

🇵🇱 95.214.53.157

🇬🇧 89.37.172.139

🇧🇪 35.210.61.208

🇮🇷 5.232.38.186

🇮🇳 2404:6800:4000:1000::12a

🇨🇳 218.17.217.141

🇹🇷 78.187.94.96

🇫🇮 46.62.131.178

🇷🇴 2.57.121.25

🇫🇷 213.199.44.107

🇩🇪 167.94.145.22

🇺🇸 162.243.138.30