JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.197.78.71

220.197.78.71 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 79%: ?

79%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Guiyang, Guizhou

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.197.78.71

Whois 220.197.78.71

IP Abuse Reports for 220.197.78.71:

This IP address has been reported a total of 141 times from 50 distinct sources. 220.197.78.71 was first reported on December 6th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 dispaisyenterprises	2026-06-11 10:39:47 (2 days ago)	Honeypot [fra-de-honeypot]: Large payload (1457 bytes); 5080 [1] TCP Reported by DisPaisy Enterprise ... show more Honeypot [fra-de-honeypot]: Large payload (1457 bytes); 5080 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-11 09:17:03 (2 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-11 02:31:23 (2 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇯🇵 mkaraki	2026-06-11 01:44:46 (2 days ago)	1781142285 # Service_probe # SIGNATURE_SEND # source_ip:220.197.78.71 # dst_port:1139 ...	Port Scan
🇺🇸 MPL	2026-06-10 13:09:17 (2 days ago)	tcp/2166 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-09 17:57:13 (3 days ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-09 11:17:46 (4 days ago)	Honeypot detection: LDAP injection / directory service abuse attempt on port 1521. Severity: MEDIUM. ... show more Honeypot detection: LDAP injection / directory service abuse attempt on port 1521. Severity: MEDIUM. Aaran.cloud show less	Web App Attack
🇵🇱 sefinek.net	2026-06-09 03:21:35 (4 days ago)	Honeypot hit: Empty payload (likely service probe); 16000 [1] TCP Reported by: https://github.com/se ... show more Honeypot hit: Empty payload (likely service probe); 16000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇧🇷 ICS Labs	2026-06-08 13:17:03 (4 days ago)	ICS Labs identified 220.197.78.71 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇩🇪 kexol	2026-06-07 06:43:51 (6 days ago)	3389 port scanned	Port Scan
🇬🇧 PeravixGroup	2026-06-06 20:33:14 (6 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 gbzret4d	2026-06-04 19:46:18 (1 week ago)	Honeypot [uk-production01]: Unauthorized traffic (24 bytes of payload); 9092 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-06-04 01:55:25 (1 week ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-03 18:34:08 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-02 22:17:06 (1 week ago)	tcp/6588	Port Scan

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 72.10.32.138

🇬🇧 195.206.182.213

🇳🇬 154.118.52.189

🇫🇮 147.185.133.171

🇫🇮 147.185.133.149

🇺🇸 66.132.172.153

🇺🇸 64.225.112.39

🇩🇪 192.109.200.204

🇻🇳 103.28.36.205

🇳🇱 45.198.224.134

🇧🇪 34.14.93.247

🇬🇧 193.176.29.17

🇨🇳 175.153.160.198

🇻🇳 165.154.105.128

🇷🇺 138.124.77.177

🇨🇳 111.31.29.181

🇺🇸 74.249.201.6

🇮🇹 185.124.182.56

🇻🇳 183.91.11.36

🇮🇳 182.95.182.138