JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 222.176.201.41

222.176.201.41 was found in our database!

This IP was reported 75 times. Confidence of Abuse is 60%: ?

60%

ISP	CHINANET Chongqing province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	cta.cq.cn
Country	🇨🇳 China
City	Chongqing, Chongqing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 222.176.201.41

Whois 222.176.201.41

IP Abuse Reports for 222.176.201.41:

This IP address has been reported a total of 75 times from 27 distinct sources. 222.176.201.41 was first reported on December 29th 2025, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-20 00:08:32 (8 hours ago)	tcp/119 (2 or more attempts)	Port Scan
🇺🇸 Axel	2026-06-17 04:31:35 (3 days ago)	Blocked by UFW on LAXHH [2020/tcp] \| SPT: 29146 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [2020/tcp] \| SPT: 29146 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-06-15 18:35:19 (4 days ago)	Blocked by UFW (TCP on 8020) Source port: 35301 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8020) Source port: 35301 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 222.176.201.41) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-15 07:49:06 (5 days ago)	Blocked by UFW on LAXHH [10006/tcp] \| SPT: 53793 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [10006/tcp] \| SPT: 53793 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-13 11:47:52 (6 days ago)	tcp/12369	Port Scan
🇺🇸 Axel	2026-06-12 15:45:54 (1 week ago)	Blocked by UFW on LAXHH [8094/tcp] \| SPT: 24946 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [8094/tcp] \| SPT: 24946 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Justin F. \| AS204464	2026-06-11 06:10:39 (1 week ago)	Honeypot [nx-infrastructure]: Large payload (1457 bytes); 12372 [1] TCP Reported by: Justin F.	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-11 00:44:12 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 ValtonTahiri	2026-06-10 03:55:00 (1 week ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=222.176.201.41; proto=TCP; source_port=42723; target_port=12443; flags=SYN show less	Port Scan
🇬🇧 PeravixGroup	2026-06-09 15:27:35 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 sumnone	2026-06-06 18:08:57 (1 week ago)	Port probing on unauthorized port 3306	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 15:23:33 (2 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 23:21:55 (2 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 MPL	2026-05-30 17:52:58 (2 weeks ago)	tcp/9801	Port Scan
Anonymous	2026-05-30 14:26:15 (2 weeks ago)	2026-05-30T15:26:14.019023+01:00 vps kernel: [41891344.921376] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-05-30T15:26:14.019023+01:00 vps kernel: [41891344.921376] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=222.176.201.41 DST=54.37.14.118 LEN=44 TOS=0x00 PREC=0x00 TTL=232 ID=30623 PROTO=TCP SPT=46716 DPT=9000 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force

Showing 1 to 15 of 75 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 151.240.44.66

🇭🇰 144.48.8.10

🇺🇸 74.125.186.146

🇺🇸 44.142.29.53

🇺🇸 23.234.95.78

🇱🇹 2.59.162.146

🇷🇴 2.57.122.98

🇰🇷 211.253.24.216

🇮🇳 182.95.217.182

🇦🇷 179.37.203.155

🇺🇸 104.234.53.134

🇺🇸 44.160.77.43

🇵🇰 39.53.199.94

🇺🇸 23.234.95.151

🇺🇸 23.234.94.72

🇧🇷 186.249.86.148

🇪🇬 156.208.19.30

🇵🇰 149.40.215.209

🇹🇭 147.50.227.79

🇺🇸 104.234.53.143