JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 222.94.32.105

222.94.32.105 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 61%: ?

61%

ISP	CHINANET jiangsu province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 222.94.32.105

Whois 222.94.32.105

IP Abuse Reports for 222.94.32.105:

This IP address has been reported a total of 149 times from 48 distinct sources. 222.94.32.105 was first reported on November 10th 2021, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 sefinek.net	2026-06-11 08:21:33 (16 hours ago)	Honeypot hit: HTTP/1.1 request on 49671 GET / Accept: /; 49671 [1] TCP Reported by: https://githu ... show more Honeypot hit: HTTP/1.1 request on 49671 GET / Accept: /; 49671 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-11 02:03:06 (22 hours ago)	Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: ME ... show more Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇷🇸 Scan	2026-06-11 01:29:43 (23 hours ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-10 22:03:33 (1 day ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-10 20:49:30 (1 day ago)	tcp/990	Port Scan
🇺🇸 xmission.com	2026-06-10 18:48:36 (1 day ago)	Blocked by UFW (TCP on 7548) Source port: 55355 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 7548) Source port: 55355 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 222.94.32.105) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-06-10 14:07:41 (1 day ago)	Blocked by UFW (TCP on 8030) Source port: 45240 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8030) Source port: 45240 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 222.94.32.105) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-10 12:51:58 (1 day ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-07 12:13:43 (4 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-06 23:49:20 (5 days ago)	2026-06-06 23:49:19 warning[8399047]: host [222.94.32.105]: unauthorized access attempted: ... show more 2026-06-06 23:49:19 warning[8399047]: host [222.94.32.105]: unauthorized access attempted: / show less	Port Scan Brute-Force
Anonymous	2026-05-31 02:06:20 (1 week ago)	Drop from IP address 222.94.32.105 to tcp-port 11211	Port Scan
🇬🇧 PeravixGroup	2026-05-28 17:04:20 (2 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇯🇵 mkaraki	2026-05-26 16:25:46 (2 weeks ago)	1779812745 # Service_probe # SIGNATURE_SEND # source_ip:222.94.32.105 # dst_port:10000 ...	Port Scan
🇩🇪 Justin F. \| AS204464	2026-05-25 07:35:30 (2 weeks ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 8094 [1] TCP Reported by: Justin ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 8094 [1] TCP Reported by: Justin F. show less	Port Scan
🇬🇧 PeravixGroup	2026-05-21 17:13:02 (3 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:2dc0:303::4:0:165

🇫🇮 178.20.210.152

🇭🇰 152.32.134.89

🇮🇩 118.96.142.22

🇺🇸 104.152.52.238

🇺🇸 104.152.52.230

🇺🇸 104.152.52.126

🇺🇸 104.152.52.63

🇻🇳 103.42.57.146

🇹🇼 218.173.140.219

🇯🇵 210.156.0.132

🇺🇸 195.184.76.180

🇲🇽 187.161.119.93

🇦🇷 186.57.166.28

🇵🇪 181.176.62.72

🇯🇵 167.179.68.214

🇺🇸 165.154.172.244

🇺🇸 162.216.150.223

🇵🇰 153.117.13.95

🇺🇸 146.88.240.177