JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 222.94.32.158

222.94.32.158 was found in our database!

This IP was reported 117 times. Confidence of Abuse is 47%: ?

47%

ISP	CHINANET jiangsu province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 222.94.32.158

Whois 222.94.32.158

IP Abuse Reports for 222.94.32.158:

This IP address has been reported a total of 117 times from 42 distinct sources. 222.94.32.158 was first reported on January 14th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-05 08:35:16 (1 day ago)	Blocked by UFW (TCP on 2657) Source port: 53631 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 2657) Source port: 53631 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 222.94.32.158) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-04 17:56:03 (1 day ago)	tcp/21	Port Scan
🇬🇧 PeravixGroup	2026-06-04 13:42:08 (2 days ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇬🇧 PeravixGroup	2026-06-02 12:19:25 (4 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-29 21:35:07 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-25 10:16:29 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 03:56:07 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 26257 GET / Accept: /; 26257 [1] TCP	Web App Attack
🇺🇸 MPL	2026-05-08 02:16:07 (4 weeks ago)	tcp/60000	Port Scan
🇫🇮 percocet	2026-05-03 08:07:32 (1 month ago)	Cloudflare blocked 1 requests (HTTP 403) in 1h. Country: CN	DDoS Attack Web App Attack
🇺🇸 sumnone	2026-05-02 13:15:34 (1 month ago)	Port probing on unauthorized port 2171	Port Scan Hacking Exploited Host
🇯🇵 mkaraki	2026-05-01 10:07:26 (1 month ago)	1777630039 # Service_probe # SIGNATURE_SEND # source_ip:222.94.32.158 # dst_port:2010 ...	Port Scan
🇺🇸 MPL	2026-05-01 04:40:25 (1 month ago)	tcp/9325	Port Scan
Anonymous	2026-04-30 21:31:00 (1 month ago)	2026-04-30T22:30:59.391045+01:00 vps kernel: [39324857.773059] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-04-30T22:30:59.391045+01:00 vps kernel: [39324857.773059] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=222.94.32.158 DST=54.37.14.118 LEN=44 TOS=0x00 PREC=0x00 TTL=232 ID=57487 PROTO=TCP SPT=48830 DPT=12187 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇺🇸 mnsf	2026-04-26 12:05:16 (1 month ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-24 14:27:30 (1 month ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 56789 [1] TCP	Port Scan

Showing 1 to 15 of 117 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇱 213.8.113.2

🇨🇳 112.194.202.59

🇮🇳 103.137.93.63

🇬🇧 35.203.211.216

🇯🇵 8.216.81.53

🇿🇲 216.234.213.182

🇺🇸 216.25.89.148

🇨🇳 182.54.23.13

🇪🇬 154.182.160.208

🇨🇳 112.86.225.30

🇦🇹 89.42.158.34

🇨🇳 27.19.49.20

🇺🇸 3.94.40.182

🇩🇪 206.81.19.9

🇵🇰 182.190.221.82

🇦🇷 131.196.82.173

🇻🇳 103.118.29.7

🇮🇳 103.70.40.36

🇺🇸 52.240.168.195

🇺🇸 8.34.210.56