JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 222.95.168.248

222.95.168.248 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 34%: ?

34%

ISP	CHINANET jiangsu province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 222.95.168.248

Whois 222.95.168.248

IP Abuse Reports for 222.95.168.248:

This IP address has been reported a total of 37 times from 18 distinct sources. 222.95.168.248 was first reported on September 17th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 donarev419	2026-06-11 00:34:01 (1 day ago)	Connection to port 2629 with data transfer. Data preview: �	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-10 07:05:31 (2 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-10 02:07:23 (2 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇷🇸 Smel	2026-05-28 09:15:38 (2 weeks ago)	MH/MP Probe, Scan, Hack -	Port Scan Hacking
🇳🇵 radheykrishna.com.np	2026-05-28 06:58:48 (2 weeks ago)	May 28 12:43:47 kernel: [3441316.884108] [UFW BLOCK] IN=ens160 OUT= SRC=222.95.168.248 LEN=44 TOS=0x ... show more May 28 12:43:47 kernel: [3441316.884108] [UFW BLOCK] IN=ens160 OUT= SRC=222.95.168.248 LEN=44 TOS=0x00 PREC=0x00 TTL=233 ID=7055 PROTO=TCP SPT=18595 DPT=18086 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 MPL	2026-05-06 07:23:48 (1 month ago)	tcp/45230	Port Scan
🇺🇸 RAP	2026-04-26 05:34:32 (1 month ago)	2026-04-26 05:34:32 UTC Unauthorized activity to TCP port 8088. Web App	Port Scan Web App Attack
🇺🇸 LSPCCU	2026-04-21 08:36:28 (1 month ago)	TSEC Honeypot Network report. Threat score: 65/100. Categories: Port Scan, Hacking, Web App Attack. ... show more TSEC Honeypot Network report. Threat score: 65/100. Categories: Port Scan, Hacking, Web App Attack. Honeypot: cowrie, ssh-telnet. Context: 222. show less	Port Scan Hacking Web App Attack
🇺🇸 RAP	2026-04-18 08:59:13 (1 month ago)	2026-04-18 08:59:13 UTC Unauthorized activity to TCP port 8088. Web App	Port Scan Web App Attack
🇦🇹 urnilxfgbez	2026-04-10 22:45:00 (2 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 Admins@FBN	2026-04-10 00:58:41 (2 months ago)	FW-PortScan: Traffic Blocked srcport=35560 dstport=12441	Port Scan
🇩🇪 dispaisyenterprises	2026-04-10 00:33:42 (2 months ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 4000 [1] TCP Reported by Dis ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 4000 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
Anonymous	2026-03-24 21:33:53 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 xmission.com	2026-03-21 12:33:03 (2 months ago)	Blocked by UFW (TCP on 52931) Source port: 32636 TTL: 237 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 52931) Source port: 32636 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 222.95.168.248) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇷🇸 Scan	2026-03-03 01:36:26 (3 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 188.235.145.22

🇬🇧 89.37.172.132

🇱🇹 62.60.130.241

🇹🇭 58.136.83.26

🇳🇱 45.148.10.95

🇺🇸 20.168.107.40

🇫🇷 2001:41d0:305:2100::d6b2

🇩🇪 198.202.146.31

🇧🇷 179.126.201.39

🇨🇳 115.190.53.236

🇭🇰 42.3.103.20

🇬🇧 217.154.42.110

🇧🇷 191.185.138.131

🇺🇸 107.173.218.80

🇬🇧 92.18.71.104

🇧🇷 43.164.193.198

🇬🇧 217.174.244.15

🇧🇷 206.42.8.243

🇮🇳 182.95.123.202

🇨🇳 171.113.134.225