JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 59.61.184.94

59.61.184.94 was found in our database!

This IP was reported 61 times. Confidence of Abuse is 27%: ?

27%

ISP	CHINANET fujian province network
Usage Type	Fixed Line ISP
ASN	AS4134
Hostname(s)	94.184.61.59.broad.fz.fj.dynamic.163data.com.cn
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Fuzhou, Fujian

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 59.61.184.94

Whois 59.61.184.94

IP Abuse Reports for 59.61.184.94:

This IP address has been reported a total of 61 times from 26 distinct sources. 59.61.184.94 was first reported on January 11th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-09 13:15:47 (2 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 KPS	2026-06-08 02:23:08 (4 days ago)	PortscanM	Port Scan
🇬🇧 PeravixGroup	2026-05-31 09:30:26 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-04-24 14:50:22 (1 month ago)	HoneyPot hit - Aaran.cloud \| Tls Probe \| reconnaissance \| [TLS Handshake/SNI Probe] x5(W.nJ\}M ?bXNZ ... show more HoneyPot hit - Aaran.cloud \| Tls Probe \| reconnaissance \| [TLS Handshake/SNI Probe] x5(W.nJ\}M ?bXNZP\|L`b&+/,0 /5 { + 3&$ Wai=$lnNvrG show less	Hacking Brute-Force
🇫🇮 6kilowatti	2026-04-24 07:21:05 (1 month ago)	2026-04-24T10:21:03.990641+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-04-24T10:21:03.990641+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=59.61.184.94 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=237 ID=6055 PROTO=TCP SPT=55316 DPT=20005 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇦🇺 trentwiles.com	2026-04-24 04:02:50 (1 month ago)	Unauthorized connection attempt detected from IP address 59.61.184.94 to port 5231 [SYD]	Port Scan
🇵🇱 sefinek.net	2026-04-23 18:51:11 (1 month ago)	Blocked by UFW on PL02 [2111/tcp] \| SPT: 35667 \| TTL: 232 \| LEN: 44 \| TOS: 0x00 • Reported by: githu ... show more Blocked by UFW on PL02 [2111/tcp] \| SPT: 35667 \| TTL: 232 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-04-15 04:17:13 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 Hobby Bob	2025-11-18 18:27:05 (6 months ago)	Nov 18 18:10:51 server dovecot: pop3-login: Disconnected: Connection closed (no auth attempts in 0 s ... show more Nov 18 18:10:51 server dovecot: pop3-login: Disconnected: Connection closed (no auth attempts in 0 secs): user=, rip=59.61.184.94, lip=X.X.X.X session= show less	Port Scan Hacking
🇨🇦 Largnet SOC	2025-11-04 04:37:50 (7 months ago)	59.61.184.94 triggered Icarus honeypot on port 1433. Check us out on github.	Port Scan Hacking
🇺🇸 MPL	2025-10-20 00:41:11 (7 months ago)	tcp/2222 (2 or more attempts)	Port Scan
🇺🇸 MPL	2025-10-20 00:41:11 (7 months ago)	tcp/2222	Port Scan
🇺🇸 xmission.com	2025-08-23 15:02:14 (9 months ago)	Blocked by UFW (TCP on 9443) Source port: 59530 TTL: 238 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9443) Source port: 59530 TTL: 238 Packet length: 44 TOS: 0x08 This report (for 59.61.184.94) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2025-06-24 23:01:38 (11 months ago)	ThreatBook Intelligence: vpn_proxy,Gateway more details on https://threatbook.io/ip/59.61.184.94	SSH
🇺🇸 MPL	2025-06-03 04:42:29 (1 year ago)	tcp/50580 (2 or more attempts)	Port Scan

Showing 1 to 15 of 61 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇪 3.253.145.47

🇷🇴 2.57.122.177

🇳🇴 185.101.33.182

🇧🇷 177.221.185.115

🇺🇸 172.182.201.171

🇺🇸 157.230.136.54

🇭🇰 154.221.20.92

🇺🇸 107.174.82.77

🇷🇺 46.163.144.31

🇳🇱 45.148.10.141

🇨🇳 220.181.172.244

🇺🇸 192.238.175.58

🇺🇸 154.83.197.88

🇨🇴 152.200.205.179

🇩🇪 130.12.182.140

🇳🇱 89.21.67.153

🇩🇪 64.89.163.158

🇨🇳 61.145.190.218

🇳🇱 45.148.10.151

🇨🇳 14.116.156.100