JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.167.232.214

220.167.232.214 was found in our database!

This IP was reported 164 times. Confidence of Abuse is 54%: ?

54%

ISP	CHINANET QINGHAI province network
Usage Type	Fixed Line ISP
ASN	AS140061
Domain Name	xn.qh.cn
Country	🇨🇳 China
City	Xining, Qinghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.167.232.214

Whois 220.167.232.214

IP Abuse Reports for 220.167.232.214:

This IP address has been reported a total of 164 times from 63 distinct sources. 220.167.232.214 was first reported on January 27th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-06 20:30:06 (1 day ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 23:56:54 (5 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-29 20:47:42 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-29 18:58:30 (1 week ago)	tcp/9004	Port Scan
🇬🇧 PeravixGroup	2026-05-29 13:04:58 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 04:07:05 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 donarev419	2026-05-28 02:38:59 (1 week ago)	Connection to port 9092 with data transfer. Data preview: �	Port Scan Hacking
🇺🇸 MPL	2026-05-27 23:04:23 (1 week ago)	tcp/8443 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-26 00:56:30 (1 week ago)	Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. A ... show more Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. Aaran.cloud show less	DDoS Attack Hacking
🇺🇸 xmission.com	2026-05-21 17:58:43 (2 weeks ago)	Blocked by UFW (TCP on 6502) Source port: 37094 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 6502) Source port: 37094 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.167.232.214) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-21 17:50:50 (2 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-21 05:39:28 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 18:37:55 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 6544 [1] TCP	Port Scan
🇵🇱 sefinek.net	2026-05-17 01:15:35 (3 weeks ago)	Honeypot hit: Empty payload (likely service probe); 2126 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 2126 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇫🇮 6kilowatti	2026-05-16 23:45:55 (3 weeks ago)	2026-05-17T02:45:53.625205+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-05-17T02:45:53.625205+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=220.167.232.214 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=237 ID=55139 PROTO=TCP SPT=30674 DPT=5858 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan

Showing 1 to 15 of 164 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 204.76.203.15

🇺🇸 195.184.76.66

🇨🇱 186.41.152.198

🇮🇳 103.59.134.211

🇺🇸 66.132.172.233

🇸🇬 64.233.173.41

🇧🇷 45.164.39.253

🇭🇰 13.70.2.225

🇸🇬 217.15.164.43

🇬🇧 185.216.145.164

🇷🇺 176.109.97.11

🇻🇳 156.229.22.183

🇺🇸 136.107.107.99

🇭🇰 119.28.30.83

🇨🇳 115.210.127.144

🇻🇳 115.79.205.179

🇨🇳 114.219.157.97

🇨🇳 112.122.237.80

🇳🇱 103.136.41.26

🇧🇬 78.128.113.74