JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.167.232.220

220.167.232.220 was found in our database!

This IP was reported 161 times. Confidence of Abuse is 64%: ?

64%

ISP	CHINANET QINGHAI province network
Usage Type	Fixed Line ISP
ASN	AS140061
Domain Name	xn.qh.cn
Country	🇨🇳 China
City	Xining, Qinghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.167.232.220

Whois 220.167.232.220

IP Abuse Reports for 220.167.232.220:

This IP address has been reported a total of 161 times from 64 distinct sources. 220.167.232.220 was first reported on January 23rd 2024, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-13 00:26:43 (12 hours ago)	Blocked by UFW (TCP on 1186) Source port: 21332 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1186) Source port: 21332 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 220.167.232.220) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-12 20:45:37 (15 hours ago)	Blocked by UFW on LAXHH [4000/tcp] \| SPT: 40694 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [4000/tcp] \| SPT: 40694 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-10 07:54:49 (3 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-10 07:18:24 (3 days ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 12370 [1] TCP Reported by: https://github. ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 12370 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-09 17:31:03 (3 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 MPL	2026-06-09 16:00:28 (3 days ago)	tcp/30010	Port Scan
🇺🇸 xmission.com	2026-06-09 14:35:57 (3 days ago)	Blocked by UFW (TCP on 81) Source port: 43899 TTL: 239 Packet length: 44 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 81) Source port: 43899 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 220.167.232.220) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-09 10:08:49 (4 days ago)	Honeypot hit: Large payload (1457 bytes); 5601 [1] TCP	Hacking
🇬🇧 PeravixGroup	2026-05-31 13:02:18 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-30 12:29:56 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 14:48:21 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇸🇪 donarev419	2026-05-27 03:32:24 (2 weeks ago)	Connection to port 9200 with data transfer. Data preview: �	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-27 02:57:40 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-26 09:44:55 (2 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-26 00:48:19 (2 weeks ago)	Honeypot detection: IMAP email brute-force authentication attempt on port 143. Severity: MEDIUM. Aar ... show more Honeypot detection: IMAP email brute-force authentication attempt on port 143. Severity: MEDIUM. Aaran.cloud show less	Brute-Force

Showing 1 to 15 of 161 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.145.28

🇺🇸 108.181.4.175

🇺🇸 91.230.168.91

🇺🇸 50.6.228.111

🇺🇸 34.123.164.86

🇪🇪 31.59.160.12

🇺🇸 2602:fb54:1a00::77

🇺🇸 162.216.149.150

🇳🇬 102.88.137.145

🇷🇺 87.249.38.179

🇫🇷 51.68.34.131

🇺🇸 20.38.46.40

🇨🇳 14.103.114.196

🇺🇸 208.84.100.229

🇦🇷 190.105.213.23

🇳🇱 185.223.235.53

🇯🇵 180.59.77.2

🇺🇸 162.216.150.187

🇫🇮 147.185.133.169

🇨🇳 106.75.144.150