JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.167.233.111

220.167.233.111 was found in our database!

This IP was reported 147 times. Confidence of Abuse is 36%: ?

36%

ISP	CHINANET QINGHAI province network
Usage Type	Fixed Line ISP
ASN	AS140061
Domain Name	xn.qh.cn
Country	🇨🇳 China
City	Xining, Qinghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.167.233.111

Whois 220.167.233.111

IP Abuse Reports for 220.167.233.111:

This IP address has been reported a total of 147 times from 51 distinct sources. 220.167.233.111 was first reported on January 23rd 2024, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-04 14:40:12 (16 hours ago)	Honeypot detection: OS command injection in HTTP parameters on port 8080. Severity: MEDIUM. Aaran.cl ... show more Honeypot detection: OS command injection in HTTP parameters on port 8080. Severity: MEDIUM. Aaran.cloud show less	Hacking Web App Attack
🇬🇧 PeravixGroup	2026-06-03 10:28:40 (1 day ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 17:06:05 (3 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 22:06:35 (4 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 08:40:47 (4 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 18:05:13 (5 days ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 22:03:37 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 14:42:22 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-05-27 15:44:46 (1 week ago)	2026-05-27T16:44:45.791099+01:00 vps kernel: [41636859.496878] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-05-27T16:44:45.791099+01:00 vps kernel: [41636859.496878] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=220.167.233.111 DST=54.37.14.118 LEN=44 TOS=0x00 PREC=0x00 TTL=232 ID=63301 PROTO=TCP SPT=45740 DPT=1554 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇺🇸 MPL	2026-05-23 01:44:54 (1 week ago)	tcp/5342 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-21 19:30:47 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 Justin F. \| AS204464	2026-05-21 13:44:53 (2 weeks ago)	Honeypot [nx-infrastructure]: Unauthorized traffic (16 bytes of payload); 1666 [1] TCP Reported by: ... show more Honeypot [nx-infrastructure]: Unauthorized traffic (16 bytes of payload); 1666 [1] TCP Reported by: Justin F. show less	Port Scan
Anonymous	2026-05-20 11:14:22 (2 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇦🇺 trentwiles.com	2026-05-04 21:42:01 (1 month ago)	Unauthorized connection attempt detected from IP address 220.167.233.111 to port 2179 [SYD]	Port Scan
🇺🇸 MPL	2026-04-28 02:31:18 (1 month ago)	tcp/9000	Port Scan

Showing 1 to 15 of 147 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 103.200.25.198

🇩🇪 91.107.175.79

🇳🇱 91.92.41.108

🇩🇪 80.239.186.117

🇺🇸 47.90.179.104

🇧🇪 34.52.164.204

🇩🇪 4.184.246.230

🇳🇴 202.50.55.105

🇻🇳 171.244.143.209

🇺🇸 107.174.82.77

🇭🇰 103.52.153.215

🇰🇷 59.24.133.197

🇵🇱 46.171.195.234

🇭🇰 45.142.154.98

🇺🇸 193.19.109.29

🇺🇸 151.240.101.21

🇯🇲 67.230.79.14

🇺🇸 65.49.1.119

🇩🇪 167.94.145.30

🇨🇳 146.56.229.214