JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.167.233.145

220.167.233.145 was found in our database!

This IP was reported 164 times. Confidence of Abuse is 60%: ?

60%

ISP	CHINANET QINGHAI province network
Usage Type	Fixed Line ISP
ASN	AS140061
Domain Name	xn.qh.cn
Country	🇨🇳 China
City	Xining, Qinghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.167.233.145

Whois 220.167.233.145

IP Abuse Reports for 220.167.233.145:

This IP address has been reported a total of 164 times from 61 distinct sources. 220.167.233.145 was first reported on January 24th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-12 02:50:40 (1 day ago)	Blocked by UFW on LAXHH [9092/tcp] \| SPT: 41499 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [9092/tcp] \| SPT: 41499 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-11 23:04:56 (1 day ago)	2026-06-12T00:04:55.706617+01:00 vps kernel: [42959254.890519] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-12T00:04:55.706617+01:00 vps kernel: [42959254.890519] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=220.167.233.145 DST=54.37.14.118 LEN=44 TOS=0x00 PREC=0x00 TTL=232 ID=4797 PROTO=TCP SPT=60407 DPT=1031 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇺🇸 Cyber Crusader	2026-06-07 04:01:43 (6 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇩🇪 KPS	2026-05-28 05:02:05 (2 weeks ago)	PortscanM	Port Scan
🇺🇸 donarev419	2026-05-28 02:09:26 (2 weeks ago)	Port scan detected on port 5236 (connection without data transfer)	Port Scan
🇵🇱 sefinek.net	2026-05-27 20:35:37 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 7443 GET / Accept: /; 7443 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 7443 GET / Accept: /; 7443 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇺🇸 billybobby	2026-05-27 14:55:30 (2 weeks ago)	Blocked by UFW [11027/tcp] \| SPT: 38445 \| TTL: 233 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/s ... show more Blocked by UFW [11027/tcp] \| SPT: 38445 \| TTL: 233 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-05-25 22:51:48 (2 weeks ago)	tcp/1094	Port Scan
🇫🇷 Coco Bongo	2026-05-23 14:34:05 (3 weeks ago)	1779546844 - 05/23/2026 16:34:04 Host: 220.167.233.145/220.167.233.145 Port: 8030 TCP Blocked ...	Port Scan
🇦🇺 trentwiles.com	2026-05-20 06:44:03 (3 weeks ago)	Unauthorized connection attempt detected from IP address 220.167.233.145 to port 3008 [SYD]	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-19 19:22:49 (3 weeks ago)	Honeypot hit: HTTP/1.1 request on 16084 GET / Accept: /; 16084 [1] TCP	Web App Attack
🇳🇱 donarev419	2026-05-17 06:55:55 (3 weeks ago)	Connection to port 9191 with data transfer. Data preview: GET / HTTP/1.1 Host: 87.229.95.155:9191 ... show more Connection to port 9191 with data transfer. Data preview: GET / HTTP/1.1 Host: 87.229.95.155:9191 Accept: / show less	Port Scan Hacking
🇳🇱 DonAtari	2026-05-17 04:16:49 (3 weeks ago)	DShield firewall scan - TCP to port 9000	Brute-Force SSH
🇦🇺 trentwiles.com	2026-05-16 08:23:59 (4 weeks ago)	Unauthorized connection attempt detected from IP address 220.167.233.145 to port 25333 [SYD]	Port Scan
🇺🇸 sumnone	2026-05-07 02:59:22 (1 month ago)	Port probing on unauthorized port 4443	Port Scan Hacking Exploited Host

Showing 1 to 15 of 164 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.90

🇮🇳 125.19.207.50

🇿🇼 197.221.232.44

🇺🇸 174.210.65.34

🇫🇷 163.172.143.147

🇵🇪 161.132.54.218

🇨🇳 122.235.214.168

🇷🇺 87.250.224.104

🇨🇦 52.138.14.226

🇻🇳 27.79.40.244

🇺🇸 20.169.105.72

🇰🇷 218.157.205.238

🇺🇸 172.217.107.152

🇺🇸 172.105.149.92

🇨🇳 171.213.210.90

🇺🇸 162.216.150.62

🇨🇳 122.114.113.177

🇸🇬 118.26.111.94

🇱🇹 81.30.98.142

🇺🇸 52.204.37.237