JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.202.112.105

220.202.112.105 was found in our database!

This IP was reported 92 times. Confidence of Abuse is 78%: ?

78%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.202.112.105

Whois 220.202.112.105

IP Abuse Reports for 220.202.112.105:

This IP address has been reported a total of 92 times from 40 distinct sources. 220.202.112.105 was first reported on January 19th 2024, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-30 06:29:28 (12 hours ago)	tcp/1200 (2 or more attempts)	Port Scan
🇳🇱 BIV	2026-06-29 08:43:28 (1 day ago)	Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 8002. Automated ti ... show more Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 8002. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Bad Web Bot
🇧🇪 sid3windr	2026-06-29 05:20:29 (1 day ago)	SSH port scan (Tarpitted for 20s, wasted 9B)	Port Scan SSH
🇸🇪 donarev419	2026-06-29 05:07:04 (1 day ago)	Connection to port 1521 with data transfer. Data preview: USER anonymous	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-29 01:34:42 (1 day ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 LiftUp Hosting	2026-06-27 20:09:56 (2 days ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 2601 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-06-24 03:45:30 (6 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-23 09:01:15 (1 week ago)	tcp/8010	Port Scan
🇺🇸 donarev419	2026-06-23 03:44:04 (1 week ago)	Connection to port 2013 with data transfer. Data preview: �	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-22 13:32:42 (1 week ago)	Honeypot hit: Unauthorized traffic (71 bytes of payload); 9527 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-06-20 01:59:52 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 donarev419	2026-06-20 00:25:37 (1 week ago)	Connection to port 9000 with data transfer. Data preview: {	Port Scan Hacking
🇺🇸 xmission.com	2026-06-18 00:44:36 (1 week ago)	Blocked by UFW (TCP on 9042) Source port: 52692 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9042) Source port: 52692 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.202.112.105) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 sandra361	2026-06-17 23:36:44 (1 week ago)	Brute-force detected: 5 attempts across 1 ports (2222). \| Evidence: REAPER_TARPIT: IN=enp1s0 SRC=220 ... show more Brute-force detected: 5 attempts across 1 ports (2222). \| Evidence: REAPER_TARPIT: IN=enp1s0 SRC=220.202.112.105 LEN=60 TOS=0x00 PREC=0x00 TTL=36 ID=15792 DF PROTO=TCP SPT=49955 DPT=2222 WINDOW=29200 RES=0x00 SYN URGP=0 show less	Brute-Force
🇦🇺 FEWA	2026-06-17 03:58:54 (1 week ago)	Fail2Ban Ban Triggered	Hacking Brute-Force

Showing 1 to 15 of 92 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.32.209.240

🇺🇸 162.216.149.34

🇯🇵 160.251.182.78

🇫🇮 147.185.133.52

🇺🇸 138.197.35.49

🇮🇳 124.253.194.228

🇵🇰 118.103.229.152

🇦🇺 103.114.58.89

🇳🇱 91.92.42.133

🇺🇸 65.49.20.84

🇺🇸 20.245.71.147

🇩🇪 5.231.242.15

🇺🇸 3.233.50.222

🇭🇰 199.45.155.81

🇺🇾 186.54.169.102

🇺🇸 162.222.203.17

🇻🇳 116.110.154.48

🇸🇬 114.119.135.30

🇺🇸 104.37.86.24

🇨🇳 49.234.188.64