JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.202.112.21

220.202.112.21 was found in our database!

This IP was reported 84 times. Confidence of Abuse is 65%: ?

65%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.202.112.21

Whois 220.202.112.21

IP Abuse Reports for 220.202.112.21:

This IP address has been reported a total of 84 times from 40 distinct sources. 220.202.112.21 was first reported on January 20th 2024, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 gbzret4d	2026-06-21 01:39:52 (21 hours ago)	Honeypot [uk-production01]: HTTP/1.1 request on 18017 GET / Accept: /; 18017 [1] TCP	Hacking Bad Web Bot
🇧🇾 StatsMe	2026-06-21 00:27:02 (22 hours ago)	2026-06-20T20:59:26.466331+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇫🇷 Duggy_Tuxy🧱	2026-06-20 22:42:28 (1 day ago)	[DS-BLKS-PROD01] Blocked by SysWarden Firewall (Database/Cache Attack)	Brute-Force Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-20 01:17:39 (1 day ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-17 21:46:32 (4 days ago)	tcp/12303	Port Scan
🇺🇸 donarev419	2026-06-16 03:32:45 (5 days ago)	Connection to port 2090 with data transfer. Data preview: USER anonymous	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-15 01:32:08 (6 days ago)	Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: M ... show more Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇫🇮 6kilowatti	2026-06-14 21:14:11 (1 week ago)	2026-06-15T00:14:11.073004+03:00 koti kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:bd:29:2d:18:f ... show more 2026-06-15T00:14:11.073004+03:00 koti kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:bd:29:2d:18:fd:74:70:71:9e:08:00 SRC=220.202.112.21 DST=10.0.0.30 LEN=44 TOS=0x00 PREC=0x00 TTL=227 ID=59651 PROTO=TCP SPT=62325 DPT=5984 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-06-13 01:47:38 (1 week ago)	Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. A ... show more Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. Aaran.cloud show less	DDoS Attack Hacking
🇺🇸 Cyber Crusader	2026-06-12 01:58:04 (1 week ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇺🇸 donarev419	2026-06-11 08:44:35 (1 week ago)	Connection to port 9000 with data transfer. Data preview: JDWP-Handshake	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-10 02:24:07 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-09 16:39:19 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-06-08 21:15:26 (1 week ago)	Blocked by UFW (TCP on 7443) Source port: 26782 TTL: 237 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 7443) Source port: 26782 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 220.202.112.21) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-06 13:50:28 (2 weeks ago)	tcp/6560	Port Scan

Showing 1 to 15 of 84 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.181

🇿🇦 169.0.233.175

🇺🇸 147.185.132.106

🇺🇸 138.197.39.208

🇳🇱 89.248.167.131

🇺🇸 44.166.95.86

🇺🇸 205.210.31.90

🇮🇳 203.145.143.163

🇮🇳 182.95.60.146

🇷🇴 141.98.83.240

🇺🇸 137.184.228.138

🇺🇸 100.29.192.76

🇳🇱 91.92.40.5

🇺🇸 62.204.35.140

🇭🇰 58.176.64.176

🇳🇱 45.148.10.230

🇺🇸 44.56.46.36

🇨🇳 223.151.183.148

🇩🇪 188.245.84.238

🇨🇳 180.167.128.203