JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.202.112.216

220.202.112.216 was found in our database!

This IP was reported 77 times. Confidence of Abuse is 66%: ?

66%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.202.112.216

Whois 220.202.112.216

IP Abuse Reports for 220.202.112.216:

This IP address has been reported a total of 77 times from 32 distinct sources. 220.202.112.216 was first reported on January 19th 2024, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-21 02:04:02 (18 hours ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-20 09:55:42 (1 day ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-19 02:06:12 (2 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇸🇪 NordhTech	2026-06-19 00:45:05 (2 days ago)	More than 3 malicious connection attempts, trying port(s) 1212/tcp, then blocked from services ...	Port Scan Hacking
🇺🇸 Cyber Crusader	2026-06-18 23:06:12 (2 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇳🇱 i-turnradio.nl	2026-06-16 23:09:24 (4 days ago)	2026-06-17 01:09:23 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇦🇺 LiftUp Hosting	2026-06-16 19:39:57 (5 days ago)	Honeypot hit: HTTP/1.1 request on 8086 GET / Accept: /; 8086 [1] TCP	Hacking Bad Web Bot
🇩🇪 centurion	2026-06-15 14:24:56 (6 days ago)	Blocked by UFW on ns02 [8080/tcp] Source port: 41590 TTL: 237 Packet length: 44 TOS: 0x00 This repo ... show more Blocked by UFW on ns02 [8080/tcp] Source port: 41590 TTL: 237 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇩🇪 ValtonTahiri	2026-06-14 07:32:01 (1 week ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=220.202.112.216; proto=TCP; source_port=19729; target_port=8554; flags=SYN show less	Port Scan
🇺🇸 MPL	2026-06-10 15:49:53 (1 week ago)	tcp/25000	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-09 21:09:04 (1 week ago)	Honeypot hit: Large payload (1457 bytes); 8688 [1] TCP	Hacking
🇬🇧 PeravixGroup	2026-06-08 19:10:05 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 11:41:15 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 06:41:36 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-07 01:30:03 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 77 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.150.168.192

🇵🇱 217.70.48.92

🇺🇸 150.107.36.66

🇨🇳 117.182.103.51

🇲🇾 49.124.151.27

🇨🇳 8.140.225.151

🇺🇸 3.238.129.190

🇺🇸 2604:a880:400:d1:0:4:9e83:a001

🇮🇩 103.156.57.163

🇮🇳 98.70.50.166

🇵🇰 39.46.84.128

🇨🇳 36.153.28.94

🇺🇸 34.71.229.132

🇺🇸 20.106.57.131

🇸🇬 212.73.148.24

🇮🇩 165.154.48.160

🇨🇦 85.217.149.42

🇷🇺 31.173.8.170

🇳🇱 77.171.109.76

🇳🇱 45.148.10.147