JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.202.112.227

220.202.112.227 was found in our database!

This IP was reported 77 times. Confidence of Abuse is 63%: ?

63%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.202.112.227

Whois 220.202.112.227

IP Abuse Reports for 220.202.112.227:

This IP address has been reported a total of 77 times from 31 distinct sources. 220.202.112.227 was first reported on January 22nd 2024, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇾 StatsMe	2026-06-14 21:51:41 (4 hours ago)	2026-06-14T01:41:31.112890+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇺🇸 xmission.com	2026-06-14 13:08:07 (13 hours ago)	Blocked by UFW (TCP on 2053) Source port: 37199 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 2053) Source port: 37199 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.202.112.227) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇸🇪 NordhTech	2026-06-11 13:00:07 (3 days ago)	More than 3 malicious connection attempts, trying port(s) 5003/tcp, then blocked from services ...	Port Scan Hacking
🇮🇳 Mr.Singh	2026-06-11 12:30:18 (3 days ago)	NFT blocked 220.202.112.227 on 11-Jun-2026..	Port Scan Brute-Force
🇩🇪 Justin F. \| AS204464	2026-06-11 06:10:40 (3 days ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 12372 [1] TCP Reported by: Justi ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 12372 [1] TCP Reported by: Justin F. show less	Port Scan
🇺🇸 RAP	2026-06-10 23:57:59 (4 days ago)	2026-06-10 23:57:59 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇬🇧 PeravixGroup	2026-06-08 23:25:04 (6 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
Anonymous	2026-06-08 13:17:18 (6 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 11:40:29 (6 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 Cyber Crusader	2026-06-08 01:57:26 (1 week ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
Anonymous	2026-06-05 18:12:42 (1 week ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 9000 [1] TCP Reported by: https://github.c ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 9000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
Anonymous	2026-06-03 18:47:59 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-06-02 10:58:00 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 10:57:14 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 13:59:05 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 77 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.241

🇨🇳 203.212.9.248

🇧🇴 181.188.176.242

🇧🇴 170.247.163.198

🇨🇳 120.48.135.189

🇨🇳 117.40.113.168

🇨🇳 114.234.101.12

🇺🇸 104.207.35.238

🇺🇸 71.6.232.29

🇳🇱 45.156.128.78

🇬🇧 37.10.113.217

🇪🇹 196.189.155.89

🇲🇽 187.191.48.9

🇺🇸 146.75.192.105

🇨🇳 123.245.84.53

🇭🇰 123.58.213.128

🇮🇳 122.168.123.73

🇨🇳 117.14.145.39

🇨🇳 110.229.51.73

🇨🇳 106.75.144.37