JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.202.112.23

220.202.112.23 was found in our database!

This IP was reported 63 times. Confidence of Abuse is 43%: ?

43%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.202.112.23

Whois 220.202.112.23

IP Abuse Reports for 220.202.112.23:

This IP address has been reported a total of 63 times from 32 distinct sources. 220.202.112.23 was first reported on January 18th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-06 05:05:04 (1 day ago)	Blocked by UFW (TCP on 26) Source port: 20994 TTL: 237 Packet length: 44 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 26) Source port: 20994 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 220.202.112.23) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-04 15:12:11 (2 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-03 21:21:24 (3 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-03 11:06:38 (4 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 23:49:18 (4 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 Yachiyo Runami	2026-06-02 19:57:22 (4 days ago)	Port Scan on Honeypot \| Ports: 110/POP3 \| Proto: TCP(1) \| Flags: all SYN \| TTL: 230 \| Len: 44B \| Win ... show more Port Scan on Honeypot \| Ports: 110/POP3 \| Proto: TCP(1) \| Flags: all SYN \| TTL: 230 \| Len: 44B \| Win: 1024(1) \| F2B/ufw-honeypot@2026-06-02T19:57:22Z show less	Port Scan Hacking
🇺🇸 MPL	2026-06-02 17:25:18 (4 days ago)	tcp/2000 (2 or more attempts)	Port Scan
Anonymous	2026-06-02 13:04:57 (5 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 01:59:59 (5 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-01 22:37:52 (5 days ago)	Honeypot hit: Empty payload (likely service probe); 10031 [1] TCP Reported by: https://github.com/se ... show more Honeypot hit: Empty payload (likely service probe); 10031 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-01 06:04:42 (6 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-05-30 21:58:15 (1 week ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
🇬🇧 PeravixGroup	2026-05-30 16:59:45 (1 week ago)	Honeypot detection: Server-Side Template Injection (SSTI) attempt on port 3306. Severity: HIGH. Aara ... show more Honeypot detection: Server-Side Template Injection (SSTI) attempt on port 3306. Severity: HIGH. Aaran.cloud show less	Hacking Web App Attack
🇬🇧 PeravixGroup	2026-05-29 14:56:16 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
Anonymous	2024-11-09 12:48:35 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 63 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 204.48.29.217

🇩🇪 161.35.65.86

🇰🇷 123.143.70.52

🇺🇸 45.61.185.32

🇮🇪 2a05:d018:10df:d401:2277:c89f:694a:5268

🇨🇳 223.247.46.60

🇭🇰 165.154.70.170

🇺🇦 77.239.166.148

🇺🇸 35.245.134.51

🇩🇪 2a02:4780:3f:2124:0:7e0:2a7b:1

🇺🇸 2604:a880:400:d1:0:4:8c0e:4001

🇳🇱 176.65.139.30

🇲🇦 105.66.7.80

🇮🇩 103.153.192.42

🇨🇳 39.101.69.5

🇧🇷 187.109.81.226

🇮🇶 185.158.23.150

🇧🇪 178.51.113.51

🇺🇸 150.107.38.207

🇷🇴 92.118.39.62