JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.202.112.238

220.202.112.238 was found in our database!

This IP was reported 87 times. Confidence of Abuse is 62%: ?

62%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.202.112.238

Whois 220.202.112.238

IP Abuse Reports for 220.202.112.238:

This IP address has been reported a total of 87 times from 32 distinct sources. 220.202.112.238 was first reported on January 18th 2024, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 centurion	2026-06-27 00:13:29 (3 hours ago)	Unauthorized attempt on git [12281/tcp] Source port: 14631 TTL: 236 Packet length: 44 TOS: 0x00 http ... show more Unauthorized attempt on git [12281/tcp] Source port: 14631 TTL: 236 Packet length: 44 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-26 01:49:32 (1 day ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇦🇹 centurion	2026-06-24 05:44:52 (2 days ago)	Blocked by UFW on ns03 [10127/tcp] Source port: 58109 TTL: 231 Packet length: 44 TOS: 0x00 This rep ... show more Blocked by UFW on ns03 [10127/tcp] Source port: 58109 TTL: 231 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-23 15:23:07 (3 days ago)	tcp/13579 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-22 03:15:39 (5 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 ValtonTahiri	2026-06-21 23:17:43 (5 days ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=220.202.112.238; proto=TCP; source_port=58541; target_port=8086; flags=SYN show less	Port Scan
🇩🇪 femboy.cat	2026-06-21 06:33:52 (5 days ago)	Port scan to tcp/1800 from 220.202.112.238	Brute-Force
🇺🇸 MPL	2026-06-21 01:08:00 (6 days ago)	tcp/16010	Port Scan
Anonymous	2026-06-20 19:23:24 (6 days ago)	Unauthorized connection to PostgreSQL port 5432	Port Scan
🇬🇧 PeravixGroup	2026-06-18 03:44:07 (1 week ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇺🇸 xmission.com	2026-06-10 16:12:28 (2 weeks ago)	Blocked by UFW (TCP on 6379) Source port: 32218 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 6379) Source port: 32218 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.202.112.238) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇵🇱 sefinek.net	2026-06-10 10:03:41 (2 weeks ago)	Honeypot hit: Large payload (1457 bytes); 10364 [1] TCP Reported by: https://github.com/sefinek/T-Po ... show more Honeypot hit: Large payload (1457 bytes); 10364 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-10 02:43:21 (2 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-08 17:01:38 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 09:41:35 (2 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 87 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 195.63.25.55

🇺🇸 195.63.13.68

🇺🇸 162.243.147.237

🇺🇸 74.125.185.88

🇳🇱 52.174.67.71

🇩🇪 51.75.149.221

🇨🇭 2605:6400:30:f534:ae1d:c3d9:9941:d85e

🇳🇱 185.223.235.8

🇺🇸 172.236.254.181

🇮🇳 163.223.54.21

🇺🇸 162.216.150.210

🇨🇳 124.174.44.175

🇰🇷 115.91.48.142

🇮🇳 103.59.203.69

🇧🇬 79.124.51.88

🇮🇹 79.43.171.72

🇸🇬 8.222.198.14

🇸🇬 8.219.71.16

🇷🇴 2.57.121.25

🇬🇧 213.166.84.45