JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.202.112.240

220.202.112.240 was found in our database!

This IP was reported 71 times. Confidence of Abuse is 68%: ?

68%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.202.112.240

Whois 220.202.112.240

IP Abuse Reports for 220.202.112.240:

This IP address has been reported a total of 71 times from 27 distinct sources. 220.202.112.240 was first reported on January 19th 2024, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-24 01:44:16 (2 hours ago)	tcp/20547	Port Scan
🇬🇧 PeravixGroup	2026-06-24 00:40:57 (3 hours ago)	Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: ... show more Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: MEDIUM. Aaran.cloud show less	Port Scan Brute-Force
Anonymous	2026-06-23 14:44:32 (13 hours ago)	Honeypot hit: HTTP/1.1 request on 8886 GET / Accept: /; 8886 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 8886 GET / Accept: /; 8886 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇩🇪 ValtonTahiri	2026-06-23 03:07:09 (1 day ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=220.202.112.240; proto=TCP; source_port=61703; target_port=7443; flags=SYN show less	Port Scan
🇩🇪 _ArminS_	2026-06-18 12:42:11 (5 days ago)	SP-Scan 51535:5357 detected 2026.06.18 14:42:11 blocked until 2026.08.07 07:44:58	Port Scan
🇳🇱 StopAbuse	2026-06-17 08:43:41 (6 days ago)	tcp/5577	Port Scan
🇵🇱 sefinek.net	2026-06-16 04:17:53 (1 week ago)	Blocked by UFW on PL02 [1031/tcp] \| SPT: 41865 \| TTL: 228 \| LEN: 44 \| TOS: 0x00 • Reported by: githu ... show more Blocked by UFW on PL02 [1031/tcp] \| SPT: 41865 \| TTL: 228 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-16 01:03:13 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-15 10:01:30 (1 week ago)	Honeypot hit: HTTP/1.1 request on 5984 GET / Accept: /; 5984 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 5984 GET / Accept: /; 5984 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-15 03:08:58 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 Soncraft	2026-06-14 17:02:43 (1 week ago)	Blocked by UFW on Jellyfin [12357/tcp] Source port: 62514 TTL: 237 Packet length: 44 TOS: 0x08 This ... show more Blocked by UFW on Jellyfin [12357/tcp] Source port: 62514 TTL: 237 Packet length: 44 TOS: 0x08 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇵🇱 sefinek.net	2026-06-14 14:03:40 (1 week ago)	Honeypot hit: Unauthorized traffic (12 bytes of payload); 7000 [1] TCP Reported by: https://github.c ... show more Honeypot hit: Unauthorized traffic (12 bytes of payload); 7000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 xmission.com	2026-06-14 09:02:41 (1 week ago)	Blocked by UFW (TCP on 7091) Source port: 50520 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 7091) Source port: 50520 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.202.112.240) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-14 02:43:42 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 18:35:31 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 71 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.80

🇺🇸 107.5.83.71

🇬🇧 45.82.76.117

🇸🇬 43.160.215.203

🇵🇭 27.49.10.17

🇧🇷 205.210.31.205

🇺🇸 170.62.6.204

🇫🇮 147.185.133.226

🇧🇬 78.128.114.58

🇳🇱 46.129.5.250

🇸🇬 43.160.249.98

🇺🇸 2607:fb92:181:1393:6cb6:960c:7a4f:5b0a

🇺🇸 205.210.31.40

🇺🇸 185.191.171.10

🇰🇷 180.233.248.16

🇻🇳 103.199.71.172

🇸🇬 103.136.221.62

🇳🇱 45.148.10.141

🇦🇺 1.145.230.191

🇺🇸 216.25.89.76