JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.202.112.36

220.202.112.36 was found in our database!

This IP was reported 72 times. Confidence of Abuse is 66%: ?

66%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.202.112.36

Whois 220.202.112.36

IP Abuse Reports for 220.202.112.36:

This IP address has been reported a total of 72 times from 35 distinct sources. 220.202.112.36 was first reported on January 23rd 2024, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-22 03:19:19 (7 hours ago)	Honeypot detection: OS command injection in HTTP parameters on port 3306. Severity: MEDIUM. Aaran.cl ... show more Honeypot detection: OS command injection in HTTP parameters on port 3306. Severity: MEDIUM. Aaran.cloud show less	Hacking Web App Attack
🇺🇸 drewf.ink	2026-06-22 02:18:35 (8 hours ago)	[02:18] Port scanning. Port(s) scanned: TCP/8088	Port Scan
🇬🇧 PeravixGroup	2026-06-20 03:55:40 (2 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 Petre 21_ip	2026-06-16 09:00:57 (6 days ago)	2026-06-16T11:00:56.839641+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-06-16T11:00:56.839641+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=220.202.112.36 DST=155.133.26.57 LEN=44 TOS=0x00 PREC=0x00 TTL=239 ID=58326 PROTO=TCP SPT=22977 DPT=1521 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 MPL	2026-06-15 10:52:41 (1 week ago)	tcp/5598	Port Scan
🇯🇵 HeliJP	2026-06-15 06:53:20 (1 week ago)	Unauthorized connection attempt from IP address 220.202.112.36 on port 995	Port Scan Brute-Force
🇬🇧 gbzret4d	2026-06-12 15:03:55 (1 week ago)	Honeypot [uk-production01]: Large payload (1457 bytes); 16466 [1] TCP	Bad Web Bot
🇺🇸 MPL	2026-06-11 23:11:16 (1 week ago)	tcp/4000 (2 or more attempts)	Port Scan
🇧🇾 StatsMe	2026-06-09 22:25:31 (1 week ago)	2026-06-09T10:19:55.784732+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇺🇸 RAP	2026-06-09 14:45:30 (1 week ago)	2026-06-09 14:45:30 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇬🇧 PeravixGroup	2026-06-09 07:32:07 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇯🇵 mkaraki	2026-06-07 21:36:35 (2 weeks ago)	1780868194 # Service_probe # SIGNATURE_SEND # source_ip:220.202.112.36 # dst_port:3128 ...	Port Scan
🇩🇪 femboy.cat	2026-06-05 22:25:03 (2 weeks ago)	Port scan to tcp/8194 from 220.202.112.36	Brute-Force
🇬🇧 PeravixGroup	2026-06-05 00:53:15 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-04 22:09:36 (2 weeks ago)	tcp/20 (2 or more attempts)	Port Scan

Showing 1 to 15 of 72 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.104

🇧🇷 129.121.47.136

🇺🇸 104.234.53.104

🇨🇳 60.13.6.10

🇻🇪 190.77.55.120

🇺🇸 137.184.28.183

🇩🇿 129.45.77.200

🇬🇧 109.158.19.76

🇧🇩 103.125.28.131

🇸🇦 50.61.45.130

🇱🇹 45.227.254.170

🇨🇳 39.78.142.211

🇧🇪 35.205.233.171

🇺🇸 35.94.101.166

🇳🇱 195.178.110.30

🇬🇧 185.216.145.184

🇺🇸 150.107.38.251

🇵🇸 139.190.145.142

🇪🇸 139.47.22.82

🇱🇰 124.43.78.190