JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.202.112.52

220.202.112.52 was found in our database!

This IP was reported 73 times. Confidence of Abuse is 60%: ?

60%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.202.112.52

Whois 220.202.112.52

IP Abuse Reports for 220.202.112.52:

This IP address has been reported a total of 73 times from 33 distinct sources. 220.202.112.52 was first reported on January 21st 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 Tanados	2026-06-14 20:37:11 (1 day ago)	Blocked by UFW [7687/tcp] Source port: 15845 TTL: 230 Packet length: 44 TOS: 0x00 This report was g ... show more Blocked by UFW [7687/tcp] Source port: 15845 TTL: 230 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-14 19:16:03 (1 day ago)	unsolicited connect TCP dport 27017 (sport 56499)	Hacking
🇸🇬 drewf.ink	2026-06-14 15:24:42 (2 days ago)	[15:24] Port scanning. Port(s) scanned: TCP/5000	Port Scan
🇸🇬 drewf.ink	2026-06-13 10:26:09 (3 days ago)	[10:26] Port scanning. Port(s) scanned: TCP/1723	Port Scan
🇺🇸 MPL	2026-06-11 19:55:36 (4 days ago)	tcp/9997	Port Scan
🇺🇸 axl	2026-06-11 16:48:40 (5 days ago)	Blocked by UFW on MVI [1443/tcp] \| SPT: 46883 \| TTL: 233 \| LEN: 44 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on MVI [1443/tcp] \| SPT: 46883 \| TTL: 233 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-11 07:25:02 (5 days ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-11 02:36:41 (5 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-10 19:50:50 (5 days ago)	Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. A ... show more Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. Aaran.cloud show less	DDoS Attack Hacking
🇺🇸 xmission.com	2026-06-07 14:58:59 (1 week ago)	Blocked by UFW (TCP on 6581) Source port: 49809 TTL: 237 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 6581) Source port: 49809 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 220.202.112.52) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-07 13:22:59 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇮 6kilowatti	2026-06-06 16:56:51 (1 week ago)	2026-06-06T19:56:50.227124+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-06-06T19:56:50.227124+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=220.202.112.52 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=229 ID=23424 PROTO=TCP SPT=29445 DPT=5432 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 xmission.com	2026-06-06 14:46:21 (1 week ago)	Blocked by UFW (TCP on 3025) Source port: 51049 TTL: 237 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 3025) Source port: 51049 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 220.202.112.52) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-06 10:17:34 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 09:15:46 (2 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking

Showing 1 to 15 of 73 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 192.109.200.78

🇩🇪 164.92.250.106

🇯🇵 156.246.88.93

🇺🇸 135.119.27.130

🇨🇳 116.249.227.66

🇨🇳 110.42.32.187

🇮🇩 103.195.31.152

🇳🇱 93.123.109.62

🇺🇸 54.225.52.227

🇯🇵 54.178.27.53

🇺🇸 50.116.26.161

🇸🇬 47.82.54.167

🇪🇨 45.184.226.43

🇬🇧 35.203.211.213

🇬🇧 35.203.210.197

🇯🇵 13.230.111.142

🇨🇳 203.56.201.183

🇭🇰 199.45.154.187

🇧🇪 198.235.24.216

🇸🇪 195.178.191.5