JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.202.112.75

220.202.112.75 was found in our database!

This IP was reported 72 times. Confidence of Abuse is 69%: ?

69%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.202.112.75

Whois 220.202.112.75

IP Abuse Reports for 220.202.112.75:

This IP address has been reported a total of 72 times from 33 distinct sources. 220.202.112.75 was first reported on January 23rd 2024, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 sumnone	2026-06-23 03:46:19 (20 hours ago)	Port probing on unauthorized port 2083	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-22 02:05:03 (1 day ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-21 00:29:20 (2 days ago)	Honeypot detection: IMAP email brute-force authentication attempt on port 143. Severity: MEDIUM. Aar ... show more Honeypot detection: IMAP email brute-force authentication attempt on port 143. Severity: MEDIUM. Aaran.cloud show less	Brute-Force
🇬🇧 PeravixGroup	2026-06-20 00:16:19 (3 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇸🇪 donarev419	2026-06-19 04:29:49 (4 days ago)	Connection to port 995 with data transfer. Data preview: �	Port Scan Hacking
🇺🇸 xmission.com	2026-06-17 18:52:15 (6 days ago)	Blocked by UFW (TCP on 2166) Source port: 59247 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 2166) Source port: 59247 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.202.112.75) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-17 03:19:10 (6 days ago)	Honeypot hit: HTTP/1.1 request on 24622 GET / Accept: /; 24622 [1] TCP	Web App Attack
🇺🇸 Cyber Crusader	2026-06-15 04:45:23 (1 week ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇬🇧 sandra361	2026-06-14 03:43:04 (1 week ago)	Port scan detected: 8 attempts across 1 ports (8085). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=220 ... show more Port scan detected: 8 attempts across 1 ports (8085). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=220.202.112.75 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=21091 DF PROTO=TCP SPT=54096 DPT=8085 WINDOW=29200 RES=0x00 SYN URGP=0 show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-13 14:38:43 (1 week ago)	Honeypot hit: HTTP/1.1 request on 16696 GET / Accept: /; 16696 [1] TCP	Web App Attack
🇺🇸 xmission.com	2026-06-11 06:41:37 (1 week ago)	Blocked by UFW (TCP on 9443) Source port: 40483 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9443) Source port: 40483 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.202.112.75) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-10 19:43:48 (1 week ago)	tcp/1700	Port Scan
🇺🇸 MPL	2026-06-10 19:43:48 (1 week ago)	tcp/1700 (2 or more attempts)	Port Scan
🇦🇺 LiftUp Hosting	2026-06-10 09:51:58 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 18016 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-06-10 04:34:03 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 72 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 223.197.186.7

🇹🇼 210.68.105.68

🇧🇷 205.210.31.166

🇬🇧 193.163.125.158

🇻🇳 171.231.177.170

🇨🇳 106.75.224.165

🇺🇸 99.88.73.198

🇵🇱 95.214.53.157

🇳🇱 91.92.40.12

🇺🇸 66.132.186.230

🇳🇱 5.187.35.26

🇺🇸 2a13:dcc6:6c93:dd3c:30ed:475:9b6:95b9

🇧🇷 205.210.31.162

🇧🇷 205.210.31.151

🇺🇸 195.184.76.161

🇺🇸 162.216.149.6

🇺🇸 144.225.187.123

🇺🇸 135.237.125.195

🇫🇮 86.54.25.235

🇨🇦 85.217.149.53