JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.202.112.95

220.202.112.95 was found in our database!

This IP was reported 68 times. Confidence of Abuse is 40%: ?

40%

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.202.112.95

Whois 220.202.112.95

IP Abuse Reports for 220.202.112.95:

This IP address has been reported a total of 68 times from 25 distinct sources. 220.202.112.95 was first reported on January 20th 2024, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-12 02:45:31 (20 hours ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 femboy.cat	2026-06-11 07:15:47 (1 day ago)	Port scan to tcp/3025 from 220.202.112.95	Brute-Force
🇺🇸 MPL	2026-06-09 23:45:37 (2 days ago)	tcp/50111	Port Scan
🇬🇧 PeravixGroup	2026-06-09 10:33:16 (3 days ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇺🇸 MPL	2026-06-08 03:27:46 (4 days ago)	tcp/3690 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-06 15:04:09 (6 days ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 MPL	2026-06-05 19:36:51 (1 week ago)	tcp/10001 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-05 09:24:26 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-04 09:00:09 (1 week ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇺🇸 MPL	2026-06-03 20:17:06 (1 week ago)	tcp/8888	Port Scan
🇫🇮 6kilowatti	2026-06-03 18:35:46 (1 week ago)	2026-06-03T21:35:45.429494+03:00 oh6ah kernel: [UFW BLOCK] IN=enp2s0 OUT= MAC=00:26:18:a8:d6:75:2e:2 ... show more 2026-06-03T21:35:45.429494+03:00 oh6ah kernel: [UFW BLOCK] IN=enp2s0 OUT= MAC=00:26:18:a8:d6:75:2e:2d:5e:71:aa:73:08:00 SRC=220.202.112.95 DST=192.168.0.102 LEN=44 TOS=0x00 PREC=0x00 TTL=234 ID=29858 PROTO=TCP SPT=53453 DPT=1022 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-06-01 17:10:21 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-31 15:32:57 (1 week ago)	tcp/5986	Port Scan
🇬🇧 PeravixGroup	2026-05-31 06:07:41 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 Cyber Crusader	2026-05-30 23:42:02 (1 week ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force

Showing 1 to 15 of 68 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 160.251.101.169

🇨🇳 210.22.149.155

🇩🇪 151.123.178.221

🇮🇳 128.185.225.78

🇨🇳 111.26.63.87

🇳🇱 91.92.40.25

🇳🇱 45.148.10.157

🇬🇧 35.203.211.147

🇺🇸 216.126.227.171

🇯🇵 202.182.103.75

🇮🇩 202.155.19.38

🇺🇸 147.185.132.226

🇳🇴 141.98.253.120

🇿🇦 102.23.94.28

🇺🇸 66.249.77.130

🇺🇸 66.249.77.129

🇺🇸 52.167.144.218

🇭🇰 42.200.66.164

🇮🇳 182.79.83.98

🇺🇸 173.254.213.217