JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 222.240.3.66

222.240.3.66 was found in our database!

This IP was reported 111 times. Confidence of Abuse is 100%: ?

100%

ISP	CHINANET-HN Changsha node network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	hntelecom.net.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 222.240.3.66

Whois 222.240.3.66

IP Abuse Reports for 222.240.3.66:

This IP address has been reported a total of 111 times from 53 distinct sources. 222.240.3.66 was first reported on April 17th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cwytech	2026-06-08 02:36:20 (2 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/pf-geofence-high.	Hacking
🇩🇪 Admins@FBN	2026-06-07 13:09:02 (16 hours ago)	FW-PortScan: Traffic Blocked srcport=36750 dstport=41502	Port Scan
🇩🇪 Admins@FBN	2026-06-07 08:48:16 (20 hours ago)	FW-PortScan: Traffic Blocked srcport=10641 dstport=27015	Port Scan
🇳🇱 ByeByte API	2026-06-07 01:00:24 (1 day ago)	Port scan from this IP. Firewall dropped every packet. Single burst at 2026-06-07 01:00 UTC.	Port Scan
🇺🇸 anon333	2026-06-06 07:34:04 (1 day ago)	Hacker syslog review 1780731244	Hacking
🇫🇮 6kilowatti	2026-06-06 06:50:11 (1 day ago)	2026-06-06T09:50:11.230409+03:00 koti kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:bd:29:2d:18:f ... show more 2026-06-06T09:50:11.230409+03:00 koti kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:bd:29:2d:18:fd:74:70:71:9e:08:00 SRC=222.240.3.66 DST=10.0.0.30 LEN=552 TOS=0x00 PREC=0x00 TTL=48 ID=29905 PROTO=TCP SPT=9678 DPT=59958 WINDOW=31117 RES=0x00 ACK URGP=0 ... show less	Port Scan
🇺🇸 Cyber Crusader	2026-06-05 04:59:22 (3 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇳🇱 StopAbuse	2026-06-04 05:35:56 (3 days ago)	47	Port Scan
🇹🇭 Sawasdee	2026-06-04 04:24:07 (4 days ago)	Port Scan ...	Port Scan
🇺🇸 Cyber Crusader	2026-06-02 14:30:02 (5 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇩🇪 ValtonTahiri	2026-06-01 14:30:44 (6 days ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=222.240.3.66; proto=UDP; source_port=41281; target_port=20715 show less	Port Scan
🇺🇸 micropedro	2026-06-01 09:30:40 (6 days ago)	3 incidents: malicious activity. First: 2026-05-18 04:04, Last: 2026-06-01 05:30 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-05-18 04:04, Last: 2026-06-01 05:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-06-01 09:30:40 (6 days ago)	4 incidents: malicious activity. First: 2026-05-25 04:30, Last: 2026-06-01 05:30 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-05-25 04:30, Last: 2026-06-01 05:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇩🇪 ValtonTahiri	2026-06-01 08:55:41 (6 days ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=222.240.3.66; proto=UDP; source_port=63458; target_port=28871 show less	Port Scan
🇳🇮 elfita	2026-06-01 06:36:54 (6 days ago)	Blocked by nftables on AmneziaWG gateway	Port Scan Brute-Force Exploited Host

Showing 1 to 15 of 111 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 178.128.84.187

🇺🇸 162.243.76.125

🇵🇰 154.192.112.193

🇮🇳 125.20.228.146

🇭🇰 119.246.15.94

🇨🇳 117.191.127.86

🇨🇳 116.179.33.83

🇺🇸 104.168.4.239

🇺🇸 91.230.168.211

🇨🇦 85.217.149.3

🇨🇳 58.220.39.200

🇺🇸 47.77.182.54

🇱🇹 45.227.254.170

🇰🇷 4.230.28.141

🇺🇸 2604:a880:400:d1:0:4:8bfc:a001

🇯🇵 205.234.196.32

🇺🇸 166.88.81.234

🇺🇸 130.131.220.95

🇨🇳 114.106.136.7

🇮🇳 103.64.129.98