JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.202.22.228

42.202.22.228 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 100%: ?

100%

ISP	CHINANET Liaoning province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.202.22.228

Whois 42.202.22.228

IP Abuse Reports for 42.202.22.228:

This IP address has been reported a total of 25 times from 20 distinct sources. 42.202.22.228 was first reported on April 21st 2022, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-15 18:08:27 (3 hours ago)	tcp/23 (2 or more attempts)	Port Scan
🇺🇸 RAP	2026-06-15 10:52:56 (10 hours ago)	2026-06-15 10:52:56 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇩🇪 Admins@FBN	2026-06-15 10:36:36 (11 hours ago)	FW-PortScan: Traffic Blocked srcport=48064 dstport=23	Port Scan
🇵🇱 mkey	2026-06-15 06:35:03 (15 hours ago)	Verified scan activity detected by local IDS/firewall correlation. SCAN: HIGHRISK_SINGLEPORT \| PORTS ... show more Verified scan activity detected by local IDS/firewall correlation. SCAN: HIGHRISK_SINGLEPORT \| PORTS=23 \| HITS=2 \| IPSET=ADD \| FIRST=2026-06-15 08:30:43 \| LAST=2026-06-15 08:30:44. Last seen 2026-06-15 08:30:44. show less	Port Scan
🇧🇾 sashan	2026-06-14 21:45:26 (1 day ago)	2026-06-15T00:45:26.139418+03:00 gate kernel: nftables: JAIL-TELNET IN=wan OUT= MAC= SRC=42.202.22.2 ... show more 2026-06-15T00:45:26.139418+03:00 gate kernel: nftables: JAIL-TELNET IN=wan OUT= MAC= SRC=42.202.22.228 DST=xxx.xxx.xxx.xxx LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=13422 DF PROTO=TCP SPT=33873 DPT=23 WINDOW=29040 RES=0x00 SYN URGP=0 ... show less	Port Scan
Anonymous	2026-06-14 18:59:42 (1 day ago)	Honeypot hit: Unauthorized connection attempt detected on 23/TELNET Reported by: https://github.com/ ... show more Honeypot hit: Unauthorized connection attempt detected on 23/TELNET Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Port Scan
🇧🇾 stroytrest	2026-06-14 10:30:55 (1 day ago)	2026-06-14T13:30:54.080493+03:00 gate kernel: [1747653.243713] nftables: JAIL-TELNET IN=wan OUT= MAC ... show more 2026-06-14T13:30:54.080493+03:00 gate kernel: [1747653.243713] nftables: JAIL-TELNET IN=wan OUT= MAC= SRC=42.202.22.228 DST=xxx.xxx.xxx.xxx LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=20927 DF PROTO=TCP SPT=46171 DPT=23 WINDOW=29040 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-06-14 00:23:16 (1 day ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 mutebot.net	2026-06-13 20:00:57 (2 days ago)	SRC=42.202.22.228, PROTO=TCP, SPT=59410, DPT=23	Port Scan
🇩🇪 zupan	2026-06-13 03:55:54 (2 days ago)	Blocked by UFW on vps [23/tcp] \| SPT: 44028 \| TTL: 50 \| LEN: 60 \| TOS: 0x00 • Reported by: github.co ... show more Blocked by UFW on vps [23/tcp] \| SPT: 44028 \| TTL: 50 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan IoT Targeted
🇦🇺 dyln	2026-06-12 23:59:33 (2 days ago)	Dyls honeypot brute-force: Telnet (99 total hits)	Brute-Force
🇨🇭 m_vlasov	2026-06-12 16:24:18 (3 days ago)	SSH/Telnet honeypot: 0 login attempts, 1 sessions, 0 shell commands.	Port Scan IoT Targeted
🇩🇪 Admins@FBN	2026-06-12 11:13:45 (3 days ago)	FW-PortScan: Traffic Blocked srcport=35077 dstport=23	Port Scan
🇺🇸 cybsecaoccol	2026-06-11 23:42:18 (3 days ago)	unauthorized connection or malicious port scan attempted on tcp port - corp	Port Scan Hacking
🇦🇹 urnilxfgbez	2026-06-09 22:45:00 (5 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 201.71.222.143

🇸🇦 193.122.70.111

🇳🇱 91.92.40.4

🇫🇷 88.164.82.14

🇨🇳 42.249.192.59

🇰🇷 211.169.131.196

🇨🇱 181.43.127.24

🇺🇸 172.172.196.177

🇺🇸 100.52.1.126

🇳🇱 91.92.40.12

🇳🇱 81.19.216.66

🇳🇱 45.198.224.136

🇺🇸 34.26.35.187

🇭🇰 8.217.81.46

🇰🇷 222.108.100.117

🇬🇧 217.146.80.119

🇹🇼 198.235.24.90

🇨🇿 185.40.80.206

🇰🇷 121.165.45.56

🇹🇳 102.152.219.112