JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.224.209.153

139.224.209.153 was found in our database!

This IP was reported 183 times. Confidence of Abuse is 100%: ?

100%

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.224.209.153

Whois 139.224.209.153

IP Abuse Reports for 139.224.209.153:

This IP address has been reported a total of 183 times from 115 distinct sources. 139.224.209.153 was first reported on March 15th 2024, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-28 00:28:17 (14 hours ago)	Bulk report from WAF Auto-Blocker Dashboard	Brute-Force SSH
🇺🇸 micropedro	2026-06-09 10:16:46 (2 weeks ago)	3 incidents: malicious activity. First: 2026-06-01 06:14, Last: 2026-06-09 06:16 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-06-01 06:14, Last: 2026-06-09 06:16 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-06-08 10:15:33 (2 weeks ago)	3 incidents: malicious activity. First: 2026-06-01 06:14, Last: 2026-06-08 06:15 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-06-01 06:14, Last: 2026-06-08 06:15 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 SYSMarshal	2026-05-29 03:29:48 (4 weeks ago)	SYSMarshal detection: Hacking Attempt, FTP Abuse, DNS Attack [EventID:0]	Hacking
🇮🇳 Parth Maniar	2026-05-28 13:47:08 (1 month ago)	This IP address carried out 2 SSH credential attack (attempts) on 27-05-2026. For more information o ... show more This IP address carried out 2 SSH credential attack (attempts) on 27-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
🇩🇪 Da_tschek	2026-05-27 18:48:46 (1 month ago)	Port scanning	Port Scan Hacking
🇮🇳 Parth Maniar	2026-05-27 18:24:28 (1 month ago)	This IP address carried out 32 port scanning attempts on 26-05-2026. For more information or to repo ... show more This IP address carried out 32 port scanning attempts on 26-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇮🇳 Parth Maniar	2026-05-27 10:40:28 (1 month ago)	This IP address carried out 6 SSH credential attack (attempts) on 26-05-2026. For more information o ... show more This IP address carried out 6 SSH credential attack (attempts) on 26-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
🇺🇸 LSPCCU	2026-05-27 00:39:33 (1 month ago)	TSEC Honeypot Network report. Threat score: 100/100. Categories: DDoS Attack, Port Scan, Hacking, Br ... show more TSEC Honeypot Network report. Threat score: 100/100. Categories: DDoS Attack, Port Scan, Hacking, Brute-Force, Web App Attack, SSH, IoT Targeted. Honeypot: ssh-telnet, cowrie. Context: 139. show less	DDoS Attack Port Scan Hacking Brute-Force Web App Attack SSH IoT Targeted
🇳🇱 StopAbuse	2026-05-26 23:42:51 (1 month ago)	tcp/2222	Port Scan
🇺🇸 RAP	2026-05-26 23:38:32 (1 month ago)	2026-05-26 23:38:32 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇩🇪 dispaisyenterprises	2026-05-26 23:35:59 (1 month ago)	Honeypot [fra-de-honeypot]: Brute-force attack detected on 23/TELNET • Credential used: admin:admin ... show more Honeypot [fra-de-honeypot]: Brute-force attack detected on 23/TELNET • Credential used: admin:admin • Number of login attempts: 1 Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking
🇺🇸 SuperCores Hosting	2026-05-26 23:11:29 (1 month ago)	[2026-05-26 23:11:29.220075] TELNET/23 Unautorized connection, Suspicious Mirai Botnet.	IoT Targeted Brute-Force Hacking Port Scan DDoS Attack
🇺🇸 xmission.com	2026-05-26 22:47:48 (1 month ago)	Blocked by UFW (TCP on 23) Source port: 62965 TTL: 47 Packet length: 40 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 62965 TTL: 47 Packet length: 40 TOS: 0x08 This report (for 139.224.209.153) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇦🇹 urnilxfgbez	2026-05-26 22:45:00 (1 month ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan

Showing 1 to 15 of 183 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 172.71.103.217

🇦🇷 152.171.217.85

🇨🇭 62.167.161.53

🇬🇧 193.163.125.253

🇬🇧 193.163.125.249

🇨🇳 180.184.52.206

🇺🇸 161.35.126.126

🇺🇸 147.182.139.128

🇫🇷 51.178.114.78

🇱🇹 45.227.254.170

🇺🇸 45.156.129.131

🇺🇸 45.146.54.88

🇨🇳 223.105.71.106

🇨🇴 190.131.202.91

🇭🇰 152.32.131.118

🇨🇳 117.81.212.152

🇸🇪 93.158.91.39

🇩🇪 69.5.169.253

🇧🇷 45.205.1.244

🇺🇿 213.230.127.104