JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.226.100.103

139.226.100.103 was found in our database!

This IP was reported 170 times. Confidence of Abuse is 100%: ?

100%

ISP	CHINA UNICOM Shanghai city network
Usage Type	Fixed Line ISP
ASN	AS17621
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.226.100.103

Whois 139.226.100.103

IP Abuse Reports for 139.226.100.103:

This IP address has been reported a total of 170 times from 68 distinct sources. 139.226.100.103 was first reported on June 9th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-13 05:17:59 (1 week ago)	tcp/22 (2 or more attempts)	Port Scan
🇫🇷 Hiigara	2026-06-13 05:01:06 (1 week ago)	connection attempt : 139.226.100.103 on port : tcp/22 (SSH)	Port Scan
🇺🇸 MPL	2026-06-13 04:05:03 (1 week ago)	tcp ports: 2375,2222 (4 or more attempts)	Port Scan
🇩🇪 iNetWorker	2026-06-13 04:01:04 (1 week ago)	firewall-block, port(s): 80/tcp	Port Scan
🇺🇸 RAP	2026-06-13 03:32:36 (1 week ago)	2026-06-13 03:32:36 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇫🇷 Selckie	2026-06-13 01:47:02 (1 week ago)	fail2ban: NGINX unusual impact	Web App Attack
🇫🇷 Petre 21_ip	2026-06-13 01:14:34 (1 week ago)	2026-06-13T03:14:33.304217+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-06-13T03:14:33.304217+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=139.226.100.103 DST=155.133.26.57 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=31613 PROTO=TCP SPT=44069 DPT=2375 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 COMPLEX	2026-06-13 01:04:10 (1 week ago)	Unsolicited TCP traffic \| Action: DROP \| Port 80	Port Scan
🇺🇸 cwytech	2026-06-13 00:08:19 (1 week ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/web-asn-lockdown-high.	Bad Web Bot Web App Attack
🇫🇷 sthoyer.de	2026-06-12 22:46:27 (1 week ago)	Jun 13 00:46:26 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 13 00:46:26 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=139.226.100.103 DST=173.212.223.67 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=507 PROTO=TCP SPT=60614 DPT=23 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇦🇹 urnilxfgbez	2026-06-12 22:45:00 (1 week ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 RAP	2026-06-12 22:26:14 (1 week ago)	2026-06-12 22:26:14 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 MPL	2026-06-12 21:59:26 (1 week ago)	tcp/443 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-06-12 19:58:01 (1 week ago)	tcp/2375 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-06-12 19:39:31 (1 week ago)	tcp ports: 443,2375 (6 or more attempts)	Port Scan

Showing 1 to 15 of 170 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 113.167.181.237

🇨🇦 62.169.135.121

🇸🇨 45.194.67.29

🇨🇳 27.24.141.119

🇷🇴 2.57.121.112

🇩🇪 193.124.20.228

🇸🇬 167.71.213.48

🇺🇸 142.93.242.47

🇧🇷 45.205.1.244

🇧🇪 35.195.6.241

🇦🇺 2406:da1c:dd:1702:8f30:6a28:814b:8182

🇺🇦 194.44.140.3

🇸🇪 185.143.15.244

🇫🇮 170.168.173.32

🇺🇸 162.216.149.100

🇳🇱 132.243.121.237

🇯🇵 13.230.189.143

🇬🇧 193.176.29.18

🇧🇷 190.89.136.245

🇺🇸 166.77.36.6