JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.22.30.139

165.22.30.139 was found in our database!

This IP was reported 56 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.22.30.139

Whois 165.22.30.139

IP Abuse Reports for 165.22.30.139:

This IP address has been reported a total of 56 times from 39 distinct sources. 165.22.30.139 was first reported on May 25th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-05 17:47:02 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 18789 [31] TCP Reported by: https://github.com/s ... show more Honeypot hit: Empty payload (likely service probe); 18789 [31] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇦🇪 abusiveIntelligence	2026-06-05 16:40:00 (1 week ago)	RDP connect attempt: Nmap Scanner	Brute-Force
🇺🇸 NeverBehave	2026-06-05 09:33:47 (1 week ago)	[fail2ban] service ocserv jail	Brute-Force Web App Attack
🇦🇺 LiftUp Hosting	2026-06-05 07:15:57 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 8000 [17] TCP	Port Scan
Anonymous	2026-06-05 06:07:25 (1 week ago)	IncogNET WAF local CrowdSec decision. Scenario=crowdsecurity/http-probing; Action=ban; Events=11; Ho ... show more IncogNET WAF local CrowdSec decision. Scenario=crowdsecurity/http-probing; Action=ban; Events=11; Hosts=_; Paths=HELP,OPTIONS / RTSP/1.0,\x00\x00\x00qj\x81n0\x81k\xA1\x03\x02\x01\x05\xA2\x03\x02\x01,\x00\x0C\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00,\x00\x1E\x00\x06\x01\x00\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03,\x03\x00\x00*%\xE0\x00\x00\x00\x00\x00Cookie: mstshash=nmap,\x16\x03\x00\x00S\x01\x00\x00O\x03\x00?G\xD7\xF7\xBA,\xEE\xEA\xB2`~\xF3\x00\xFD\x82{\xB9\xD5\x96\xC8w\x9B\xE6\xC4\xDB<=\xDBo\xEF\x10n\x00\x00(\x00\x16\x00\x13\x00,\x16\x03\x00\x00i\x01\x00\x00e\x03\x03U\x1C\xA7\xE4random1random2random3random4\x00\x00\x0C\x00/\x00; Country=DE; ASN=14061 DIGITALOCEAN-ASN show less	Port Scan Web App Attack
🇨🇦 Slackin' Jack	2026-06-05 04:23:48 (1 week ago)	Unauthorized scraper/crawler on port 80/443. (165.22.30.139)	Bad Web Bot
🇺🇸 m2jest1c	2026-06-05 01:20:37 (1 week ago)	2026-06-04T21:20:36.458695 rhel-20gb-ash-1 sshd[3536185]: error: kex_exchange_identification: Connec ... show more 2026-06-04T21:20:36.458695 rhel-20gb-ash-1 sshd[3536185]: error: kex_exchange_identification: Connection closed by remote host 2026-06-04T21:20:36.458731 rhel-20gb-ash-1 sshd[3536185]: Connection closed by 165.22.30.139 port 2863 ... show less	Brute-Force SSH
🇺🇸 kuroneko_omu	2026-06-05 00:23:17 (1 week ago)	Fail2Ban <webattack> jail detected 5 attempts against 165.22.30.139.	DDoS Attack Hacking Brute-Force Web App Attack
🇩🇪 dispaisyenterprises	2026-06-04 23:41:59 (1 week ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 1234 [15] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 1234 [15] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 Apache	2026-06-04 18:42:32 (1 week ago)	(mod_security) mod_security (id:920350) triggered by 165.22.30.139 (DE/Germany/-): 5 in the last 300 ... show more (mod_security) mod_security (id:920350) triggered by 165.22.30.139 (DE/Germany/-): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack
🇩🇪 manuelisus	2026-06-04 16:45:53 (1 week ago)	Honeypot HTTP: +10: honeypot_connection, +15: short_automated_session, +20: http_no_user_agent, +10: ... show more Honeypot HTTP: +10: honeypot_connection, +15: short_automated_session, +20: http_no_user_agent, +10: hosting_provider_digital, +15: cloud_provider_DigitalOcean show less	Web App Attack Hacking
🇺🇸 SuperCores Hosting	2026-06-04 14:36:52 (1 week ago)	[2026-06-04 14:36:52.148065] TELNET/8080 Unautorized connection, Suspicious Mirai Botnet.	IoT Targeted Brute-Force Hacking Port Scan DDoS Attack
🇺🇸 gu-alvareza	2026-06-04 07:05:12 (1 week ago)	Nmap.Script.Scanner	Port Scan
🇳🇱 donarev419	2026-06-04 02:44:54 (1 week ago)	Port scan detected on port 9092 (connection without data transfer)	Port Scan
Anonymous	2026-06-03 23:37:54 (1 week ago)	165.22.30.139 detected on srv01	Brute-Force

Showing 1 to 15 of 56 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇿 193.105.123.59

🇺🇸 154.6.50.13

🇭🇰 101.36.127.86

🇳🇱 45.148.10.183

🇩🇪 2003:a:d5e:e000:89e0:baa0:6d:b65a

🇺🇸 198.179.70.19

🇧🇴 190.181.44.194

🇸🇬 190.92.205.7

🇧🇷 186.248.197.77

🇲🇴 182.93.50.90

🇹🇭 182.53.71.33

🇮🇳 157.39.64.141

🇹🇭 147.50.231.135

🇭🇰 118.193.47.155

🇸🇾 91.144.21.210

🇨🇦 85.217.149.32

🇫🇷 77.237.247.134

🇺🇸 67.227.108.80

🇺🇸 66.132.186.138

🇸🇬 52.187.9.8