JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.22.83.2

165.22.83.2 was found in our database!

This IP was reported 56 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.22.83.2

Whois 165.22.83.2

IP Abuse Reports for 165.22.83.2:

This IP address has been reported a total of 56 times from 37 distinct sources. 165.22.83.2 was first reported on December 20th 2020, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇯🇵 ki3	2026-06-11 19:46:41 (3 days ago)	Fail2Ban: Postfix Attack 165.22.83.2 1781207201.0(JST)	Email Spam Brute-Force
Anonymous	2026-06-11 16:10:23 (3 days ago)	Honeypot hit: Empty payload (likely service probe); 2525 [14] TCP Reported by: https://github.com/se ... show more Honeypot hit: Empty payload (likely service probe); 2525 [14] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 knock	2026-06-11 13:59:49 (3 days ago)	Knock-Knock honeypot brute-force: SMB (1 total hits)	Brute-Force
🇬🇧 gbzret4d	2026-06-11 12:27:04 (3 days ago)	Honeypot [uk-production01]: SMB traffic on port 445	Hacking
🇬🇧 PeravixGroup	2026-06-11 10:57:02 (3 days ago)	Honeypot detection: SIP/VoIP unauthorized registration / call routing abuse attempt on port 6443. Se ... show more Honeypot detection: SIP/VoIP unauthorized registration / call routing abuse attempt on port 6443. Severity: HIGH. Aaran.cloud show less	Hacking Brute-Force
🇩🇪 ghostwarriors	2026-06-11 10:50:26 (3 days ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇺🇸 xxkodedxx	2026-06-11 05:51:20 (3 days ago)	[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost) Trigger: 16× edge-block in 1 ... show more [Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost) Trigger: 16× edge-block in 10m window. Origin: DE / AS14061 DigitalOcean, LLC Active: 05:50:51→05:51:01 UTC Volume: 16 HTTP req Probed: /, /sdk, /evox/about, /HNAP1, /odinhttpcall1781157058 Status mix: 444×9 400×7 Vhost fishing: 67.217.240.72 UA: "Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)" Auto-banned 30d. zorvexus-banner. show less	Bad Web Bot Web App Attack
🇲🇹 neilcaruana	2026-06-11 05:49:21 (3 days ago)	Sentinel detected an attack on port [443]	Hacking
🇬🇧 PeravixGroup	2026-06-11 01:28:38 (3 days ago)	Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: ... show more Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: MEDIUM. Aaran.cloud show less	Port Scan Brute-Force
🇧🇬 Ilcheff	2026-06-11 00:35:14 (3 days ago)	(TLS,handshake,Dovecot,failure) Login failure/trigger from 165.22.83.2 (DE/Germany/-): 3 in the last ... show more (TLS,handshake,Dovecot,failure) Login failure/trigger from 165.22.83.2 (DE/Germany/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 11 03:35:08 dovecot: imap-login: Disconnected (no auth attempts in 6 secs): user=[USERNAME] rip=165.22.83.2, lip=0.0.0.x, TLS handshaking: SSL_accept() failed: error:1420918C:SSL routines:tls_early_post_process_client_hello:version too low, session=<nPlDiO9TaVWlFlMC> Jun 11 03:35:08 dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=[USERNAME] rip=165.22.83.2, lip=0.0.0.x, TLS handshaking: SSL_accept() failed: error:1417A0C1:SSL routines:tls_post_process_client_hello:no sha show less	Port Scan
🇩🇪 lirion	2026-06-10 22:48:13 (3 days ago)	2026-06-11T00:48:12.785985+02:00 rserver.lirion.de postfix/smtpd[2551116]: improper command pipelini ... show more 2026-06-11T00:48:12.785985+02:00 rserver.lirion.de postfix/smtpd[2551116]: improper command pipelining after CONNECT from unknown[165.22.83.2]: HELP\r\n 2026-06-11T00:48:12.800953+02:00 rserver.lirion.de postfix/smtpd[2551116]: improper command pipelining after CONNECT from unknown[165.22.83.2]: \r\n\r\n 2026-06-11T00:48:12.814393+02:00 rserver.lirion.de postfix/smtpd[2551116]: improper command pipelining after CONNECT from unknown[165.22.83.2]: GET / HTTP/1.0\r\n\r\n 2026-06-11T00:48:12.837617+02:00 rserver.lirion.de postfix/smtpd[2551116]: improper command pipelining after CONNECT from unknown[165.22.83.2]: OPTIONS / HTTP/1.0\r\n\r\n ... show less	Email Spam Brute-Force
🇬🇧 PeravixGroup	2026-06-10 12:46:42 (4 days ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇩🇪 licen777	2026-06-10 09:57:49 (4 days ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-10T09:56:51Z and 2026-06-1 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-10T09:56:51Z and 2026-06-10T09:57:49Z show less	Brute-Force SSH
🇺🇸 gu-alvareza	2026-06-10 07:06:02 (4 days ago)	Nmap.Script.Scanner	Port Scan
🇬🇧 PeravixGroup	2026-06-09 18:05:14 (5 days ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 56 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 185.198.240.178

🇩🇪 167.94.146.36

🇩🇪 159.223.16.117

🇸🇬 129.227.75.98

🇨🇭 104.244.74.84

🇹🇭 49.49.242.52

🇲🇽 187.174.238.116

🇮🇶 169.224.105.121

🇩🇪 159.195.58.118

🇧🇯 154.127.43.236

🇧🇷 138.122.155.161

🇨🇳 112.19.161.224

🇺🇦 91.240.96.4

🇬🇧 51.89.129.195

🇬🇧 198.244.168.152

🇹🇿 197.186.15.6

🇱🇹 185.169.4.181

🇮🇳 182.95.232.186

🇭🇳 181.115.7.203

🇻🇳 157.66.27.54