JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.138.158.166

182.138.158.166 was found in our database!

This IP was reported 469 times. Confidence of Abuse is 78%: ?

78%

ISP	CHINANET Sichuan province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	sctel.com.cn
Country	🇨🇳 China
City	Chengdu, Sichuan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.138.158.166

Whois 182.138.158.166

IP Abuse Reports for 182.138.158.166:

This IP address has been reported a total of 469 times from 98 distinct sources. 182.138.158.166 was first reported on May 3rd 2022, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-12 23:25:01 (17 hours ago)	Blocked by UFW (TCP on 8089) Source port: 20285 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 8089) Source port: 20285 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 182.138.158.166) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-12 02:50:54 (1 day ago)	Blocked by UFW on LAXHH [2194/tcp] \| SPT: 61674 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [2194/tcp] \| SPT: 61674 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-11 13:42:33 (2 days ago)	tcp/1234 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-11 05:00:34 (2 days ago)	Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: ... show more Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: MEDIUM. Aaran.cloud show less	Port Scan Brute-Force
🇺🇸 MPL	2026-06-10 23:28:28 (2 days ago)	tcp/505 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-10 21:05:20 (2 days ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇧🇷 ICS Labs	2026-06-10 17:33:09 (2 days ago)	ICS Labs identified 182.138.158.166 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇩🇪 femboy.cat	2026-06-08 08:36:54 (5 days ago)	Port scan to tcp/4000 from 182.138.158.166	Brute-Force
🇬🇧 PeravixGroup	2026-06-08 01:08:15 (5 days ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-07 06:41:58 (6 days ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇫🇷 security.rdmc.fr	2026-06-06 16:42:08 (1 week ago)	IP in Malicious Database	Web App Attack
🇨🇦 DRI	2026-06-06 14:41:13 (1 week ago)	Unsolicited TCP traffic on Honeypot, srcport=46867 dstport=8032	Port Scan Hacking
🇩🇪 dispaisyenterprises	2026-06-06 14:39:49 (1 week ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 18264 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 18264 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 Justin F. \| AS204464	2026-06-06 08:34:39 (1 week ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 44818 GET / Accept: /; 44818 [1] TCP Reported b ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 44818 GET / Accept: /; 44818 [1] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-06 04:01:57 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 469 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇩 210.4.68.72

🇺🇸 200.10.45.193

🇬🇧 188.240.59.13

🇲🇽 187.251.123.104

🇮🇩 182.253.156.173

🇲🇴 182.93.50.90

🇸🇬 172.253.236.211

🇩🇪 167.94.146.77

🇺🇸 162.254.36.150

🇦🇴 154.116.254.157

🇺🇸 100.49.117.77

🇫🇷 51.68.34.131

🇷🇺 178.176.87.195

🇭🇰 172.71.218.228

🇨🇳 115.190.181.18

🇺🇸 82.108.66.56

🇺🇸 54.177.95.82

🇺🇸 52.167.144.59

🇺🇸 47.230.151.38

🇨🇳 14.103.10.167