JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.54.23.197

182.54.23.197 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 52%: ?

52%

ISP	China Unicom Ningxia Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Wuzhong, Ningxia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.54.23.197

Whois 182.54.23.197

IP Abuse Reports for 182.54.23.197:

This IP address has been reported a total of 18 times from 9 distinct sources. 182.54.23.197 was first reported on April 9th 2023, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-06 11:51:25 (1 hour ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-06 06:16:11 (7 hours ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-04 22:26:43 (1 day ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇮🇩 hermawan	2026-06-04 15:29:19 (1 day ago)	1780586947.608883 182.54.23.197 103.166.156.58 1024_2_1400_0 2026-06-04 22:29:07 WIB ...	Email Spam Hacking
🇬🇧 PeravixGroup	2026-06-04 14:27:29 (1 day ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 xmission.com	2026-06-03 22:36:26 (2 days ago)	Blocked by UFW (TCP on 7052) Source port: 65096 TTL: 236 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 7052) Source port: 65096 TTL: 236 Packet length: 44 TOS: 0x00 This report (for 182.54.23.197) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-02 14:49:54 (3 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-06-02 13:50:52 (4 days ago)	Honeypot hit: Large payload (1457 bytes); 9306 [1] TCP Reported by: https://github.com/sefinek/T-Pot ... show more Honeypot hit: Large payload (1457 bytes); 9306 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-05-31 14:15:50 (5 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇯🇵 mkaraki	2026-05-31 03:55:03 (6 days ago)	1780199701 # Service_probe # SIGNATURE_SEND # source_ip:182.54.23.197 # dst_port:902 ...	Port Scan
🇬🇧 PeravixGroup	2026-05-28 20:41:02 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-27 01:58:29 (1 week ago)	tcp/16000	Port Scan
🇺🇸 rjdefrancisco	2026-05-25 07:06:52 (1 week ago)	Unwanted traffic detected by honeypot on May 24, 2026: port scans (1 port 22 scan).	Port Scan Brute-Force SSH
Anonymous	2026-05-22 12:02:25 (2 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2024-08-20 02:53:17 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 192.178.37.153

🇨🇳 180.76.168.83

🇺🇸 162.243.228.110

🇺🇸 142.252.33.43

🇻🇳 103.82.20.28

🇬🇧 94.10.71.4

🇫🇷 90.9.234.63

🇳🇱 45.153.34.186

🇨🇳 36.156.65.222

🇺🇸 31.76.151.106

🇫🇷 185.208.207.227

🇺🇸 134.122.21.135

🇲🇦 102.78.237.240

🇳🇱 98.98.200.162

🇳🇱 45.148.10.152

🇺🇸 216.180.246.194

🇭🇰 199.45.154.182

🇺🇸 172.118.10.137

🇺🇸 108.31.93.252

🇻🇳 103.130.213.223