JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.54.23.199

182.54.23.199 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 48%: ?

48%

ISP	China Unicom Ningxia Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Wuzhong, Ningxia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.54.23.199

Whois 182.54.23.199

IP Abuse Reports for 182.54.23.199:

This IP address has been reported a total of 18 times from 9 distinct sources. 182.54.23.199 was first reported on September 14th 2022, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 Squearex	2026-06-08 01:09:53 (13 hours ago)	Automated ban by SCUMUnified Shield. Honeypot Trap Triggered (Decoy Port 3389)	Brute-Force SSH
🇬🇧 PeravixGroup	2026-06-06 08:37:19 (2 days ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇬🇧 PeravixGroup	2026-06-05 20:36:22 (2 days ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇺🇸 MPL	2026-06-04 09:16:45 (4 days ago)	tcp/10124	Port Scan
🇦🇹 urnilxfgbez	2026-06-02 22:45:00 (5 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇫🇷 zulzeen	2026-06-02 11:33:32 (6 days ago)	[distribamap-0] Blocked by SysWarden Firewall [GEO] (RDP/VNC Attack)	Brute-Force
🇺🇸 MPL	2026-06-01 18:11:16 (6 days ago)	tcp/8090 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-27 21:53:48 (1 week ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
🇮🇳 Parth Maniar	2026-05-25 20:08:00 (1 week ago)	This IP address carried out 2 port scanning attempts on 25-05-2026. For more information or to repor ... show more This IP address carried out 2 port scanning attempts on 25-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇬🇧 PeravixGroup	2026-05-25 10:43:42 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-05-25 08:22:14 (2 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-23 13:04:54 (2 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-22 09:58:50 (2 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇨🇦 DRI	2026-05-22 05:18:50 (2 weeks ago)	Unsolicited TCP traffic on Honeypot, srcport=58729 dstport=8388	Port Scan Hacking
Anonymous	2026-05-22 02:10:02 (2 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 138.91.105.36

🇮🇳 2401:4900:8831:4b84:f995:6270:689:5b3b

🇮🇳 182.95.233.154

🇳🇱 173.194.170.88

🇮🇳 154.221.35.72

🇭🇰 152.32.132.28

🇵🇰 113.203.203.231

🇳🇱 102.129.200.117

🇫🇷 91.196.152.6

🇫🇷 54.36.102.244

🇧🇷 35.199.119.13

🇺🇸 20.102.92.72

🇩🇪 213.209.159.56

🇺🇸 173.239.211.132

🇧🇷 172.217.35.148

🇺🇸 172.178.16.179

🇻🇳 171.231.177.214

🇻🇳 171.231.177.100

🇺🇸 165.154.162.19

🇺🇸 164.92.115.22