JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 223.166.22.129

223.166.22.129 was found in our database!

This IP was reported 229 times. Confidence of Abuse is 82%: ?

82%

ISP	CHINA UNICOM Shanghai city network
Usage Type	Fixed Line ISP
ASN	AS17621
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 223.166.22.129

Whois 223.166.22.129

IP Abuse Reports for 223.166.22.129:

This IP address has been reported a total of 229 times from 52 distinct sources. 223.166.22.129 was first reported on August 4th 2022, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 donarev419	2026-06-08 06:40:18 (7 hours ago)	Connection to port 7687 with data transfer. Data preview: �	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-08 02:04:04 (12 hours ago)	Honeypot hit: HTTP/1.1 request on 1026 GET / Accept: /; 1026 [1] TCP	Web App Attack
🇺🇸 MPL	2026-06-07 23:11:45 (15 hours ago)	tcp/2261 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-06 16:12:07 (1 day ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 gbzret4d	2026-06-06 10:57:52 (2 days ago)	Honeypot [uk-production01]: HTTP/1.1 request on 2049 GET / Accept: /; 2049 [1] TCP	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-06 10:53:10 (2 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-05 19:57:25 (2 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇮 6kilowatti	2026-06-04 11:48:02 (4 days ago)	2026-06-04T14:48:01.298650+03:00 mummo kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:d6:a5:bc:00: ... show more 2026-06-04T14:48:01.298650+03:00 mummo kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:d6:a5:bc:00:00:5e:00:01:58:08:00 SRC=223.166.22.129 DST=83.148.240.21 LEN=44 TOS=0x00 PREC=0x00 TTL=228 ID=32402 PROTO=TCP SPT=13162 DPT=11211 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-06-04 02:58:55 (4 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 donarev419	2026-06-03 00:29:27 (5 days ago)	Connection to port 7777 with data transfer. Data preview:	Port Scan Hacking
🇵🇱 sefinek.net	2026-06-02 07:33:39 (6 days ago)	Honeypot hit: Empty payload (likely service probe); 4000 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 4000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 drewf.ink	2026-06-01 10:13:08 (1 week ago)	[10:13] Port scanning. Port(s) scanned: TCP/3389	Port Scan
🇬🇧 PeravixGroup	2026-06-01 09:18:11 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 05:30:46 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 gbzret4d	2026-05-26 22:40:08 (1 week ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 11211 [1] TCP	Port Scan

Showing 1 to 15 of 229 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.241.129.184

🇺🇸 172.253.210.17

🇺🇸 157.245.161.179

🇭🇰 152.32.172.177

🇮🇳 147.93.168.136

🇺🇸 137.184.20.36

🇬🇧 134.209.191.184

🇨🇳 113.137.40.250

🇺🇸 107.150.105.116

🇮🇳 103.199.191.218

🇺🇸 64.62.156.77

🇨🇳 43.138.39.63

🇧🇷 201.62.61.157

🇲🇦 196.127.56.26

🇩🇪 185.137.164.17

🇳🇱 176.65.139.130

🇮🇳 144.16.144.93

🇨🇳 139.170.72.14

🇨🇳 101.96.225.252

🇬🇧 74.114.29.145