JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 223.166.22.139

223.166.22.139 was found in our database!

This IP was reported 209 times. Confidence of Abuse is 67%: ?

67%

ISP	CHINA UNICOM Shanghai city network
Usage Type	Fixed Line ISP
ASN	AS17621
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 223.166.22.139

Whois 223.166.22.139

IP Abuse Reports for 223.166.22.139:

This IP address has been reported a total of 209 times from 51 distinct sources. 223.166.22.139 was first reported on August 19th 2022, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-07 18:08:50 (14 hours ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 Flo Flo	2026-06-07 09:16:14 (23 hours ago)	223.166.22.139 - - - [07/Jun/2026:11:16:14 +0200] "www.flad.xyz" "GET / HTTP/2.0" 444 0 "-" "Mozilla ... show more 223.166.22.139 - - - [07/Jun/2026:11:16:14 +0200] "www.flad.xyz" "GET / HTTP/2.0" 444 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 0.000 ... show less	Web App Attack
🇬🇧 PeravixGroup	2026-06-06 10:02:24 (1 day ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
Anonymous	2026-06-03 07:38:08 (5 days ago)	Honeypot hit: Large payload (1457 bytes); 12366 [1] TCP Reported by: https://github.com/sefinek/T-Po ... show more Honeypot hit: Large payload (1457 bytes); 12366 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇦🇺 LiftUp Hosting	2026-06-03 07:18:59 (5 days ago)	Honeypot hit: HTTP/1.1 request on 7047 GET / Accept: /; 7047 [1] TCP	Hacking Bad Web Bot
🇩🇪 Justin F. \| AS204464	2026-06-03 03:34:38 (5 days ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 10076 [1] TCP Reported by: Justi ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 10076 [1] TCP Reported by: Justin F. show less	Port Scan
🇬🇧 PeravixGroup	2026-06-03 02:58:07 (5 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 09:21:06 (5 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-01 15:05:47 (6 days ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 12:03:52 (6 days ago)	Honeypot detection: OS command injection in HTTP parameters on port 1521. Severity: MEDIUM. Aaran.cl ... show more Honeypot detection: OS command injection in HTTP parameters on port 1521. Severity: MEDIUM. Aaran.cloud show less	Hacking Web App Attack
🇬🇧 PeravixGroup	2026-05-30 16:56:09 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-29 18:14:17 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-29 11:10:36 (1 week ago)	tcp/3050	Port Scan
🇬🇧 PeravixGroup	2026-05-27 16:30:02 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇸🇪 SkyDancer	2026-05-25 21:06:54 (1 week ago)	Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by Sk ... show more Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by SkyDancer Ai. EXT-SYS-Vx show less	Hacking Brute-Force SSH

Showing 1 to 15 of 209 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.167.75.86

🇨🇳 223.64.226.72

🇨🇳 222.86.168.224

🇰🇷 183.104.220.152

🇨🇳 180.76.98.88

🇺🇸 172.71.203.97

🇮🇩 157.15.187.3

🇺🇸 107.172.213.164

🇷🇺 91.214.76.74

🇺🇸 74.87.117.149

🇺🇸 3.215.59.93

🇨🇳 202.105.98.252

🇺🇸 136.109.232.237

🇨🇳 120.48.175.122

🇮🇩 103.189.207.204

🇷🇺 95.165.27.83

🇩🇪 84.129.253.23

🇷🇴 80.94.92.177

🇺🇸 66.132.172.152

🇵🇰 59.103.104.66