JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 223.166.22.6

223.166.22.6 was found in our database!

This IP was reported 249 times. Confidence of Abuse is 76%: ?

76%

ISP	CHINA UNICOM Shanghai city network
Usage Type	Fixed Line ISP
ASN	AS17621
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 223.166.22.6

Whois 223.166.22.6

IP Abuse Reports for 223.166.22.6:

This IP address has been reported a total of 249 times from 62 distinct sources. 223.166.22.6 was first reported on August 19th 2022, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-09 15:35:32 (5 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-09 00:12:12 (5 days ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 60023 [1] TCP Reported by: https://github. ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 60023 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-08 21:52:35 (6 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 11:46:19 (6 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-03 07:55:06 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇩🇪 Justin F. \| AS204464	2026-06-02 17:34:34 (1 week ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 6060 [1] TCP Reported by: Justin ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 6060 [1] TCP Reported by: Justin F. show less	Port Scan
🇩🇪 guldkage	2026-06-01 22:17:47 (1 week ago)	Unauthorized connection attempt detected from IP address 223.166.22.6 to port 11211 (ger-02) [MEMCAC ... show more Unauthorized connection attempt detected from IP address 223.166.22.6 to port 11211 (ger-02) [MEMCACHED] show less	Exploited Host
🇯🇵 mkaraki	2026-05-31 09:27:05 (2 weeks ago)	1780219623 # Service_probe # SIGNATURE_SEND # source_ip:223.166.22.6 # dst_port:1801 ...	Port Scan
🇨🇦 celestialcity	2026-05-31 00:45:42 (2 weeks ago)	Blocked by UFW on celestialcityna [10436/tcp] \| SPT: 3722 \| TTL: 227 \| LEN: 44 \| TOS: 0x00 • Reporte ... show more Blocked by UFW on celestialcityna [10436/tcp] \| SPT: 3722 \| TTL: 227 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-05-30 17:15:32 (2 weeks ago)	tcp/16000 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-30 16:32:35 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-30 09:02:37 (2 weeks ago)	tcp/2192 (2 or more attempts)	Port Scan
🇺🇸 xmission.com	2026-05-30 06:51:12 (2 weeks ago)	Blocked by UFW (TCP on 5984) Source port: 9818 TTL: 238 Packet length: 44 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 5984) Source port: 9818 TTL: 238 Packet length: 44 TOS: 0x08 This report (for 223.166.22.6) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-29 19:32:10 (2 weeks ago)	Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: M ... show more Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇦🇺 LiftUp Hosting	2026-05-29 14:51:56 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 8880 [1] TCP	Port Scan

Showing 1 to 15 of 249 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.111.65.14

🇩🇪 213.209.159.228

🇧🇪 198.235.24.186

🇩🇪 193.169.194.14

🇨🇳 182.242.169.42

🇨🇳 153.37.156.62

🇸🇬 103.187.146.33

🇻🇳 103.90.234.13

🇳🇱 80.82.77.48

🇸🇬 47.237.144.66

🇸🇬 47.84.195.65

🇦🇺 34.129.243.114

🇺🇸 216.180.246.151

🇵🇰 203.130.11.3

🇯🇵 202.172.25.51

🇹🇼 198.235.24.52

🇧🇷 190.89.136.163

🇧🇷 177.2.7.116

🇨🇳 115.190.185.31

🇵🇰 113.203.193.106