AbuseIPDB » 5.172.11.222

5.172.11.222 was found in our database!

This IP was reported 1,018 times. Confidence of Abuse is 100%: ?

100%

ISP	INSYS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS28890
Domain Name	insys-eg.com
Country	Russian Federation
City	Yekaterinburg, Sverdlovsk Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 5.172.11.222

Whois 5.172.11.222

IP Abuse Reports for 5.172.11.222:

This IP address has been reported a total of 1,018 times from 101 distinct sources. 5.172.11.222 was first reported on June 3rd 2024, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Sawasdee	2025-06-24 03:42:06 (6 hours ago)	Port Scan ...	Port Scan
ThreatBook.io	2025-06-24 01:03:04 (8 hours ago)	ThreatBook Intelligence: iot_device more details on http://threatbook.io/ip/5.172.11.222	SSH
urnilxfgbez	2025-06-23 22:45:00 (11 hours ago)	Last 24 Hours suspicious: (DPT=445|DPT=3389|DPT=22|DPT=3306|DPT=8080|DPT=23|DPT=5900|DPT=1433)	Port Scan
S.O.B.A. Dev.	2025-06-23 22:15:06 (11 hours ago)	Repeated SSH login failures	Port Scan Brute-Force SSH
sefinek.net	2025-06-23 11:55:05 (22 hours ago)	Honeypot hit: Unauthorized connection attempt detected on 23/TELNET	Port Scan Hacking IoT Targeted
sashan	2025-06-23 01:34:32 (1 day ago)	2025-06-23T04:34:32.430310+03:00 gate kernel: [179399.652563] nftables: JAIL-TELNET IN=wan OUT= MAC= ... show more2025-06-23T04:34:32.430310+03:00 gate kernel: [179399.652563] nftables: JAIL-TELNET IN=wan OUT= MAC= SRC=5.172.11.222 DST=xxx.xxx.xxx.xxx LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=27495 DF PROTO=TCP SPT=55452 DPT=23 WINDOW=14600 RES=0x00 SYN URGP=0 ... show less	Port Scan
ThreatBook.io	2025-06-23 00:56:58 (1 day ago)	ThreatBook Intelligence: iot_device more details on http://threatbook.io/ip/5.172.11.222	SSH
Anonymous	2025-06-21 21:49:32 (2 days ago)	Tried our host z.	Port Scan Hacking Exploited Host
6kilowatti	2025-06-21 19:18:19 (2 days ago)	Blocked by UFW on 6kw [23/tcp] Source port: 56695 TTL: 52 Packet length: 60 ... show moreBlocked by UFW on 6kw [23/tcp] Source port: 56695 TTL: 52 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
rtbh.com.tr	2025-06-21 08:07:16 (3 days ago)	list.rtbh.com.tr report: tcp/23	Brute-Force
security.rdmc.fr	2025-06-21 07:59:28 (3 days ago)	IP in Malicious Database	Web App Attack
rtbh.com.tr	2025-06-21 04:07:15 (3 days ago)	list.rtbh.com.tr report: tcp/23	Brute-Force
ps-center	2025-06-20 16:57:50 (3 days ago)	SS1-W: TCP-Scanner. Port: 23	Port Scan
security.rdmc.fr	2025-06-19 17:34:50 (4 days ago)	IP in Malicious Database	Web App Attack
NotACaptcha	2025-06-19 16:29:54 (4 days ago)	Unauthorised access (Jun 19 19:29) SRC=5.172.11.222 LEN=60 TTL=48 ID=10280 DF TCP DPT=23 WINDOW=1460 ... show moreUnauthorised access (Jun 19 19:29) SRC=5.172.11.222 LEN=60 TTL=48 ID=10280 DF TCP DPT=23 WINDOW=14600 SYN show less	Port Scan

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩