JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 1.24.16.252

1.24.16.252 was found in our database!

This IP was reported 379 times. Confidence of Abuse is 59%: ?

59%

ISP	China unicom InnerMongolia province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Hohhot, Inner Mongolia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 1.24.16.252

Whois 1.24.16.252

IP Abuse Reports for 1.24.16.252:

This IP address has been reported a total of 379 times from 92 distinct sources. 1.24.16.252 was first reported on January 10th 2024, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-06-09 19:37:09 (2 hours ago)	ICS Labs identified 1.24.16.252 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇮🇹 [email protected]	2026-06-08 18:10:46 (1 day ago)		Brute-Force
🇬🇧 PeravixGroup	2026-06-08 09:41:49 (1 day ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 05:33:17 (1 day ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-06-07 05:36:08 (2 days ago)	Blocked by UFW (TCP on 8030) Source port: 12676 TTL: 237 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 8030) Source port: 12676 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 1.24.16.252) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-05 07:07:53 (4 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 03:15:30 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 17:25:29 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 11:12:49 (1 week ago)	Honeypot detection: LDAP injection / directory service abuse attempt on port 27017. Severity: MEDIUM ... show more Honeypot detection: LDAP injection / directory service abuse attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Web App Attack
🇬🇧 PeravixGroup	2026-05-29 20:36:05 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-25 09:21:15 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-24 14:02:26 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-22 18:23:07 (2 weeks ago)	tcp/10000 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-05-22 15:14:53 (2 weeks ago)	tcp/8061 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-20 10:20:21 (2 weeks ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force

Showing 1 to 15 of 379 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 14.63.196.175

🇳🇱 2a10:3c0:3:0:1:18:0:3

🇭🇰 199.45.154.136

🇲🇦 197.147.181.58

🇬🇧 195.206.182.206

🇺🇸 192.109.139.69

🇺🇸 164.92.66.31

🇺🇸 103.234.62.80

🇮🇩 103.165.139.145

🇧🇩 103.153.110.190

🇷🇺 95.220.41.250

🇵🇱 87.251.64.147

🇷🇴 80.94.92.182

🇳🇱 77.83.39.53

🇧🇷 20.226.82.126

🇧🇷 20.226.80.51

🇺🇸 20.168.7.149

🇵🇰 14.1.107.60

🇺🇸 2a10:3c0:5:0:1:23:0:5

🇨🇳 116.255.159.152