JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 114.66.28.172

114.66.28.172 was found in our database!

This IP was reported 67 times. Confidence of Abuse is 100%: ?

100%

ISP	Beijing Yunlin Network Technology Co.,Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136188
Domain Name	yunlin.cc
Country	🇨🇳 China
City	Ningbo, Zhejiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 114.66.28.172

Whois 114.66.28.172

IP Abuse Reports for 114.66.28.172:

This IP address has been reported a total of 67 times from 35 distinct sources. 114.66.28.172 was first reported on May 20th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 StopAbuse	2026-06-06 08:47:43 (3 hours ago)	tcp/1433	Port Scan
🇷🇸 Scan	2026-06-06 00:04:43 (12 hours ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-05 01:55:54 (1 day ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇦🇹 urnilxfgbez	2026-06-04 22:45:00 (1 day ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 Bankbook8585	2026-06-04 11:49:55 (2 days ago)	T-Pot honeypot \| Dionaea honeypot: smbd	Port Scan Hacking
🇳🇱 AS213449.net	2026-06-04 00:29:25 (2 days ago)	06/04/2026-02:29:25.133192 src=114.66.28.172 dst=5.175.170.37:1433 proto=6 msg=ET SCAN Suspicious in ... show more 06/04/2026-02:29:25.133192 src=114.66.28.172 dst=5.175.170.37:1433 proto=6 msg=ET SCAN Suspicious inbound to MSSQL port 1433 show less	SQL Injection
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 MPL	2026-06-03 17:03:21 (2 days ago)	tcp/445	Port Scan
🇺🇸 OceanTreasure	2026-06-03 14:00:04 (2 days ago)	tcp/1433; SCAN Suspicious inbound to MSSQL port 1433 @ 2026-06-03T13:51:11Z	Brute-Force
🇧🇷 SOC-BR	2026-06-03 06:06:55 (3 days ago)	Trying access in non-authorized port - Source Port 50578 - Destination Port 445 - Time 2026-06-02 22 ... show more Trying access in non-authorized port - Source Port 50578 - Destination Port 445 - Time 2026-06-02 22:53:51 (UTC-3) show less	Port Scan Hacking
🇩🇪 femboy.cat	2026-06-03 05:18:09 (3 days ago)	Port scan to tcp/1433 from 114.66.28.172	Brute-Force
🇺🇸 micropedro	2026-06-02 23:50:35 (3 days ago)	4 incidents: database attack (MSSQL/MySQL). First: 2026-06-01 23:57, Last: 2026-06-02 19:50 UTC. Tri ... show more 4 incidents: database attack (MSSQL/MySQL). First: 2026-06-01 23:57, Last: 2026-06-02 19:50 UTC. Triggers: non-public-port,firewall-database,ufw-repeater,ufw-repeater. show less	Port Scan Hacking
🇦🇹 urnilxfgbez	2026-06-02 22:45:00 (3 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
Anonymous	2026-06-02 15:08:17 (3 days ago)	Unauthorized access (tcp/445/smb)	Port Scan
🇨🇦 smick	2026-06-02 01:15:27 (4 days ago)	Brute-force attack.	Brute-Force

Showing 1 to 15 of 67 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 184.83.177.177

🇰🇷 112.216.129.27

🇳🇱 107.189.24.77

🇺🇸 107.150.102.47

🇷🇴 92.118.39.236

🇺🇸 54.82.5.19

🇬🇧 35.203.211.48

🇺🇸 13.216.111.154

🇬🇧 2a02:4780:f:1b56::1

🇲🇽 201.103.214.31

🇺🇸 150.107.38.245

🇨🇳 106.12.144.153

🇳🇱 81.19.216.126

🇷🇴 80.94.92.186

🇮🇹 79.7.192.59

🇳🇱 77.83.39.227

🇩🇪 213.209.159.231

🇩🇪 194.187.176.237

🇩🇪 51.224.201.197

🇷🇴 2.57.121.112