JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.172.248.121

116.172.248.121 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 19%: ?

19%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.172.248.121

Whois 116.172.248.121

IP Abuse Reports for 116.172.248.121:

This IP address has been reported a total of 43 times from 20 distinct sources. 116.172.248.121 was first reported on May 12th 2025, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-07 21:25:48 (7 hours ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-05-14 13:14:20 (3 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-04-26 17:58:02 (1 month ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt on port 50000. Sev ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt on port 50000. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-04-25 19:42:23 (1 month ago)	Honeypot detection: MySQL unauthorized access / probing attempt on port 3306. Severity: HIGH. Aaran. ... show more Honeypot detection: MySQL unauthorized access / probing attempt on port 3306. Severity: HIGH. Aaran.cloud show less	Port Scan Brute-Force
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-25 13:47:48 (1 month ago)	Honeypot hit: Empty payload (likely service probe); 7024 [1] TCP	Port Scan
🇩🇪 femboy.cat	2026-04-25 03:40:44 (1 month ago)	Port scan to tcp/7687 from 116.172.248.121	Brute-Force
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-24 21:59:52 (1 month ago)	Honeypot hit: HTTP/1.1 request on 6015 GET / Accept: /; 6015 [1] TCP	Web App Attack
🇨🇳 ThreatBook.io	2026-04-08 23:42:17 (1 month ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/116.172.248.121 2026-04-08 ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/116.172.248.121 2026-04-08 08:28:35 /theme/default/assets/compoments.js 2026-04-08 08:28:37 /theme/default/assets/umi.js 2026-04-08 08:28:39 /user/umi.min.js 2026-04-08 08:28:34 / 2026-04-08 08:28:32 / show less	Web App Attack
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-05 00:01:18 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 6069 [1] TCP	Port Scan
🇳🇱 i-turnradio.nl	2026-04-02 12:10:30 (2 months ago)	2026-04-02 14:10:30 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇨🇦 Largnet SOC	2026-03-31 19:25:41 (2 months ago)	116.172.248.121 triggered Icarus honeypot on port 3389. Check us out on github.	Port Scan Hacking
🇩🇪 ValtonTahiri	2026-03-26 04:05:27 (2 months ago)	Honeypot hit: Unauthorized traffic (243 bytes) Payload: ��qM��y&�l%bd��<g�^J(��1� Ѥ��"�#�� ... show more Honeypot hit: Unauthorized traffic (243 bytes) Payload: ��qM��y&�l%bd��<g�^J(��1� Ѥ��"�#��Dg�L��<&�+�/�,�0̨̩� �� /5� { �+ 3&$ �7�Y �`]�k��G��Oe^�7e? f��P on 9030/TCP (1 attempt) show less	Port Scan
🇵🇱 sefinek.net	2026-02-26 23:17:05 (3 months ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 8377 [1] TCP Reported by: https://github.c ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 8377 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-02-23 03:04:59 (3 months ago)	Honeypot hit: HTTP/1.1 request on 9185 GET / Accept: /; 9185 [1] TCP	Web App Attack
Anonymous	2026-01-15 04:00:21 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.205.34.19

🇨🇳 218.13.157.209

🇵🇹 195.158.248.231

🇳🇱 185.156.73.233

🇨🇳 112.92.210.19

🇨🇦 85.217.149.63

🇬🇧 81.19.219.243

🇧🇬 79.124.40.130

🇺🇸 77.91.118.50

🇧🇷 45.205.1.240

🇳🇱 45.148.10.151

🇧🇪 35.190.221.63

🇧🇴 190.181.4.12

🇲🇰 188.44.20.32

🇦🇷 186.13.24.118

🇨🇳 150.138.231.102

🇬🇧 146.70.119.15

🇮🇳 106.197.94.232

🇷🇴 92.118.39.236

🇸🇪 90.230.168.26