JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.172.248.227

116.172.248.227 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 19%: ?

19%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.172.248.227

Whois 116.172.248.227

IP Abuse Reports for 116.172.248.227:

This IP address has been reported a total of 44 times from 10 distinct sources. 116.172.248.227 was first reported on April 27th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-03 12:28:54 (2 days ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 05:40:25 (3 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇸🇪 donarev419	2026-06-01 04:36:06 (4 days ago)	Connection to port 10000 with data transfer. Data preview: GET / HTTP/1.1 Accept: / User-Agent: ... show more Connection to port 10000 with data transfer. Data preview: GET / HTTP/1.1 Accept: / User-Agent: NTRIP GNSSInternetRadio show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-04-29 13:45:04 (1 month ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
🇬🇧 PeravixGroup	2026-04-23 08:56:47 (1 month ago)	HoneyPot hit - Aaran.cloud \| Php Fpm Probe \| web exploitation \| GET / HTTP/1.1 Host: 103.1.73.226:90 ... show more HoneyPot hit - Aaran.cloud \| Php Fpm Probe \| web exploitation \| GET / HTTP/1.1 Host: 103.1.73.226:9000 Accept: / show less	Web App Attack
🇨🇳 ThreatBook.io	2026-04-22 00:59:37 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/116.172.248.227 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/116.172.248.227 2026-04-21 22:01:08 / 2026-04-21 05:22:42 //cn.bing.com:443 show less	Web App Attack
🇨🇳 ThreatBook.io	2026-04-02 00:48:11 (2 months ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/116.172.248.227 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/116.172.248.227 2026-04-01 06:14:26 http://110.242.68.4/ show less	Web App Attack
🇲🇳 Public CSIRT/CC of Mongolia	2026-03-30 02:10:09 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 1391 [1] TCP	Port Scan
🇩🇪 Moritz	2026-03-15 16:53:38 (2 months ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 9009 [1] TCP	Port Scan
🇬🇧 gbzret4d	2026-03-11 11:16:35 (2 months ago)	Honeypot [uk-production01]: Unauthorized traffic (243 bytes of payload); 8084 [1] TCP	Port Scan
🇳🇱 donarev419	2026-03-11 00:54:08 (2 months ago)	Connection to port 99 with data transfer. Data preview:	Port Scan Hacking
🇵🇱 sefinek.net	2026-02-20 17:43:34 (3 months ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 49670 [1] TCP Reported by: https://github. ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 49670 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇷🇸 Scan	2026-01-27 00:59:20 (4 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇷🇸 Scan	2026-01-22 01:05:46 (4 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
Anonymous	2026-01-19 15:28:37 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 111.162.149.190

🇺🇸 23.234.74.43

🇨🇳 14.103.112.243

🇲🇽 200.77.172.159

🇩🇪 193.124.20.243

🇺🇸 165.154.163.33

🇺🇸 162.216.149.173

🇸🇬 148.66.130.53

🇺🇸 147.185.132.60

🇮🇪 109.78.59.112

🇫🇷 104.253.74.93

🇨🇦 54.39.0.196

🇱🇹 45.227.254.170

🇧🇷 38.43.107.175

🇺🇸 23.234.73.184

🇰🇷 1.245.74.10

🇺🇸 192.254.212.95

🇹🇼 125.229.104.192

🇨🇳 120.48.30.181

🇫🇷 38.242.232.20