JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.172.248.48

116.172.248.48 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 31%: ?

31%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.172.248.48

Whois 116.172.248.48

IP Abuse Reports for 116.172.248.48:

This IP address has been reported a total of 43 times from 14 distinct sources. 116.172.248.48 was first reported on April 29th 2025, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-18 03:09:28 (11 hours ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 thororen	2026-06-17 23:23:33 (15 hours ago)	Blocked by UFW [9999/tcp] Source port: 60320 TTL: 236 Packet length: 44 TOS: 0x00 This report was g ... show more Blocked by UFW [9999/tcp] Source port: 60320 TTL: 236 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Ping of Death
🇫🇷 TheHoneyPotter	2026-06-14 09:27:02 (4 days ago)	Honeypot [fc-honeypot]: Large payload (1457 bytes); 5004 [1] TCP Reported by: https://github.com/sef ... show more Honeypot [fc-honeypot]: Large payload (1457 bytes); 5004 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇵🇱 sefinek.net	2026-06-12 16:27:37 (5 days ago)	Honeypot hit: Empty payload (likely service probe); 6082 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 6082 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-10 13:14:39 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 trentwiles.com	2026-04-23 07:40:58 (1 month ago)	Unauthorized connection attempt detected from IP address 116.172.248.48 to port 41681 [SYD]	Port Scan
🇦🇺 LiftUp Hosting	2026-04-20 07:40:00 (1 month ago)	Honeypot hit: Empty payload (likely service probe); 7948 [1] TCP	Port Scan
🇩🇪 dispaisyenterprises	2026-04-16 14:03:44 (2 months ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 10003 [1] TCP Reported by Di ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 10003 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-09 01:38:36 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 9160 [1] TCP	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-08 11:01:30 (2 months ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 8844 [1] TCP	Port Scan
Anonymous	2026-01-12 13:54:01 (5 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-01-06 05:53:22 (5 months ago)	tcp/9306	Port Scan
Anonymous	2025-12-14 15:39:02 (6 months ago)	2025-12-14T16:39:01.358168+01:00 vps kernel: [27467057.672124] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2025-12-14T16:39:01.358168+01:00 vps kernel: [27467057.672124] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=116.172.248.48 DST=54.37.14.118 LEN=44 TOS=0x00 PREC=0x00 TTL=230 ID=13816 PROTO=TCP SPT=28743 DPT=5984 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
Anonymous	2025-12-12 17:25:46 (6 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-12-10 06:26:30 (6 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 207.154.250.9

🇩🇪 185.242.3.226

🇧🇷 177.43.105.11

🇮🇩 103.105.67.170

🇬🇭 102.223.92.101

🇺🇸 79.127.222.200

🇳🇱 34.91.133.15

🇺🇸 2600:1f14:af5:6703:682f:76b1:85b3:1678

🇷🇺 194.176.114.36

🇺🇸 193.3.53.6

🇦🇲 176.32.193.16

🇻🇳 165.154.137.186

🇺🇸 164.92.106.15

🇬🇧 86.189.148.101

🇫🇮 212.112.19.166

🇭🇰 199.45.155.97

🇸🇬 185.200.116.35

🇮🇩 180.254.196.220

🇧🇷 172.233.26.186

🇬🇧 172.71.241.27