JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.172.249.161

116.172.249.161 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 33%: ?

33%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.172.249.161

Whois 116.172.249.161

IP Abuse Reports for 116.172.249.161:

This IP address has been reported a total of 41 times from 20 distinct sources. 116.172.249.161 was first reported on April 29th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 LiftUp Hosting	2026-06-21 06:03:05 (3 days ago)	Honeypot hit: Large payload (1457 bytes); 1911 [1] TCP	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-16 01:34:45 (1 week ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-06 14:42:02 (2 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
Anonymous	2026-06-05 17:23:12 (2 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 sumnone	2026-06-05 15:49:08 (2 weeks ago)	Port probing on unauthorized port 18264	Port Scan Hacking Exploited Host
🇳🇱 ByeByte API	2026-06-05 05:45:54 (2 weeks ago)	Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 3006. Single burst at 202 ... show more Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 3006. Single burst at 2026-06-05 05:45 UTC. show less	Port Scan
🇺🇸 donarev419	2026-05-30 00:59:09 (3 weeks ago)	Connection to port 9092 with data transfer. Data preview: �	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-19 20:50:05 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 18049 [1] TCP	Port Scan
🇯🇵 Valhalla	2026-03-03 11:30:41 (3 months ago)	/assets/img/favicon.png	Hacking Web App Attack
🇯🇵 mkaraki	2026-02-21 10:57:18 (4 months ago)	1771671423 # Service_probe # SIGNATURE_SEND # source_ip:116.172.249.161 # dst_port:2121 ...	Port Scan
🇷🇸 Scan	2026-02-08 00:33:19 (4 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇦🇩 bakunin1848	2026-02-08 00:25:04 (4 months ago)	Firewall IPS Detection on 08-02-2026 at 01:25:04	Port Scan Exploited Host
🇸🇬 drewf.ink	2026-01-21 12:40:04 (5 months ago)	[12:40] Port scanning. Port(s) scanned: TCP/2181	Port Scan
Anonymous	2026-01-20 23:27:16 (5 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 Mainpine	2026-01-20 00:58:00 (5 months ago)	honeypot IMAP/POP3 connection attempt	Brute-Force

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 86.110.51.19

🇺🇸 16.58.56.214

🇷🇺 217.168.240.63

🇨🇳 120.48.147.81

🇺🇸 104.28.247.150

🇬🇧 94.72.102.118

🇺🇸 47.85.8.171

🇩🇪 213.21.253.210

🇺🇸 193.19.109.22

🇮🇳 182.95.181.138

🇧🇪 130.211.110.51

🇧🇾 46.216.198.132

🇨🇳 43.226.39.177

🇲🇦 41.250.190.64

🇧🇪 34.62.140.239

🇩🇪 195.230.103.250

🇨🇳 120.230.184.10

🇮🇳 103.250.160.76

🇺🇸 66.132.195.43

🇳🇱 46.151.178.13