JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.176.76.242

116.176.76.242 was found in our database!

This IP was reported 64 times. Confidence of Abuse is 100%: ?

100%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Lanzhou, Gansu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.176.76.242

Whois 116.176.76.242

IP Abuse Reports for 116.176.76.242:

This IP address has been reported a total of 64 times from 47 distinct sources. 116.176.76.242 was first reported on June 8th 2026, and the most recent report was 57 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-09 03:01:14 (57 minutes ago)	Automated Report: Fail2Ban block triggered by nginx-botsearch jail.	Brute-Force SSH
🇫🇷 maxxsense	2026-06-09 02:57:31 (1 hour ago)	(sshd) Failed SSH login from 116.176.76.242 (CN/China/-)	Brute-Force SSH
🇫🇷 LoneRider	2026-06-09 02:54:52 (1 hour ago)	Jun 9 04:50:22 plsk sshd[1463494]: Invalid user admin from 116.176.76.242 port 55212 Jun 9 04:50:2 ... show more Jun 9 04:50:22 plsk sshd[1463494]: Invalid user admin from 116.176.76.242 port 55212 Jun 9 04:50:22 plsk sshd[1463494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.176.76.242 Jun 9 04:50:24 plsk sshd[1463494]: Failed password for invalid user admin from 116.176.76.242 port 55212 ssh2 Jun 9 04:54:52 plsk sshd[1463639]: Invalid user orangepi from 116.176.76.242 port 41756 ... show less	SSH
🇸🇪 donarev419	2026-06-09 02:47:07 (1 hour ago)	Connection to port 80 with data transfer. Data preview: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/ ... show more Connection to port 80 with data transfer. Data preview: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1 Host: 51.21.134.169 show less	Port Scan Hacking
🇦🇹 centurion	2026-06-09 02:21:43 (1 hour ago)	Blocked by UFW on ns03 [80/tcp] Source port: 35721 TTL: 41 Packet length: 40 TOS: 0x00 This report ... show more Blocked by UFW on ns03 [80/tcp] Source port: 35721 TTL: 41 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇩🇪 NetWatch	2026-06-09 02:14:06 (1 hour ago)	The IP 116.176.76.242 tried multiple SSH_BRUTE_FORCE logins	Brute-Force
🇺🇸 MPL	2026-06-09 02:12:23 (1 hour ago)	tcp/2222 (4 or more attempts)	Port Scan
Anonymous	2026-06-09 02:02:30 (1 hour ago)	CrowdSec ban: crowdsecurity/ssh-refused-conn	Hacking
🇺🇸 MPL	2026-06-09 01:07:47 (2 hours ago)	tcp/80 (4 or more attempts)	Port Scan
🇬🇧 andypiper	2026-06-09 01:03:08 (2 hours ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇵🇱 Tankudoraiba	2026-06-09 00:38:35 (3 hours ago)	Unauthorized connection attempts on port 22	SSH Hacking Port Scan
🇺🇸 xmission.com	2026-06-09 00:34:52 (3 hours ago)	Blocked by UFW (TCP on 80) Source port: 61707 TTL: 47 Packet length: 40 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 61707 TTL: 47 Packet length: 40 TOS: 0x00 This report (for 116.176.76.242) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇨🇳 pengpeng	2026-06-09 00:24:42 (3 hours ago)	monitor: on VM-0-7-ubuntu \| port: 22 \| ttl: 250 script: github.com/sefinek/UFW-AbuseIPDB-Reporter	Port Scan SSH
Anonymous	2026-06-08 23:55:07 (4 hours ago)	Apache RCE Exploit - HTTP(Request)	Hacking
🇨🇦 Blinker73	2026-06-08 23:20:34 (4 hours ago)	2026-06-08T10:52 kernel: OUT= SRC=116.176.76.242 LEN=40 TOS=0x00 PREC=0x00 TTL=37 ID=4900 PROT ... show more 2026-06-08T10:52 kernel: OUT= SRC=116.176.76.242 LEN=40 TOS=0x00 PREC=0x00 TTL=37 ID=4900 PROTO=TCP SPT=44820 DPT=2222 WINDOW=65535 RES=0x00 SYN URGP=0 2026-06-08T10:52 kernel: OUT= SRC=116.176.76.242 LEN=40 TOS=0x00 PREC=0x00 TTL=37 ID=4900 PROTO=TCP SPT=44820 DPT=2222 WINDOW=65535 RES=0x00 SYN URGP=0 2026-06-08T19:20 kernel: OUT= SRC=116.176.76.242 LEN=40 TOS=0x00 PREC=0x00 TTL=37 ID=31710 PROTO=TCP SPT=54311 DPT=2222 WINDOW=65535 RES=0x00 SYN URGP= show less	Port Scan

Showing 1 to 15 of 64 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 204.76.203.206

🇩🇪 165.245.246.178

🇺🇸 54.225.37.171

🇫🇷 38.242.133.44

🇭🇰 20.205.34.2

🇧🇪 198.235.24.228

🇬🇧 185.247.137.194

🇺🇸 162.243.147.237

🇮🇳 143.110.183.208

🇳🇬 102.88.137.80

🇺🇸 74.82.47.28

🇮🇪 54.195.85.95

🇺🇸 35.232.39.21

🇭🇰 34.92.26.43

🇨🇳 112.86.12.39

🇺🇸 66.132.186.175

🇸🇬 43.156.201.48

🇮🇩 34.101.155.188

🇻🇳 14.225.7.70

🇧🇷 152.67.39.50