JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.178.128.237

116.178.128.237 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 52%: ?

52%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Hami, Xinjiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.178.128.237

Whois 116.178.128.237

IP Abuse Reports for 116.178.128.237:

This IP address has been reported a total of 39 times from 19 distinct sources. 116.178.128.237 was first reported on December 10th 2025, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 donarev419	2026-06-06 03:26:57 (7 hours ago)	Connection to port 4343 with data transfer. Data preview: GET / HTTP/1.1 Host: 109.110.170.76:4343 ... show more Connection to port 4343 with data transfer. Data preview: GET / HTTP/1.1 Host: 109.110.170.76:4343 Accept: / show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-05 19:51:19 (15 hours ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-02 03:11:10 (4 days ago)	tcp/8884 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-01 14:56:53 (4 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 donarev419	2026-05-31 07:07:34 (6 days ago)	Port scan detected on port 2209 (connection without data transfer)	Port Scan
🇫🇷 EDSL	2026-05-31 06:34:24 (6 days ago)	[SRV-VPN1] Blocked by SysWarden Firewall (Port Scan / Probing)	Port Scan
🇬🇧 PeravixGroup	2026-05-31 00:21:38 (6 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 LiftUp Hosting	2026-05-30 18:04:03 (6 days ago)	Honeypot hit: Empty payload (likely service probe); 5236 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-05-25 07:14:40 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 _ArminS_	2026-05-25 02:38:17 (1 week ago)	SP-Scan 65526:8081 detected 2026.05.25 04:38:17 blocked until 2026.07.13 21:41:04	Port Scan
🇷🇸 Scan	2026-05-12 00:49:35 (3 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇩🇪 check-the-sum.fr	2026-05-09 15:43:33 (3 weeks ago)	Port Scanning	Port Scan
🇺🇸 xmission.com	2026-05-01 17:49:19 (1 month ago)	Blocked by UFW (TCP on 5999) Source port: 36594 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 5999) Source port: 36594 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 116.178.128.237) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 DonAtari	2026-04-25 12:37:52 (1 month ago)	DShield firewall scan - TCP to port 2091	Brute-Force SSH
🇬🇧 PeravixGroup	2026-04-24 10:22:38 (1 month ago)	HoneyPot hit - Aaran.cloud \| Jenkins Jnlp Exploit \| web exploitation \| &A A $ t$@ & m!@@@@@@@@@@@	Hacking

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇬 168.253.118.147

🇸🇬 124.156.202.242

🇯🇵 118.193.61.14

🇨🇳 112.86.225.95

🇺🇸 103.143.10.79

🇮🇪 54.246.144.126

🇮🇪 2a05:d018:10df:d401:be16:aacc:d908:24d2

🇧🇷 189.50.231.247

🇧🇷 177.128.77.108

🇸🇬 172.253.84.219

🇩🇪 165.22.82.165

🇺🇸 162.243.147.237

🇷🇺 154.83.196.237

🇺🇸 146.190.145.217

🇸🇬 138.2.98.41

🇬🇧 35.203.211.219

🇺🇸 20.168.122.19

🇻🇳 14.225.7.70

🇸🇾 129.224.206.231

🇹🇼 111.70.9.235