JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.178.130.252

116.178.130.252 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 38%: ?

38%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Hami, Xinjiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.178.130.252

Whois 116.178.130.252

IP Abuse Reports for 116.178.130.252:

This IP address has been reported a total of 43 times from 21 distinct sources. 116.178.130.252 was first reported on December 9th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-03 22:57:11 (1 day ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 00:08:40 (3 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-29 17:15:33 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 vincent_EUDIER	2026-05-26 16:20:02 (1 week ago)	ET SCAN NMAP -sS window 1024	Port Scan
🇺🇸 donarev419	2026-05-17 10:29:54 (2 weeks ago)	Connection to port 12350 with data transfer. Data preview: GET / HTTP/1.1 Host: 104.250.239.52:1235 ... show more Connection to port 12350 with data transfer. Data preview: GET / HTTP/1.1 Host: 104.250.239.52:12350 Accept: / show less	Port Scan Hacking
🇫🇮 percocet	2026-05-06 12:05:16 (4 weeks ago)	Cloudflare blocked 1 requests (HTTP 403) in 1h. Country: CN	DDoS Attack Web App Attack
🇷🇸 Scan	2026-04-28 03:03:50 (1 month ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇬🇧 PeravixGroup	2026-04-27 21:17:45 (1 month ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-04-27 14:59:40 (1 month ago)	Honeypot detection: Apache Cassandra unauthorized probing attempt on port 9042. Severity: HIGH. Aara ... show more Honeypot detection: Apache Cassandra unauthorized probing attempt on port 9042. Severity: HIGH. Aaran.cloud show less	Port Scan Brute-Force
🇧🇷 chronos	2026-04-26 01:04:29 (1 month ago)	Generic malicious activity: ALERT: External attempt to access critical TCP port... \| Port: 3389 \| Pr ... show more Generic malicious activity: ALERT: External attempt to access critical TCP port... \| Port: 3389 \| Proto: TCP \| Location: China, N/A show less	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-21 07:51:04 (1 month ago)	Honeypot hit: Empty payload (likely service probe); 2419 [1] TCP	Port Scan
🇸🇪 donarev419	2026-04-21 04:08:42 (1 month ago)	Connection to port 2311 with data transfer. Data preview: USER anonymous	Port Scan Hacking
🇨🇳 ThreatBook.io	2026-04-20 01:08:37 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/116.178.130.252 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/116.178.130.252 2026-04-19 00:41:40 / show less	Web App Attack
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-18 18:17:57 (1 month ago)	Honeypot hit: HTTP/1.1 request on 12505 GET / Accept: /; 12505 [1] TCP	Web App Attack
Anonymous	2026-04-18 11:35:51 (1 month ago)	Unauthorized connection attempt. Port 4800	Port Scan

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 20.195.180.219

🇨🇳 101.96.203.52

🇵🇱 85.202.108.190

🇭🇺 62.77.224.67

🇺🇸 2a03:2880:16ff:47::

🇶🇦 2600:1900:4260:40e::65

🇨🇳 220.205.122.34

🇺🇸 205.210.31.90

🇺🇸 74.125.76.28

🇳🇱 45.148.10.121

🇭🇰 45.142.154.60

🇧🇷 191.6.25.239

🇺🇸 162.216.149.48

🇹🇷 159.253.36.50

🇺🇸 205.210.31.67

🇺🇸 205.210.31.45

🇨🇳 122.96.31.99

🇸🇬 103.20.122.54

🇳🇬 102.88.137.213

🇫🇷 91.108.101.132