JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.178.130.48

116.178.130.48 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 35%: ?

35%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Hami, Xinjiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.178.130.48

Whois 116.178.130.48

IP Abuse Reports for 116.178.130.48:

This IP address has been reported a total of 33 times from 19 distinct sources. 116.178.130.48 was first reported on December 11th 2025, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-05 16:45:51 (11 hours ago)	Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: ME ... show more Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-30 11:18:19 (6 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 gbzret4d	2026-05-27 18:44:12 (1 week ago)	Honeypot [uk-production01]: Unauthorized traffic (11 bytes of payload); 1720 [1] TCP	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-21 05:48:39 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 9038 GET / Accept: /; 9038 [1] TCP	Web App Attack
🇬🇧 PeravixGroup	2026-05-17 15:27:24 (2 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-13 07:12:18 (3 weeks ago)	Honeypot detection: POP3 email brute-force authentication attempt on port 110. Severity: MEDIUM. Aar ... show more Honeypot detection: POP3 email brute-force authentication attempt on port 110. Severity: MEDIUM. Aaran.cloud show less	Brute-Force
🇺🇸 MPL	2026-05-08 12:32:34 (4 weeks ago)	tcp/41110	Port Scan
🇩🇪 Justin F. \| AS204464	2026-05-06 15:53:01 (4 weeks ago)	Honeypot [nx-infrastructure]: Unauthorized traffic (243 bytes of payload); 14430 [1] TCP Reported by ... show more Honeypot [nx-infrastructure]: Unauthorized traffic (243 bytes of payload); 14430 [1] TCP Reported by: Justin F. show less	Port Scan
Anonymous	2026-05-04 08:34:15 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇨🇳 ThreatBook.io	2026-04-20 22:06:57 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/116.178.130.48 2 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/116.178.130.48 2026-04-20 11:38:32 http://110.242.68.4/ show less	Web App Attack
🇩🇪 Admins@FBN	2026-04-05 15:11:59 (2 months ago)	FW-PortScan: Traffic Blocked srcport=62519 dstport=19999	Port Scan
🇮🇩 hermawan	2026-03-31 11:41:32 (2 months ago)	1774957252.303805 CoVlUt14CVxyGCHCPi 116.178.130.48 17920 103.166.156.58 8378 tcp - - - - S0 F F 0 S ... show more 1774957252.303805 CoVlUt14CVxyGCHCPi 116.178.130.48 17920 103.166.156.58 8378 tcp - - - - S0 F F 0 S 1 44 0 0 - 6 (empty) (empty) 1024_2_1400_0 (empty) 03/31/2026-18:40:52.303805 ... show less	Email Spam Hacking
🇷🇸 Scan	2026-03-30 01:30:11 (2 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇷🇸 Scan	2026-03-11 03:42:44 (2 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇧🇾 StatsMe	2026-03-09 21:47:18 (2 months ago)	2026-03-09T06:03:44.704517+0300 ET SCAN NMAP -sS window 1024	Port Scan

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇴 181.177.190.70

🇺🇸 82.24.129.108

🇨🇳 222.176.201.151

🇲🇿 197.219.228.242

🇧🇷 186.233.118.22

🇵🇭 180.190.165.238

🇨🇷 177.93.4.37

🇺🇸 96.32.203.16

🇭🇰 95.182.100.51

🇸🇪 81.226.88.121

🇪🇸 46.24.47.94

🇬🇧 193.176.29.21

🇨🇴 186.116.53.254

🇺🇸 147.185.132.200

🇱🇹 141.98.10.73

🇨🇮 102.67.230.39

🇺🇸 3.212.219.113

🇺🇸 191.102.129.121

🇧🇷 177.124.88.216

🇨🇳 125.74.20.21