JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.178.131.141

116.178.131.141 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 31%: ?

31%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Hami, Xinjiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.178.131.141

Whois 116.178.131.141

IP Abuse Reports for 116.178.131.141:

This IP address has been reported a total of 39 times from 24 distinct sources. 116.178.131.141 was first reported on December 10th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-07 06:00:25 (1 day ago)	Honeypot detection: OS command injection in HTTP parameters on port 50000. Severity: MEDIUM. Aaran.c ... show more Honeypot detection: OS command injection in HTTP parameters on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Web App Attack
🇬🇧 PeravixGroup	2026-06-06 14:57:56 (2 days ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇳🇱 StopAbuse	2026-05-23 03:55:21 (2 weeks ago)	tcp/443	Port Scan
🇬🇧 PeravixGroup	2026-05-21 13:55:01 (2 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-05-11 00:10:32 (4 weeks ago)	Blocked by UFW (TCP on 27017) Source port: 50457 TTL: 237 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 27017) Source port: 50457 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 116.178.131.141) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 sumnone	2026-05-10 19:06:11 (4 weeks ago)	Port probing on unauthorized port 2332	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-04-28 17:41:36 (1 month ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇩🇪 EinfxchFinn	2026-04-27 10:59:30 (1 month ago)	Unauthorized connection attempt to port 5038 from 116.178.131.141	Port Scan
🇷🇸 Smel	2026-04-23 06:00:04 (1 month ago)	MH/MP Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 drewf.ink	2026-04-21 01:47:50 (1 month ago)	[01:47] Port scanning. Port(s) scanned: TCP/25565	Port Scan
🇫🇷 Geosphere	2026-04-13 13:00:38 (1 month ago)	1776085237 - 04/13/2026 15:00:37 Host: 116.178.131.141/116.178.131.141 Port: 500 UDP Blocked	Port Scan
🇩🇪 Skyrider	2026-04-08 05:51:39 (2 months ago)	116.178.131.141 - - [08/Apr/2026:07:51:26 +0200] "GET /Alvin9999/https/fanfan1.net/daohang/ HTTP/2.0 ... show more 116.178.131.141 - - [08/Apr/2026:07:51:26 +0200] "GET /Alvin9999/https/fanfan1.net/daohang/ HTTP/2.0" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" 116.178.131.141 - - [08/Apr/2026:07:51:27 +0200] "GET /officialsite HTTP/2.0" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" 116.178.131.141 - - [08/Apr/2026:07:51:32 +0200] "GET /static/favicon.ico HTTP/2.0" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" 116.178.131.141 - - [08/Apr/2026:07:51:37 +0200] "GET /images/logo-cn-352x97_1.png HTTP/2.0" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" 116.178.131.141 - - [08/Apr/2026:07:51:39 +0200] "GET /assets/images/logo-cn-vpnweb.png HTTP/2.0" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" show less	Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-04-07 11:33:51 (2 months ago)	Blocked by UFW (TCP on 60010) Source port: 17089 TTL: 237 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 60010) Source port: 17089 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 116.178.131.141) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-04-02 01:47:57 (2 months ago)	tcp/9306	Port Scan
🇨🇦 1gz	2026-03-30 18:13:01 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 51.222.95.23

🇨🇳 223.241.247.227

🇩🇪 194.88.98.104

🇻🇳 180.93.43.225

🇻🇳 171.244.142.205

🇨🇦 142.44.220.192

🇫🇷 92.103.134.183

🇫🇷 91.231.89.105

🇴🇲 37.40.227.48

🇮🇩 36.92.140.209

🇧🇪 35.195.233.187

🇩🇪 34.179.179.98

🇳🇱 185.242.226.126

🇭🇰 152.32.254.89

🇮🇩 103.214.112.37

🇳🇱 45.148.10.141

🇺🇸 45.79.102.191

🇺🇸 34.168.221.219

🇨🇳 1.202.220.94

🇩🇪 178.128.207.138