JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.227.42.150

116.227.42.150 was found in our database!

This IP was reported 42 times. Confidence of Abuse is 43%: ?

43%

ISP	CHINANET Shanghai province network
Usage Type	Fixed Line ISP
ASN	AS4812
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.227.42.150

Whois 116.227.42.150

IP Abuse Reports for 116.227.42.150:

This IP address has been reported a total of 42 times from 25 distinct sources. 116.227.42.150 was first reported on February 1st 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-11 05:53:12 (6 days ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇷🇸 Scan	2026-06-10 00:35:58 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇫🇷 geeek	2026-06-05 13:17:31 (1 week ago)	Port scanning: 445 TCP Blocked	Port Scan
🇬🇧 Birdo	2026-06-04 12:25:33 (1 week ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇺🇸 knock	2026-05-30 22:07:45 (2 weeks ago)	Knock-Knock honeypot brute-force: SMB (4 total hits)	Brute-Force
🇫🇷 sthoyer.de	2026-05-30 05:22:16 (2 weeks ago)	May 30 07:22:16 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 30 07:22:16 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=116.227.42.150 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=28526 DF PROTO=TCP SPT=64813 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 Little Iguana	2026-05-30 02:22:57 (2 weeks ago)	trying to access non-authorized port	Port Scan
🇫🇷 sthoyer.de	2026-05-30 00:59:39 (2 weeks ago)	May 30 02:59:39 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 30 02:59:39 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=116.227.42.150 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=17742 DF PROTO=TCP SPT=55200 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-05-27 21:07:10 (2 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇷🇸 Scan	2026-05-27 03:47:42 (3 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-26 20:39:41 (3 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 sthoyer.de	2026-05-25 20:51:05 (3 weeks ago)	May 25 22:51:05 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 25 22:51:05 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=116.227.42.150 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=27081 DF PROTO=TCP SPT=56014 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇷🇸 Scan	2026-05-21 01:04:17 (3 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇬🇧 Birdo	2026-05-10 01:02:36 (1 month ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇦🇹 urnilxfgbez	2026-05-07 22:45:00 (1 month ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan

Showing 1 to 15 of 42 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 69.5.169.148

🇻🇳 222.255.180.246

🇨🇦 216.121.145.64

🇯🇵 198.176.52.219

🇺🇸 154.83.197.96

🇧🇪 34.22.142.218

🇹🇭 202.183.141.133

🇨🇳 171.114.225.244

🇰🇷 158.247.200.150

🇱🇹 141.98.11.82

🇺🇸 64.62.156.35

🇺🇸 45.156.129.138

🇰🇷 211.220.156.232

🇩🇪 194.88.98.115

🇩🇪 193.124.20.243

🇰🇷 125.131.193.106

🇮🇳 103.191.89.250

🇸🇬 103.189.235.114

🇮🇳 98.70.3.41

🇷🇺 95.220.204.16