JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.25.249.187

116.25.249.187 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 0%: ?

ISP	CHINANET Guangdong province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.25.249.187

Whois 116.25.249.187

IP Abuse Reports for 116.25.249.187:

This IP address has been reported a total of 27 times from 12 distinct sources. 116.25.249.187 was first reported on July 17th 2022, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2025-09-07 16:52:26 (9 months ago)	Blocked by UFW (TCP on 1433) Source port: 21298 TTL: 240 Packet length: 40 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 1433) Source port: 21298 TTL: 240 Packet length: 40 TOS: 0x08 This report (for 116.25.249.187) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2025-09-07 07:30:53 (9 months ago)	tcp/1433 (2 or more attempts)	Port Scan
Anonymous	2025-09-06 04:23:10 (9 months ago)	2025-09-06 04:23:10 warning[6748910]: host unknown[116.25.249.187]: unauthorized access at ... show more 2025-09-06 04:23:10 warning[6748910]: host unknown[116.25.249.187]: unauthorized access attempted: tcp/1433 show less	Port Scan Brute-Force
🇩🇪 Honeypot-EU-Fru	2025-09-06 02:47:20 (9 months ago)	1757126839 - 09/06/2025 04:47:19 Host: 116.25.249.187/116.25.249.187 Port: 1088 TCP Blocked ...	Port Scan
🇺🇸 MPL	2025-09-05 14:47:28 (9 months ago)	tcp/1433	Port Scan
🇹🇼 kk_it_man	2025-09-05 14:40:02 (9 months ago)	honey catch	Port Scan
🇺🇸 MPL	2025-09-05 13:58:50 (9 months ago)	tcp/1433	Port Scan
🇺🇸 MPL	2025-09-05 13:58:50 (9 months ago)	tcp/1433 (6 or more attempts)	Port Scan
🇬🇧 Nov	2025-09-04 08:37:49 (9 months ago)	Unauthorized MSSQL access attempt (tcp/1433)	Port Scan
🇷🇸 Smel	2025-09-03 13:08:03 (9 months ago)	SQL/MH Probe, Scan, Hack -	Port Scan Hacking SQL Injection
🇩🇪 sthoyer.de	2025-09-03 12:15:13 (9 months ago)	Sep 3 14:15:12 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:b6:ef:8 ... show more Sep 3 14:15:12 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:b6:ef:8f:08:00 SRC=116.25.249.187 DST=173.212.223.67 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=10644 PROTO=TCP SPT=49656 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
Anonymous	2025-09-03 08:25:39 (9 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇿🇦 IrisFlower	2022-07-21 05:45:10 (3 years ago)	Unauthorized connection attempt detected from IP address 116.25.249.187 to port 23 [J]	Port Scan Hacking
🇫🇷 security.rdmc.fr	2022-07-21 05:43:10 (3 years ago)	Automatic report - Port Scan Attack proto:TCP src:17938 dst:23	Port Scan
🇿🇦 IrisFlower	2022-07-21 05:24:01 (3 years ago)	Unauthorized connection attempt detected from IP address 116.25.249.187 to port 23 [J]	Port Scan Hacking

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 80.94.92.186

🇱🇹 45.227.254.170

🇮🇷 185.231.181.16

🇺🇸 185.223.152.249

🇫🇮 178.20.210.208

🇧🇷 177.152.28.146

🇺🇸 172.253.196.149

🇻🇳 116.110.156.90

🇻🇳 103.170.122.242

🇳🇱 91.92.40.6

🇷🇴 80.94.92.167

🇷🇺 37.204.22.234

🇺🇸 23.92.78.16

🇺🇸 2a03:2880:f804:23::

🇺🇸 2600:3c02::2000:acff:fe50:d0af

🇪🇹 213.55.73.204

🇮🇳 103.177.0.143

🇨🇳 101.200.221.177

🇱🇹 77.90.185.67

🇺🇸 72.10.32.138