JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 118.81.85.237

118.81.85.237 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 10%: ?

10%

ISP	sxty-xinghua-BAS
Usage Type	Fixed Line ISP
ASN	AS4837
Hostname(s)	237.85.81.118.adsl-pool.sx.cn
Domain Name	ty.sx.cn
Country	🇨🇳 China
City	Jinyuan, Shanxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 118.81.85.237

Whois 118.81.85.237

IP Abuse Reports for 118.81.85.237:

This IP address has been reported a total of 44 times from 26 distinct sources. 118.81.85.237 was first reported on February 22nd 2022, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-05 21:53:16 (2 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
Anonymous	2026-05-20 22:36:28 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇨🇿 Honzas	2026-04-01 04:28:00 (2 months ago)	Automatic report:01.04.2026 4:28:00. Port:993	Brute-Force
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-01 03:22:55 (2 months ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 2281 [1] TCP	Port Scan
🇬🇧 gbzret4d	2026-03-08 04:22:36 (3 months ago)	Honeypot [uk-production01]: Unauthorized traffic (243 bytes of payload); 9092 [1] TCP	Port Scan
🇺🇸 micropedro	2026-03-07 18:09:45 (3 months ago)	3 incidents: malicious activity. First: 2026-03-07 11:36, Last: 2026-03-07 14:09 UTC. Triggers: non- ... show more 3 incidents: malicious activity. First: 2026-03-07 11:36, Last: 2026-03-07 14:09 UTC. Triggers: non-public-port,port-trap,port-trap. show less	Port Scan
🇩🇪 guldkage	2026-03-06 12:11:47 (3 months ago)	Unauthorized connection attempt detected from IP address 118.81.85.237 to port 11211 (ger-02) [MEMCA ... show more Unauthorized connection attempt detected from IP address 118.81.85.237 to port 11211 (ger-02) [MEMCACHED] show less	Exploited Host
🇺🇸 MPL	2026-03-04 02:08:30 (3 months ago)	tcp/50996 (2 or more attempts)	Port Scan
🇦🇹 centurion	2026-03-04 02:02:13 (3 months ago)	Blocked by UFW on ns03 [8040/tcp] Source port: 36695 TTL: 238 Packet length: 44 TOS: 0x00 This repo ... show more Blocked by UFW on ns03 [8040/tcp] Source port: 36695 TTL: 238 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-02-25 01:04:02 (3 months ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 1688 [1] TCP	Port Scan
🇨🇳 ThreatBook.io	2026-02-24 22:20:07 (3 months ago)	ThreatBook Intelligence: Dynamic IP,Spam more details on https://threatbook.io/ip/118.81.85.237 2026 ... show more ThreatBook Intelligence: Dynamic IP,Spam more details on https://threatbook.io/ip/118.81.85.237 2026-02-24 02:57:03 / show less	Web App Attack
🇺🇸 xmission.com	2026-02-24 21:27:56 (3 months ago)	Blocked by UFW (TCP on 8069) Source port: 20200 TTL: 238 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 8069) Source port: 20200 TTL: 238 Packet length: 44 TOS: 0x00 This report (for 118.81.85.237) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇯🇵 mkaraki	2026-02-24 18:08:09 (3 months ago)	1771956478 # Service_probe # SIGNATURE_SEND # source_ip:118.81.85.237 # dst_port:7005 ...	Port Scan
🇨🇦 Largnet SOC	2026-02-24 14:46:35 (3 months ago)	118.81.85.237 triggered Icarus honeypot on port 22. Check us out on github.	Port Scan Hacking
🇯🇵 jay hung	2026-02-24 04:04:06 (3 months ago)	2026-02-24T04:04:03.740863+00:00 quarktech kernel: [834610.184460] [UFW BLOCK] IN=eth0 OUT= MAC=22:0 ... show more 2026-02-24T04:04:03.740863+00:00 quarktech kernel: [834610.184460] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=118.81.85.237 DST=172.237.29.33 LEN=48 TOS=0x00 PREC=0x00 TTL=232 ID=54224 PROTO=UDP SPT=58035 DPT=3478 LEN=28 ... show less	Port Scan

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c01::129

🇨🇦 209.50.187.228

🇩🇪 207.154.250.9

🇬🇧 193.163.125.26

🇫🇷 185.255.126.46

🇨🇳 171.217.92.33

🇦🇺 170.64.173.222

🇺🇸 161.35.232.200

🇺🇸 107.150.103.88

🇳🇱 91.92.40.176

🇱🇹 62.60.130.219

🇺🇸 52.161.82.98

🇺🇸 47.132.209.110

🇸🇬 47.84.137.161

🇧🇪 35.233.39.148

🇰🇷 14.63.196.175

🇩🇪 8.211.24.65

🇰🇷 222.110.147.56

🇺🇸 136.144.35.155

🇮🇳 103.74.89.130