JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.242.168.196

182.242.168.196 was found in our database!

This IP was reported 124 times. Confidence of Abuse is 66%: ?

66%

ISP	CHINANET YunNan PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Kunming, Yunnan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.242.168.196

Whois 182.242.168.196

IP Abuse Reports for 182.242.168.196:

This IP address has been reported a total of 124 times from 47 distinct sources. 182.242.168.196 was first reported on May 28th 2022, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-15 11:17:04 (2 days ago)	Blocked by UFW on LAXHH [21242/tcp] \| SPT: 14218 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [21242/tcp] \| SPT: 14218 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Justin F. \| AS204464	2026-06-09 09:46:36 (1 week ago)	Honeypot [nx-infrastructure]: Unauthorized traffic (16 bytes of payload); 8030 [1] TCP Reported by: ... show more Honeypot [nx-infrastructure]: Unauthorized traffic (16 bytes of payload); 8030 [1] TCP Reported by: Justin F. show less	Port Scan
🇬🇧 PeravixGroup	2026-06-09 07:12:59 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 RAP	2026-06-07 18:34:26 (1 week ago)	2026-06-07 18:34:26 UTC Unauthorized activity to TCP port 3306.	Port Scan
🇬🇧 PeravixGroup	2026-06-06 07:19:56 (1 week ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
Anonymous	2026-06-03 17:20:34 (1 week ago)	Drop from IP address 182.242.168.196 to tcp-port 50070	Port Scan
🇬🇧 PeravixGroup	2026-06-02 23:19:10 (2 weeks ago)	Honeypot detection: rsync unauthorized access / data sync attempt on port 873. Severity: LOW. Aaran. ... show more Honeypot detection: rsync unauthorized access / data sync attempt on port 873. Severity: LOW. Aaran.cloud show less	Port Scan
🇬🇧 PeravixGroup	2026-06-02 19:27:21 (2 weeks ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 10:53:03 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-30 20:13:23 (2 weeks ago)	tcp/555 (2 or more attempts)	Port Scan
🇵🇱 sefinek.net	2026-05-30 19:03:37 (2 weeks ago)	Honeypot hit: Unauthorized traffic (128 bytes of payload); 5009 [1] TCP Reported by: https://github. ... show more Honeypot hit: Unauthorized traffic (128 bytes of payload); 5009 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 MPL	2026-05-30 10:54:00 (2 weeks ago)	tcp/2197	Port Scan
Anonymous	2026-05-30 09:49:08 (2 weeks ago)	2026-05-30T10:49:07.331174+01:00 vps kernel: [41874718.421882] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-05-30T10:49:07.331174+01:00 vps kernel: [41874718.421882] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=182.242.168.196 DST=54.37.14.118 LEN=44 TOS=0x00 PREC=0x00 TTL=232 ID=28397 PROTO=TCP SPT=61514 DPT=6443 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇺🇸 xmission.com	2026-05-29 18:18:21 (2 weeks ago)	Blocked by UFW (TCP on 800) Source port: 55977 TTL: 237 Packet length: 44 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 800) Source port: 55977 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 182.242.168.196) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-29 01:51:12 (2 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 124 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.132.224.28

🇺🇸 16.58.56.214

🇬🇧 195.206.182.213

🇺🇸 184.105.247.238

🇻🇳 171.231.190.66

🇨🇳 159.75.77.237

🇯🇵 132.145.115.202

🇸🇾 109.224.242.34

🇨🇳 106.37.72.234

🇳🇬 102.88.112.170

🇮🇪 54.195.144.89

🇨🇦 4.204.204.10

🇨🇳 1.30.16.218

🇷🇴 194.102.73.93

🇲🇾 149.118.135.252

🇺🇸 136.144.35.153

🇺🇸 91.230.168.34

🇺🇸 65.49.20.117

🇰🇷 14.206.12.13

🇮🇹 2.33.204.219