JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.172.200.112

116.172.200.112 was found in our database!

This IP was reported 42 times. Confidence of Abuse is 30%: ?

30%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.172.200.112

Whois 116.172.200.112

IP Abuse Reports for 116.172.200.112:

This IP address has been reported a total of 42 times from 18 distinct sources. 116.172.200.112 was first reported on April 16th 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 iNetWorker	2026-06-04 05:31:48 (5 days ago)	trying to access non-authorized port	Port Scan
🇬🇧 PeravixGroup	2026-05-30 15:45:31 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 drewf.ink	2026-04-28 19:47:12 (1 month ago)	[19:47] Port scanning. Port(s) scanned: TCP/9042	Port Scan
🇦🇺 trentwiles.com	2026-04-28 17:40:53 (1 month ago)	Unauthorized connection attempt detected from IP address 116.172.200.112 to port 9014 [SYD]	Port Scan
🇬🇧 PeravixGroup	2026-04-28 05:06:34 (1 month ago)	Honeypot detection: Port scanning / service fingerprinting attempt on port 6000. Severity: LOW. Aara ... show more Honeypot detection: Port scanning / service fingerprinting attempt on port 6000. Severity: LOW. Aaran.cloud show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-27 22:45:08 (1 month ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 8430 [1] TCP	Port Scan
🇫🇷 starhelix	2026-04-21 11:27:32 (1 month ago)	SSH login on honeypot.	Brute-Force SSH
🇬🇧 gbzret4d	2026-04-11 09:58:33 (1 month ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 27009 [1] TCP	Port Scan
🇨🇳 ThreatBook.io	2026-04-11 00:40:46 (1 month ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/116.172.200.112 2026-0 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/116.172.200.112 2026-04-10 08:39:38 / show less	Web App Attack
🇺🇸 donarev419	2026-03-19 01:16:25 (2 months ago)	Connection to port 12403 with data transfer. Data preview: GET / HTTP/1.1 Host: 107.175.212.44:1240 ... show more Connection to port 12403 with data transfer. Data preview: GET / HTTP/1.1 Host: 107.175.212.44:12403 Accept: / show less	Port Scan Hacking
Anonymous	2026-02-15 02:40:58 (3 months ago)	Blocked by UFW (TCP on 2256) Source port: 14556 TTL: 236 Packet length: 44 TOS: 0x14 This report (f ... show more Blocked by UFW (TCP on 2256) Source port: 14556 TTL: 236 Packet length: 44 TOS: 0x14 This report (for 116.172.200.112) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2025-12-30 15:11:02 (5 months ago)	Blocked by UFW (TCP on 49669) Source port: 44112 TTL: 237 Packet length: 44 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 49669) Source port: 44112 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 116.172.200.112) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2025-12-13 01:21:24 (5 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2025-12-10 11:36:10 (5 months ago)	tcp/9229 (2 or more attempts)	Port Scan
Anonymous	2025-12-05 08:29:26 (6 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 42 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 202.71.141.170

🇧🇪 198.235.24.200

🇬🇧 193.32.209.248

🇫🇷 75.119.132.109

🇺🇸 45.10.167.46

🇧🇪 34.38.18.226

🇺🇸 20.127.202.120

🇰🇷 1.214.214.114

🇷🇺 193.24.123.118

🇺🇸 135.237.125.156

🇰🇷 121.161.242.168

🇨🇳 121.41.225.206

🇮🇩 103.164.115.42

🇮🇳 103.83.144.255

🇨🇳 101.43.35.235

🇬🇧 5.226.140.101

🇨🇳 1.202.220.94

🇺🇸 216.218.206.92

🇱🇹 213.130.207.177

🇧🇷 164.163.24.11