JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.172.200.166

116.172.200.166 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 23%: ?

23%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.172.200.166

Whois 116.172.200.166

IP Abuse Reports for 116.172.200.166:

This IP address has been reported a total of 43 times from 19 distinct sources. 116.172.200.166 was first reported on April 10th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-05 12:00:24 (4 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-05 08:22:40 (4 days ago)	tcp/16010 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-31 10:49:02 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 11:20:51 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-29 07:50:16 (1 month ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 9302 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-04-22 23:04:28 (1 month ago)	HoneyPot hit - Aaran.cloud \| Rdp Brute Force \| credential attack \| USER anonymous	Brute-Force
Anonymous	2026-04-16 16:36:29 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-04-10 04:59:23 (1 month ago)	Tried our host z.	Port Scan Hacking Exploited Host
🇳🇱 Hobby Bob	2026-03-05 04:53:39 (3 months ago)	Mar 5 05:53:37 server dovecot: imap-login: Disconnected: Connection closed: read(size=678) failed: C ... show more Mar 5 05:53:37 server dovecot: imap-login: Disconnected: Connection closed: read(size=678) failed: Connection reset by peer (no auth attempts in 0 secs): user=, rip=116.172.200.166, lip=X.X.X.X session= show less	Port Scan Hacking
🇯🇵 mkaraki	2026-03-01 20:01:07 (3 months ago)	1772395255 # Service_probe # SIGNATURE_SEND # source_ip:116.172.200.166 # dst_port:199 ...	Port Scan
🇫🇮 Nullcore07	2026-02-23 07:26:37 (3 months ago)	2026-02-23 07:26:37 UTC Unauthorized activity to TCP port 5984. TCP connection established to port 5 ... show more 2026-02-23 07:26:37 UTC Unauthorized activity to TCP port 5984. TCP connection established to port 5984 (redirect=true). Banner sent; connection dropped. show less	Port Scan
🇯🇵 mkaraki	2026-01-23 00:40:08 (4 months ago)	1769128797 # Service_probe # SIGNATURE_SEND # source_ip:116.172.200.166 # dst_port:53 ...	Port Scan
Anonymous	2026-01-19 18:31:31 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 anon333	2025-12-28 23:33:14 (5 months ago)	Hacker syslog review 1766964794	Hacking
🇺🇸 xmission.com	2025-12-28 18:52:42 (5 months ago)	Blocked by UFW (TCP on 541) Source port: 41737 TTL: 237 Packet length: 44 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 541) Source port: 41737 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 116.172.200.166) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.154.128

🇨🇳 119.98.79.125

🇮🇳 117.242.38.12

🇭🇰 103.17.118.152

🇮🇹 87.14.54.151

🇩🇪 50.3.85.38

🇳🇱 34.6.92.77

🇷🇴 2.57.121.112

🇻🇪 190.94.212.97

🇩🇪 139.19.117.129

🇨🇳 110.177.179.142

🇧🇩 103.111.15.2

🇳🇱 93.123.72.183

🇳🇱 85.11.167.7

🇺🇸 54.156.55.147

🇺🇸 52.176.138.203

🇮🇷 5.237.92.127

🇷🇴 2.57.122.177

🇮🇳 2a02:4780:12:73df::1

🇺🇸 165.154.254.11