JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.172.200.239

116.172.200.239 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 32%: ?

32%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.172.200.239

Whois 116.172.200.239

IP Abuse Reports for 116.172.200.239:

This IP address has been reported a total of 48 times from 15 distinct sources. 116.172.200.239 was first reported on April 18th 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-09 13:04:05 (1 hour ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-09 08:58:55 (5 hours ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇸🇪 donarev419	2026-06-09 06:11:22 (7 hours ago)	Connection to port 2068 with data transfer. Data preview: �	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-08 23:32:03 (14 hours ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-03 10:28:03 (6 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 guldkage	2026-06-03 07:17:32 (6 days ago)	Unauthorized connection attempt detected from IP address 116.172.200.239 to port 8443 (ger-03) [H]	Brute-Force Exploited Host
🇺🇸 LSPCCU	2026-04-21 20:41:10 (1 month ago)	TSEC Honeypot Network report. Threat score: 60/100. Categories: DDoS Attack, Port Scan, Hacking, Bru ... show more TSEC Honeypot Network report. Threat score: 60/100. Categories: DDoS Attack, Port Scan, Hacking, Brute-Force, Web App Attack, SSH. Honeypot: cowrie, ssh-telnet. Context: 116. show less	DDoS Attack Port Scan Hacking Brute-Force Web App Attack SSH
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-18 00:29:45 (1 month ago)	Honeypot hit: HTTP/1.1 request on 12192 GET / Accept: /; 12192 [1] TCP	Web App Attack
Anonymous	2026-04-17 17:14:11 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇮🇹 Fusty	2026-04-13 23:43:20 (1 month ago)	Unauthorized attempt on (TCP on port 8310). Source port: 46703 TTL: 235 Packet length: 44 Timestamp: ... show more Unauthorized attempt on (TCP on port 8310). Source port: 46703 TTL: 235 Packet length: 44 Timestamp: 2026-04-14 01:43:19 show less	Port Scan
🇫🇷 Kraften	2026-02-16 09:06:54 (3 months ago)	Dovecot imap-login 2 ...	DDoS Attack Brute-Force
🇺🇸 donarev419	2026-02-16 08:43:30 (3 months ago)	Connection to port 19233 with data transfer. Data preview: GET / HTTP/1.1 Host: 104.250.239.52:1923 ... show more Connection to port 19233 with data transfer. Data preview: GET / HTTP/1.1 Host: 104.250.239.52:19233 Accept: / show less	Port Scan Hacking
Anonymous	2026-01-22 15:18:03 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇷🇸 Smel	2026-01-02 13:00:16 (5 months ago)	MH/MP Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 MPL	2025-12-28 06:08:02 (5 months ago)	tcp/9108 (2 or more attempts)	Port Scan

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 122.51.207.35

🇷🇺 213.180.203.11

🇨🇳 183.151.70.9

🇺🇸 107.150.105.116

🇺🇸 67.241.132.98

🇺🇸 66.132.186.215

🇺🇸 65.49.1.53

🇺🇸 172.202.96.198

🇺🇸 34.10.172.113

🇧🇷 200.233.253.60

🇺🇸 162.216.150.167

🇻🇳 113.161.222.150

🇳🇱 91.92.42.7

🇴🇲 85.154.141.63

🇺🇸 172.239.51.96

🇺🇸 172.56.39.197

🇮🇩 140.213.137.54

🇸🇬 101.47.158.56

🇧🇬 91.191.209.198

🇳🇱 91.92.42.133