JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.172.248.165

116.172.248.165 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 25%: ?

25%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.172.248.165

Whois 116.172.248.165

IP Abuse Reports for 116.172.248.165:

This IP address has been reported a total of 30 times from 15 distinct sources. 116.172.248.165 was first reported on April 30th 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 gbzret4d	2026-06-05 11:09:52 (5 days ago)	Honeypot [uk-production01]: HTTP/1.1 request on 10124 GET / Accept: /; 10124 [1] TCP	Hacking Bad Web Bot
Anonymous	2026-06-05 07:00:11 (5 days ago)	Honeypot hit: Empty payload (likely service probe); 30015 [1] TCP Reported by: https://github.com/se ... show more Honeypot hit: Empty payload (likely service probe); 30015 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 MPL	2026-06-05 06:11:14 (5 days ago)	tcp/9042	Port Scan
🇫🇮 as211431.net	2026-04-29 08:17:41 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /aaabbbccc UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇵🇱 sefinek.net	2026-03-17 10:49:39 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 8899 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 8899 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 Moritz	2026-03-14 12:23:40 (2 months ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 16113 [1] TCP	Port Scan
🇵🇱 sefinek.net	2026-03-10 17:37:33 (3 months ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 50111 [1] TCP Reported by: https://github ... show more Honeypot hit: Unauthorized traffic (243 bytes of payload); 50111 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 D3RP4UL	2026-03-09 07:59:55 (3 months ago)	Honeypot hit: HTTP/1.1 request on 8081 GET / Accept: /; 8081 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 8081 GET / Accept: /; 8081 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇺🇸 MPL	2026-02-04 16:01:45 (4 months ago)	tcp/12372 (3 or more attempts)	Port Scan
🇯🇵 mkaraki	2026-01-01 04:04:34 (5 months ago)	1767240262 # Service_probe # SIGNATURE_SEND # source_ip:116.172.248.165 # dst_port:12207 ...	Port Scan
🇨🇳 ThreatBook.io	2025-12-24 00:48:57 (5 months ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/116.172.248.165 2025-12- ... show more ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/116.172.248.165 2025-12-23 17:50:10 / show less	Web App Attack
Anonymous	2025-12-09 04:18:09 (6 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-12-01 02:34:00 (6 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-10-25 03:13:19 (7 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-10-16 00:38:14 (7 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 183.14.88.224

🇹🇷 91.151.88.48

🇺🇸 76.12.128.249

🇬🇧 213.166.84.37

🇳🇱 204.76.203.51

🇫🇷 185.177.72.58

🇺🇾 179.26.110.16

🇲🇩 178.175.167.68

🇧🇷 177.99.193.135

🇨🇳 123.187.243.243

🇨🇳 111.228.1.163

🇰🇬 92.62.74.41

🇩🇪 69.5.169.239

🇩🇪 47.245.138.182

🇨🇳 42.121.161.198

🇩🇿 41.109.109.200

🇺🇸 34.73.12.6

🇮🇹 34.17.170.104

🇺🇸 20.64.105.215

🇷🇺 193.233.48.169