JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.117.104.4

106.117.104.4 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 22%: ?

22%

ISP	CHINANET hebei province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shijiazhuang, Hebei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.117.104.4

Whois 106.117.104.4

IP Abuse Reports for 106.117.104.4:

This IP address has been reported a total of 15 times from 10 distinct sources. 106.117.104.4 was first reported on December 6th 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 6kilowatti	2026-06-14 00:54:15 (5 days ago)	2026-06-14T03:54:13.777997+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-06-14T03:54:13.777997+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=106.117.104.4 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=237 ID=17116 PROTO=TCP SPT=9905 DPT=37 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-05-29 20:40:50 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇷🇸 Scan	2026-05-29 01:26:03 (3 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 donarev419	2026-05-09 02:02:28 (1 month ago)	Connection to port 7909 with data transfer. Data preview: GET / HTTP/1.1 Host: 107.175.212.44:7909 ... show more Connection to port 7909 with data transfer. Data preview: GET / HTTP/1.1 Host: 107.175.212.44:7909 Accept: / show less	Port Scan Hacking
Anonymous	2026-04-16 20:54:58 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-03-08 18:24:04 (3 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-02-15 10:17:19 (4 months ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 2514 [1] TCP	Port Scan
🇦🇺 trentwiles.com	2026-02-12 04:11:25 (4 months ago)	Unauthorized connection attempt detected from IP address 106.117.104.4 to port 999 [SYD]	Port Scan
🇷🇸 Smel	2026-02-03 04:00:04 (4 months ago)	MH/MP Probe, Scan, Hack -	Port Scan Hacking
Anonymous	2026-01-23 14:45:09 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇨🇦 Largnet SOC	2026-01-19 02:53:44 (5 months ago)	106.117.104.4 triggered Icarus honeypot on port 3306. Check us out on github.	Port Scan Hacking
Anonymous	2026-01-12 18:11:29 (5 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇹🇼 090410-1830	2025-12-31 21:22:08 (5 months ago)	Honeypot hit: Empty payload (likely service probe); 27000 [1] TCP	Port Scan
Anonymous	2025-12-09 15:49:34 (6 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-12-06 20:39:50 (6 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 171.244.37.103

🇺🇸 147.185.132.117

🇺🇸 146.70.98.138

🇮🇳 103.93.105.157

🇺🇸 47.251.92.96

🇸🇬 45.197.12.65

🇺🇦 195.140.225.100

🇩🇪 193.36.85.91

🇨🇳 180.76.172.156

🇸🇮 176.65.134.3

🇳🇱 160.119.69.16

🇫🇮 147.185.133.137

🇱🇰 124.43.27.60

🇭🇰 103.30.40.129

🇺🇸 97.206.246.184

🇷🇺 80.253.31.232

🇳🇱 45.156.128.127

🇬🇧 3.8.197.81

🇩🇪 212.227.31.187

🇧🇷 200.222.71.218